Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Hex-Rays Decompiler plugin for better code navigation

rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powe…

Extracts passwords from a KeePass 2.x database, directly from memory.

Fix Windows 10 Privacy

Smashing The Browser: From Vulnerability Discovery To Exploit

A collection of tools to abuse chrome browser

Patching ROP-encoded shellcodes into PEs

A partial Onion Proxy implementation that's designed to build single-hop circuits through Tor exit nodes

An 802.11 WEP/WPA2 on-the-fly decrypter.

I'll submit the poc after blackhat

Emulating Virtual Environment to stay protected against advanced malware

Bypassing User Account Control (UAC) using TpmInit.exe

Vulnerability research and development.

This work-in-progress "Orion Webshell Detector" was created with the intention of assisting web application code reviews coded in PHP, ASP and JSP technologies. It is capable of detecting potential…

An implementation of an extension of the Local Descriptors Encoded by Fisher Vectors method for person re-identification.