windows-rs shellcode loaders

Hotkey-based keylogger for Windows

TCP IP伪造,建议使用 ubuntu 22.04

Transparent Proxy via Frida hooks

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

eBPF implementation that runs on top of Windows

Flutter Mobile Application Reverse Engineering Tool

Injects frida gadget using zygisk to bypass anti-tamper checks.

an iOS Mod Engine with JavaScript APIs & Html5 UI

SoftICE-like kernel debugger for Windows 11

Performing Indirect Clean Syscalls

dex-vm used to protect the android classes.dex file

Frida-based ceserver: A fusion of Cheat Engine and Frida.

Themida 3.x unpacking, unwrapping and devirtualization(future)

零基础入门V8引擎漏洞挖掘

PASTIS: Collaborative Fuzzing Framework

New generation of wmiexec.py

Tutorials, examples, discussions, research proposals, and other resources related to fuzzing

新一代SKRoot，挑战全网root检测手段，跟面具完全不同思路，摆脱面具被检测的弱点，完美隐藏root功能，全程不需要暂停SELinux，实现真正的SELinux 0%触碰，通用性强，通杀所有内核，不需要内核源码，直接patch内核，兼容安卓APP直接JNI调用，稳定、流畅、不闪退。

Learning eBPF, published by O'Reilly - out now! Here's where you'll find a VM config for the examples, and more

⚡️ Android reverse engineering & automation framework | 史上最强安卓抓包/逆向/HOOK & 云手机/远程桌面/自动化取证框架，你的工作从未如此简单快捷。

MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.

基于eBPF的堆栈追踪工具

This tool is used to handle firmware that binwalk cannot unpack directly and is mainly used for OOB removal, ECC removal, and bad block removal of raw firmware extracted from Nand Flash.

Tools developed by the Zscaler ThreatLabz Threat Intelligence team

frida工具的缝合怪

A compendium of things related to reverse engineering videogames