Git Source Code Mirror - This is a publish-only repository but pull requests can be turned into patches to the mailing list via GitGitGadget (https://gitgitgadget.github.io/). Please follow Documen…

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

🎁 A glib-like multi-platform c library

Dive into CPython internals, trying to illustrate every detail of CPython implementation

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

CTF竞赛权威指南

Fastsocket is a highly scalable socket and its underlying networking implementation of Linux kernel. With the straight linear scalability, Fastsocket can provide extremely good performance in multi…

QuickJS是一个小型并且可嵌入的Javascript引擎，它支持ES2020规范，包括模块，异步生成器和代理器。

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

Exercises to learn how to fuzz with American Fuzzy Lop

dex-vm used to protect the android classes.dex file

Protect your python script, encrypt it as .pye and decrypt when import it

An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM

👻Impost3r -- A linux password thief

开源php加密运行扩展，基于screw二次开发，暂时只能在linux下运行

Taint is a PHP extension, used for detecting XSS codes

LibZeroEvil & the Research Rootkit project.

Make FC(NES) Emulator Step-by-Step 一步一步模拟红白机

VM一键加壳/脱壳，全压缩，反调试等

A PHP7 extension that can hook most functions/classes and parts of opcodes

PageBuster - dump all executable pages of packed processes.

这是一个实验性的PHP扩展，加载这个扩展后，每次请求将可以执行一段自己的PHP代码。

win32下的虚拟机保护壳

RCS Soldier for Windows

基于WDK的PCIE驱动程序及测试软件

C++ version

A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.