-
GlyphDbg Public
RE for champions
-
-
Get-args Public
Getting arguments in asm. This can be used to bypass crt. If no arguments are found it will return the ImagePathName instead. Call from C.
Assembly UpdatedFeb 8, 2026 -
Sleepy-Internals Public
Collection of Undocumented data I have discovered for Windows operating system
UpdatedJan 31, 2026 -
ThreatAssessment.dll Public
Reversing an interesting DLL I discovered. This is a collection of things I found.
C UpdatedJan 25, 2026 -
-
-
VX-Papers Public
A collection of old papers I have sitting around by some old guys I look up too ;) and maybe some of mine thrown in there
-
ClickFix-Protect Public
A POC of defending your system and Users from the popular ClickFix attack
C UpdatedDec 2, 2025 -
StructForce Public
A walkthrough on bruteforcing struct sizes with just a for loop and some ASM
UpdatedDec 1, 2025 -
-
TiredFormat Public
Custom disk format for storing whatever you can think of and also reading it back out
C UpdatedNov 18, 2025 -
UD2TrapPOC Public
trapping a function call using an invalid Instruction, UD2, allowing for a 2 byte hook
C UpdatedOct 30, 2025 -
-
The-Peoples-Packer Public
TPP - The People Packer is a lightweight entropy based packer for on the fly packing of executables into a custom format. It really shines with shellcode and has a -m for extra mutation.
UpdatedOct 6, 2025 -
RE-MA-Roadmap Public
Forked from x86byte/RE-MA-RoadmapReverse Engineering and Malware Analysis Roadmap
UpdatedOct 2, 2025 -
Obj-Explorer Public
Enumerate all Objects in from the Kernel Object Manger, the heart of Windows.
C UpdatedSep 13, 2025 -
EtwpGetCpuSpeed Public
Uncovering an undocumented API to get the CPU ghz and status
C UpdatedSep 5, 2025 -
VEH Public
Working with VEH and extracting functions, this is the base for an injectable DLL that can be used as an introspection tool, I will continue to update this and add it to my debugger
C UpdatedAug 13, 2025 -
RE-Functions Public
A dll I put together to inject into a process and RE undocumented apis
C UpdatedAug 11, 2025 -
-
CFG-Scan Public
Scan a file on disk to check if it has cfg enabled and also checks for xfg in system apps
C UpdatedJul 31, 2025 -
Scope Public
A scanner I built to discover control codes in all running drivers
-
Rip-Ripper Public
Pulls the .text section of any PE. Useful for debugging and RE. Option to save .text to a .bin file and walking it byte by byte.
-
sAnDbOx-Evasion Public
I have been diving into some of the PEB bitfields. During my research I discovered isAppContainer and wanted to share my thoughts.
C UpdatedJun 24, 2025 -
One-Time-Pad Public
A encryption scheme I wrote up and is the base for Xor-Like-An-Eagle.txt
-
-
get-dll-exports Public
This program takes in a single parameter, a dll on disk, and retrieves all the function names for it. Try it on ntdll.dll, it will return all nt function names. This is useful for RE and exploring …
-
ShadowDrop-Framework Public
Forked from Untouchable17/ShadowDrop-FrameworkAdvanced Malware Dropper & Evasion Toolkit for Authorized Red Teaming
C++ UpdatedJun 18, 2025 -
Hex-Converter Public
A hex converter I wrote that works for converting strings and files to hex
C UpdatedJun 16, 2025
{{ message }}