Windows NT x64 syscall fuzzer

Kernel Driver Utility

symbolic execution plugin for binary ninja

Windows NT Syscall tables

Windows System Call Tables (NT/2000/XP/2003/Vista/2008/7/2012/8/10)

A Self-Contained Open-Source Cyberattack Experimentation Testbed

Binary, coverage-guided fuzzer for Windows and macOS

A JavaScript Engine Fuzzer

A fork of AFL for fuzzing Windows binaries

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

A fuzzer for full VM kernel/driver targets

wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-m…

Fake Protocol Server

cwe_checker finds vulnerable patterns in binary executables

Posters, drawings...

Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into categories for ease of searching and understanding. Also provi…

🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems

Decompile things directly from VSCode

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Snapshot-based coverage-guided windows kernel fuzzer

Process Injection

A Windows PE format file loader