Stars
Create agents that monitor and act on your behalf. Your agents are standing by!
PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for links and info
Injects C# EXE or DLL Assembly into every CLR runtime and AppDomain of another process.
LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
Adversary tradecraft detection, protection, and hunting
Nosy Newt is a simple concolic execution tool for exploring the input space of a binary executable program based in Triton
ATrace is a tool for tracing execution of binaries on Windows.
A distributed corpus distillation tool for windows applications.
The cheat sheet about Java Deserialization vulnerabilities
python library to examine ptmalloc (the glibc userland heap implementation)
RPyC (Remote Python Call) - A transparent and symmetric RPC library for python
EasyHook - The reinvention of Windows API Hooking
Set of tools to analyze Windows sandboxes for exposed attack surface.
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Various public documents, whitepapers and articles about APT campaigns
BinNavi is a binary analysis IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code.
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.
heaper, an advanced heap analysis plugin for Immunity Debugger
A little tool to play with Windows security