Godot Engine – Multi-platform 2D and 3D game engine

LLM inference in C/C++

Protocol Buffers - Google's data interchange format

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Share a single keyboard and mouse between multiple computers.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Windows memory hacking library

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

An even funnier way to disable windows defender. (through WSC api)

Converts PE into a shellcode

RpcView is a free tool to explore and decompile Microsoft RPC interfaces

Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode

复现《EDR的梦魇：Storm-0978使用新型内核注入技术“Step Bear”》

Multilingual backdoor

Stack integrity verification to Detect SleepMask or CallStack Spoofer

已实现蔚蓝档案自动战斗, 受blue_archive_auto_script启发制作的C++脚本框架

ollvm's plug-in pass, the core of the obfuscator

ThrottleStop.sys, a legitimate driver, exposes two IOCTL interfaces that allow arbitrary read and write access to physical memory via the MmMapIoSpace function. This insecure implementation can be …