Record and Replay Framework

The WebAssembly Binary Toolkit

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

A collection of out-of-tree LLVM passes for teaching and learning

Project for learning V8 internals

Generate sandboxes for C/C++ libraries automatically

Automated static analysis tools for binary programs

一些阅读源码和Fuzzing 的经验,涵盖黑盒与白盒测试..

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

Examples of leaking Kernel Mode information from User Mode on Windows

Pintool example and PoC for dynamic binary analysis

Tool for PDB generation from IDA Pro database

CVE-2018-8120 Windows LPE exploit

ClassInformer backported for IDA Pro 7.0

30种方法检测程序是否被调试

Official repository containing files related to N1CTF 2018.

This implements a 64-bit version of vusec/vuzzer fuzzing tool.

A Windows tool that can be used to stream data from named pipe between two other process to Wireshark

Runtime Prevention of Return-Oriented Programming Attacks

Windows 10 RS2/RS3 exploitation primitives based on the OffensiveCon 2018 talk