zyhp's Stars
EternityX/driver-fix
Fixes issues with Windows WAN miniports
Lissy93/web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
SamuelTulach/tpm-spoofer
Simple proof of concept kernel mode driver hooking tpm.sys dispatch to randomize any public key reads
es3n1n/obfuscator
PE bin2bin obfuscator
ManlyMarco/RuntimeUnityEditor
In-game inspector and debugging tools for applications made with Unity3D game engine
m417z/ntdoc
Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
mrexodia/phnt-single-header
Single header version of System Informer's phnt library.
61bcdefg/Hikari-LLVM15
A fork of Hikari Obfuscator [WIP]
Dec0ne/HWSyscalls
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
AveYo/MediaCreationTool.bat
Universal MCT wrapper script for all Windows 10/11 versions from 1507 to 21H2!
HexRaysSA/goomba
gooMBA is a Hex-Rays Decompiler plugin to simplify Mixed Boolean-Arithmetic (MBA) expressions
0vercl0k/rp
rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
b1scoito/mpv-cut
A video cutting/clipping/slicing script for mpv
jamesstringerparsec/Easy-GPU-PV
A Project dedicated to making GPU Partitioning on Windows easier!
KiFilterFiberContext/warbird-obfuscator
Integration of Microsoft Warbird with the MSVC compiler
tezc/sc
Common libraries and data structures for C.
VollRagm/lpmapper
A mapper that maps shellcode into loaded large page drivers
mandiant/capa
The FLARE team's open-source tool to identify capabilities in executable files.
CheckPointSW/InviZzzible
InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.
JonathanSalwan/VMProtect-devirtualization
Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
naim94a/lumen
A private Lumina server for IDA Pro
AxtMueller/Windows-Kernel-Explorer
A free but powerful Windows kernel research tool.
ninja-build/ninja
a small build system with a focus on speed
wallds/NoVmpy
ClownQq/YDArk
X64内核小工具
can1357/HexSuite
Header only wrapper around Hex-Rays API in C++20.
klezVirus/inceptor
Template-Driven AV/EDR Evasion Framework
phra/PEzor
Open-Source Shellcode & PE Packer
VoidSec/DriverBuddyReloaded
Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks
fkie-cad/cwe_checker
cwe_checker finds vulnerable patterns in binary executables