Stars
Sourcetrail - free and open-source interactive source explorer
Cap'n Proto serialization/RPC system - core tools and C++ library
Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.
Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
kill anti-malware protected processes ( BYOVD )
UAC bypass for x64 Windows 7 - 11
Evasive shellcode loader for bypassing event-based injection detection (PoC)
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
Enumerating and removing kernel callbacks using signed vulnerable drivers
A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtC…
Guided Hacking's official tool to practice bypassing anti-debug techniques.
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
Bring your own print driver privilege escalation tool