Stars
A Firefox DevTools extension for intercepting, modifying, replaying, and fuzzing HTTP/HTTPS requests without an external proxy.
Live ETW-TI event viewer for Windows kernel threat-intelligence telemetry. Research tool for exploring the same signals commercial EDRs rely on.
A PoC tool to bypass UI restrictions on Rongyuan keyboards via local gRPC injection.
15-stage Windows malware development & analysis course in Rust. Red team builds it, blue team detects it. All 15 binaries achieved 0/76 on VirusTotal.
Stealth-focused Intel VT-x hypervisor (EAC/BE/ACs/AVs).
TelegramVault es un “vault” local para descargar y organizar datos de Telegram, explorar mensajes y medios desde una interfaz web, y mantener un flujo ordenado de ingesta + búsqueda. Está construid…
A powerful Chrome extension for detecting and analyzing React Server Components (RSC) and Next.js App Router vulnerabilities
Modular framework for automating triaging, malware analysis, and analyst workflows
Collection of Cyber Threat Intelligence sources from the deep and dark web
Inspector is a command-line tool designed to scan projects for dependency vulnerabilities. It supports multiple dependency management files and provides reports with suggested versions to update.
My EAC & BE Rady CR3 Reading & Writing source that I use for my KM Drivers.
Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
A Tool that aims to evade av with binary padding
A sophisticated PowerShell script that stealthily injects Base64-encoded shellcode into the target process, featuring anti-debugging techniques to evade detection.
Let's dive deeper into some key aspects of Inline Hooking in C++
smbclient-ng, a fast and user friendly way to interact with SMB shares.
DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.