Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels.

YellowKey Bitlocker Bypass Vulnerability

poc it like it's hot

Research on Coding Agents

A Personal Repository of KPMs built by myself and (or) other devs with credits given to original devs.

Recover String & Rebuild Apk

Security analysis of the hypervisor drm method used to bypass denuvo. Reverse engineering of the driver loaders and boot components using Ghidra

Public researchings of the Google's Android apps protection

强网杯2025决赛 somebox题解

将 GeminiCLI 和 Antigravity 转换为 OpenAI 、GEMINI 和 Claude API 接口

AirPods liberated from Apple's ecosystem.

Python parser for bash

Eurydice compiles (a decent subset of) Rust to C. Verify programs in Rust, still get C code for legacy environments.

Revizor - Hardware fuzzing for the age of speculation

PoC & Exploit for CVE-2025-32023 / PlaidCTF 2025 "Zerodeo"

Python binding for curl-impersonate fork via cffi. A http client that can impersonate browser tls/ja3/http2 fingerprints.

A cloudflare verification bypass script for webscraping

Python based web automation tool. Powerful and elegant.

blackbox

Display and control your Android device

MCP Server for Ghidra

PyInjector - Inject Python code into python process.

State-of-the-art native debugging tools

Windows11 SnippingTool OCR

一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy serv…

Build universally compatible python packages from a substantial subset of Python 3.8.

Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection

javascript-obfuscator cleaner & deobfuscator

Percona Toolkit: a collection of advanced open source command-line tools.