AddressSanitizer, ThreadSanitizer, MemorySanitizer

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, T…

A repository for learning various heap exploitation techniques.

A Linux version of the ProcDump Sysinternals tool

Library to load a DLL from memory.

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Platform for Architecture-Neutral Dynamic Analysis

Hiding kernel-driver for x86/x64.

BlackLotus UEFI Windows Bootkit

Kernel Driver Utility

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

Windows tool for dumping malware PE files from memory back to disk for analysis.

System Information Gatherer And Reporter

PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for links and info

👻Impost3r -- A linux password thief

Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary process.

DSE bypass using a leaked cert and adjusting the current clock.

A de-socketing library for fuzzing.

This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files !