Stars
UNIX-like reverse engineering framework and command-line toolset
A little tool to play with Windows security
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…
AddressSanitizer, ThreadSanitizer, MemorySanitizer
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, T…
A repository for learning various heap exploitation techniques.
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
A Linux version of the Procmon Sysinternals tool
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
A fork of AFL for fuzzing Windows binaries
ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja disassemblers.
This book on heap exploitation is a guide to understanding the internals of glibc's heap and various attacks possible on the heap structure.
proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
Collection of PoC and offensive techniques used by the BlackArrow Red Team
MIT 6.828 Operating System Lab https://pdos.csail.mit.edu/6.828/2018/schedule.html
Hook function calls by replacing PLT(Procedure Linkage Table) entries.
A port of OpenBSD's doas which runs on FreeBSD, Linux, NetBSD, and illumos