Fully decrypt App-Bound Encrypted (ABE) cookies, passwords & payment methods from Chromium-based browsers (Chrome, Brave, Edge) - all in user mode, no admin rights required.

A breadth-first version of the UNIX find command

Original C Implementation of the Hell's Gate VX Technique

A root exploit for CVE-2022-0847 (Dirty Pipe)

A C compiler targeting an artistically pleasing nightmare for reverse engineers

C/C++ source obfuscator for antivirus bypass

"I use Arch btw" but it's a Turing-complete programming language.

Simple x86-64 VT-x Hypervisor with EPT Hooking

A protective and Low Level Shellcode Loader that defeats modern EDR systems.

Instrument Cluster Simulator

Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detections and correlation rules by Blue teams.

An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

IA32-doc is a project which aims to put as many definitions from the Intel Manual into machine-processable format as possible

A BOF that runs unmanaged PEs inline

A VPN system over websockets

Quickly debug shellcode extracted during malware analysis

Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.

Lightway Core is a modern VPN protocol by ExpressVPN, to deliver a VPN experience that’s faster, more secure, and more reliable.

Tunnel TCP connections through ICMP.

CVE-2022-0995 exploit

CVE-2023-3269: Linux kernel privilege escalation vulnerability

exploit for CVE-2022-2588

A reverse shell with terminal support, data tunneling, and advanced pivoting capabilities.

Proof of concept code for Datadog Security Labs referenced exploits.

CVE-2022-25636

LPE exploit for CVE-2023-21768

CVE-2022-0185

Linux Kernel hooking engine (x86)

Netdiscover, ARP Scanner (official repository)