ohjeongwook

DarunGrim

A patch analysis tool

dumpflash

Low-level NAND Flash dump and parsing utility

ShellCodeEmulator

Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment

Samsung-TV-Hacks

FlashHacker

Adobe Flash Player File Instrumentation Tool For Security Research

PowerShellRunBox

Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality

binkit

Binary Reverse Engineering Data Science Kit

iptanalyzer

Intel PT log analyzer With Parallel Processing And Basic Block Offset Caching Support

windows_sdk_data

Windows API listing in JSON format - generated from SDK headers + SDK API documentation

windbgtool

Windbg Utility Tools based upon PyKD

REPack

Reverse engineering toolkit for exploit/malware analysis

CanBusHacker

Frida.examples.vbe

Frida example to trace VBA CreateObject calls and some string deobfuscations calls. You need latest Frida 12.9.8 for improved symbol lookup features I added recently.

WindowsEventTools

Collection Of Scripts And Utilities For Windows Event Hunting

Publications

RunShellcode

Windows Shellcode Testing Utility to Run Shellcode From A File

LoadDLL

Windows DLL Loading Utility

threathuntingtools

WindowsEvents + Sysmon + ElasticSearch + Python

ResearchToolbox

idatool

IDAPython Utilities And Tools

WindowsTestingEnvironment

Instructions And Scripts To Setup Windows Malware, Exploit Testing Environment

petool

PE File Manipulation Utility

InjectShellcode

MalwareHuntingRules

winafl

A fork of AFL for fuzzing Windows binaries

frida

Clone this repo to build Frida

OPCDE

OPCDE Cybersecurity Conference Materials

frida-core

Frida core library intended for static linking into bindings

frida-gum

Cross-platform instrumentation and introspection library written in C

md2notion

A better Notion.so Markdown importer