nj00001

nj00001's Stars

• dnSpy/dnSpy

  .NET debugger and assembly editor

  Language:C#27.3k99305.2k

• Z3Prover/z3

  The Z3 Theorem Prover

  Language:C++10.8k1805.6k1.5k

• capstone-engine/capstone

  Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

  Language:C7.9k2991.3k1.6k

• ayoubfaouzi/al-khaser

  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

  Language:C++6.2k2411061.2k

• microsoft/Detours

  Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.

  Language:C++5.5k1711681k

• S3cur3Th1sSh1t/WinPwn

  Automation for internal Windows Penetrationtest / AD-Security

  Language:PowerShell3.5k8144536

• HyperDbg/HyperDbg

  State-of-the-art native debugging tools

  Language:C3.2k89160406

• 0vercl0k/rp

  rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.

  Language:C++1.9k6729257

• tandasat/HyperPlatform

  Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.

  Language:C++1.6k10787417

• x64dbg/x64dbgpy

  Automating x64dbg using Python, Snapshots:

  Language:C1.5k9145472

• heroims/obfuscator

  ollvm，base on llvm-clang 5.0.2, 6.0.1 , 7.0.1,8.0,9.0,9.0.1,10.x,11.x,12.x,13.x,14.x,swift-llvm-clang 5.0,swift-llvm-clang 5.5

  1.1k2842321

• ayoubfaouzi/cpu-internals

  Intel / AMD CPU Internals

  Language:C1.1k491189

• cvc5/cvc5

  cvc5 is an open-source automatic theorem prover for Satisfiability Modulo Theories (SMT) problems.

  Language:SMT1.1k362.6k245

• 9176324/Shark

  Turn off PatchGuard in real time for win7 (7600) ~ later

  Language:C1k4946306

• JonathanSalwan/Tigress_protection

  Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deobfuscation using symbolic execution, taint analysis and LLVM.

  Language:LLVM825390143

• changeofpace/VivienneVMM

  VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.

  Language:C++7994416183

• DragonQuestHero/Kernel-Anit-Anit-Debug-Plugins

  Kernel Anit Anit Debug Plugins 内核反反调试插件

  Language:C++462162178

• MiroKaku/ucxxrt

  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.

  Language:C++398143497

• Boyan-MILANOV/ropium

  ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together

  Language:C++384123242

• Boolector/boolector

  A Satisfiability Modulo Theories (SMT) solver for the theories of fixed-size bit-vectors, arrays and uninterpreted functions.

  Language:SMT3421415766

• leesh3288/WinPwn

  Windows Pwnable Study

  Language:Python33816038

• RolfRolles/GhidraPAL

  Ghidra Program Analysis Library

  Language:Java33226546

• 0vercl0k/clairvoyance

  Visualize the virtual address space of a Windows process on a Hilbert curve.

  Language:C++2999222

• synacktiv/bip

  Language:Python19416919

• ykfre/BsodSurvivor

  This project aims to facilitate debugging a kernel driver in windows by adding support for a code change on the fly without reboot/unload, and more!

  Language:C++17212023

• VDOO-Connected-Trust/ghidra-pyi-generator

  Generates `.pyi` type stubs for the entire Ghidra API

  Language:Python151111217

• luxiaolan6373/ProgrammingAssistant

  Language:Python557014

• vtil-project/VTIL-Python

  Python bindings for the VTIL API. (WIP)

  Language:C++294320

• v-p-b/rabbithole

  Cumulative cyclomatic complexity calculation for Ghidra

  Language:Python20213

• orchechik/ropfind

  Volatility Plugins to find rop gadgets in Windows and Linux physical memory dumps.

  Language:Python1260