🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

aria2 is a lightweight multi-protocol & multi-source, cross platform download utility operated in command-line. It supports HTTP/HTTPS, FTP, SFTP, BitTorrent and Metalink.

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Optimized implementation for color-icon-matrix barcodes

Windows memory hacking library

Free Monero RandomX Miner and unified CryptoNight miner

Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide

AdaptixC2 is a highly modular advanced redteam toolkit

Nidhogg is an all-in-one simple to use windows kernel rootkit.

shellcodeloader

Hypervisor based anti anti debug plugin for x64dbg

🚀 Transparent proxy injector for Antigravity. Force SOCKS5/HTTP proxy without TUN mode on Windows. | 专为 Antigravity 打造的免 TUN 强制代理工具，支持 DLL 注入与进程流量劫持。

Imports Reconstructor

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

Now You See Me, Now You Don't

CVE-2018-8120 Windows LPE exploit

Kernel Anit Anit Debug Plugins 内核反反调试插件

A lightweight python code protector, makes your python project harder to reverse engineer

source code

Graphical Debugger for x64 and x86 on Windows

MS16-032(CVE-2016-0099) for SERVICE ONLY

CVE-2017-0213 for command line