x86fatah's repositories
angr
A powerful and user-friendly binary analysis platform!
bindiff
Quickly find differences and similarities in disassembled code
c_std
Implementation of C++ standard libraries in C
CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
CVE-2023-36003-POC
Privilege escalation using the XAML diagnostics API (CVE-2023-36003)
CVE-2024-21305
Report and exploit of CVE-2024-21305.
excelCPU
16-bit CPU for Excel, and related files
flare-floss
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
ghidra
Ghidra is a software reverse engineering (SRE) framework
Harmony
A library for patching, replacing and decorating .NET and Mono methods during runtime
hashdb
Assortment of hashing algorithms used in malware
ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
llvm-yx-callobfuscator
LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
msmailprobe2
Office 365 and Exchange Enumeration Version 2
Nidhogg
Nidhogg is an all-in-one simple to use rootkit.
radare2
UNIX-like reverse engineering framework and command-line toolset
raddebugger
A native, user-mode, multi-process, graphical debugger.
rehex
Reverse Engineers' Hex Editor
rizin
UNIX-like reverse engineering framework and command-line toolset.
rust-malware-gallery
A collection of malware families and malware samples which use the Rust programming language.
Stardust
A modern 64-bit position independent implant template
SyscallMeMaybe
Implementation of Indirect Syscall technique to pop a calc.exe
Thread-Pool-Injection-PoC
Proof of concept code for thread pool based process injection in Windows.
upx
UPX - the Ultimate Packer for eXecutables
x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
XLL-DROPPER-
XLL DROPPER | Learn to create Native xll Dropper