🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Windows Subsystem for Linux

PlayStation 4 emulator for Windows, Linux and macOS written in C++

UPX - the Ultimate Packer for eXecutables

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Run .NET and Node.js code in-process on Windows, MacOS, and Linux

Windows memory hacking library

PowerDNS Authoritative, PowerDNS Recursor, dnsdist

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

Portable Executable reversing tool with a friendly GUI

An even funnier way to disable windows defender. (through WSC api)

Wireless keystroke injection attack platform

AdaptixC2 is a highly modular advanced redteam toolkit

KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory

Converts PE into a shellcode

Hook system calls, context switches, page faults and more.

USB Army Knife – the ultimate close access tool for penetration testers and red teamers.

Windows rootkit for Intel x64 with 25+ features, demonstrating rootkit techniques compatible with all Windows 10 and Windows 11 versions.

x64 binary obfuscator

Collection of various malicious functionality to aid in malware development

shellcodeloader

Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.

Obfuscation library based on C++20 and metaprogramming

Alternative Shellcode Execution Via Callbacks

A Pin Tool for tracing API calls etc

Total Registry - enhanced Registry editor/viewer

Extracting Clear Text Passwords from mstsc.exe using API Hooking.

EDR Lab for Experimentation Purposes

Converts a EXE into DLL