🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

SQL powered operating system instrumentation, monitoring, and analytics.

Free and Open Source Reverse Engineering Platform powered by rizin

Easy to use open source fast database for search | Good alternative to Elasticsearch now | Drop-in replacement for E in the ELK stack

High-level tracing language for Linux

RetDec is a retargetable machine-code decompiler based on LLVM.

Cloud Native Runtime Security

Linux system exploration and troubleshooting tool with first class support for containers

Open-source KVM software

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Reverse engineering focusing on x64 Windows.

The Librum client application

High-performance regular expression matching library

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

An even funnier way to disable windows defender. (through WSC api)

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

Open EDR public repository

Reverse Engineers' Hex Editor

Nidhogg is an all-in-one simple to use windows kernel rootkit.

Distributed storage for sequential data

Obfuscation library based on C++20 and metaprogramming

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

Converts a EXE into DLL

An Active Defense and EDR software to empower Blue Teams

This is the development tree. Production downloads are at:

Hide your Powershell script in plain sight. Bypass all Powershell security features

⚡ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.