This repository contains the research tool presented at x33fcon 2026, along with the associated presentation slides. The content is made available for research and educational purposes.

Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 29 vulnerability techniques)

GreatXML bitlocker bypass vulnerability

A Chinese Made Easy writing skill inspired by Calculus Made Easy

冰冷的钱就这样流进我温暖的口袋-游资（UZI）Skills — 让我们欢迎，股海贼王！66位投资大佬帮你看盘 · 22维数据 × 180条量化规则 × 17种机构分析方法 · A股/港股/美股

Script(s) to assist with the setup of various tools on a Windows 11/10 VM, in preparation for Corelan Training

Learn it. Build it. Ship it for others.

RoguePlanet Windows Defender Vulnerability

C2 server fingerprinter — Cobalt Strike, Sliver, Mythic, Havoc, Brute Ratel

EDRUnChoker - fileless WMI defense that removes EDRChoker QoS throttling policies

Beautiful, Modern & Opinionated Linux

A Fuzzing skill based on purely what i know.

This is a collection of proof-of-concept exploits for various targets.

Live, system-wide USB transfer sniffer in eBPF — decodes USB traffic inline (control SETUP, SCSI, HID) from two universal URB hooks. No usbmon, no hardware sniffer. CO-RE portable.

本仓库包含三个面向学术科研人员的Skills，覆盖从文献阅读、论文写作到科学计算的完整研究工作流。office-academic-skill 负责论文阅读报告与学术 PPT/Word 文档生成；research-writing-skill 提供论文写作、润色与审稿回复辅助；scientific-toolkit-skill 整合 MATLAB/Python 科学计算与期刊级图表生成。三个 Sk…

AI code reviews grounded in 12 classic engineering books — decay risk diagnostics with book citations, severity labels, and 6 analysis modes including full-sweep auto-fix

Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by surgically patching SeCiCallbacks via native subsystem. Inclu…

⌥ AI Coding agent for the terminal — hash-anchored edits, optimized tool harness, LSP, Python, browser, subagents, and more

让 Claude Code、Gemini CLI、Codex、Cursor 开箱即用的分层配置模板，总结十多年的日常开发经验，持续完善中……

基于Chrome开发者协议(CDP)的AI自动化JavaScript逆向分析工具

Policy-driven, layered isolation and containment

PDF Parser for AI-ready data. Automate PDF accessibility. Open-source.

Fork() for AI agent microVMs. Spawn 100 children in ~100ms from a warm parent; BRANCH a live VM in ~150ms. KVM-isolated, snapshot CoW.

Automated proxy DLL generator for DLL hijacking

wazero: the zero dependency WebAssembly runtime for Go developers

A Ghidra agentic reverse engineering skill.

Staged DLL injection proof-of-concept built in C using Win32 APIs — developed in an isolated lab environment for red team certification study (CRTO).