Hypervisor Memory Introspection Core Library

Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool

KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulation for LSASS memory dumping on modern Windows with HVCI/VBS.

Yet another llvm based obfuscator based on arkari

基于本地代理的方式，绕过 IDE 的固定模型服务商限制

Automatically generate AV byte signatures from sets of similar binaries.

微舆：人人可用的多Agent舆情分析助手，打破信息茧房，还原舆情原貌，预测未来走向，辅助决策！从0实现，不依赖任何框架。

SIEM Tactics, Techiques, and Procedures

简单的基于llvm实现vmp保护

yet another rss reader

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Standard collection of rules for capa: the tool for enumerating the capabilities of programs

Data to test capa's code and rules.

面向网络小白的基础网络和容器网络的科普

A collection of links related to Linux kernel security and exploitation

A headless, extendable, multi-session, IDA Pro MCP framework.

Quickly Search Large DNS Datasets

Easy-to-use IDA plugin for code emulation

IDA plugin for YARA signature creation

A neurosymbolic framework for vulnerability detection in code

MCP server to run Python code in a sandbox.

An index of the LangChain + LangGraph ecosystem: concepts, projects, tools, templates, and guides for LLM & multi-agent apps.

Splunk Security Content

A Python library for extracting structured information from unstructured text using LLMs with precise source grounding and interactive visualization.

Built for red teamers, by red teamers - an MCP tool for malware development, OPSEC testing, and supporting custom loader design during red team engagements.

ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.

Multilingual Document Layout Parsing in a Single Vision-Language Model

A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.

Overt是一款功能强大的Android设备安全检测工具

Weaponized Browser-in-the-Middle (BitM) for Penetration Testers