Lightweight coding agent that runs in your terminal

Agent skills for solving CTF challenges - web exploitation, binary pwn, crypto, reverse engineering, forensics, OSINT, and more

《Windows 内核安全编程技术实践》 2023 年 3 月发表，以实战代码案例为基础，详解 Windows 内核开发与反内核工具核心技术。

专为x32/x64dbg打造的AI驱动调试助手，助力逆向工程、漏洞挖掘、恶意软件分析效率倍增，是您的智能副驾。

专为IDA Pro开发的静态逆向分析接口，支持用户独立开发MCP服务器并对接大型模型，及Cherry Studio客户端使用，灵活扩展静态逆向分析能力。

The Java part of the Xposed framework.

Non-authoritatively making Frida less (not un-!)detectable by applying some symptomatic patches. Melded with CrackerCat/strongR-frida-android, hzzheyang/strongR-frida-android and Ylarod/Florida. No…

隐藏可执行内存

热门网络游戏辅助开发教程

kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology

Direct Memory Access (DMA) Attack Software

D810-ng (Next Generation) is an updated, tested, refactored, and optimized IDA Pro plugin used to deobfuscate code at decompilation time by modifying IDA Pro microcode.

Linux mainline kernel fork for various Qualcomm MSM8917/37/40 , SDM429/SDM439 and QM215 devices

Trace events in real time sessions

A collection of notebooks/recipes showcasing some fun and effective ways of using Claude.

Rshell是一款开源的golang编写的支持多平台的C2框架，旨在帮助安服人员渗透测试、红蓝对抗。

Windows kernel and user mode emulation.

依赖调用框架

🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click S…

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

EDR Lab for Experimentation Purposes

shellcode生成框架

shellcode 生成框架

Binary Hollowing

针对PE文件的分离的攻防对抗工具，红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and researchers. Currently, file header spoofing and certificat…

more conveniently Visual-Studio-BOF-template

Sign-Sacker(签名掠夺者)：一款数字签名复制器，可将其他官方exe中数字签名，图标，详细信息复制到没有签名的exe中，作为免杀，权限维持，伪装的一种小手段。