Thomas M's repositories
Akira-obfuscator
Another LLVM-obfuscator based on LLVM-17. A fork of Arkari
amber
Reflective PE packer.
Arkari
Yet another llvm based obfuscator based on goron.
asmjit
Low-latency machine code generation
awesome-censys-queries
A collection of fascinating and bizarre Censys Search Queries
blackdagger
Blackdagger is a DAG-based automation tool specifically used in DevOps, DevSecOps, MLOps, MLSecOps, and Continuous Red Teaming (CART).
bn_ifl
IFL - Interactive Functions List (plugin for Binary Ninja)
CodeHawk-Binary
CodeHawk Binary Analyzer for malware analysis and general reverse engineering
emba
EMBA - The firmware security analyzer
gocheck
DefenderCheck but blazingly fast™
Havoc
The Havoc Framework.
IAT-Tracer
An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (.tag) files.
jekyll-theme-chirpy
A minimal, responsive, and feature-rich Jekyll theme for technical writing.
ldrgen
Template-based generation of shellcode loaders
LdrLockLiberator
For when DLLMain is the only way
lightgrep
Command-line utility for multipattern search using liblightgrep
miasm
Reverse engineering framework in Python
pe_tools
A cross-platform Python toolkit for parsing/writing PE files.
Pluto
LLVM-Obfuscator based on LLVM 14.0.6
pyMetaTwin
Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform
ROP_ROCKET
ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Syscalls attack, a novel Heaven's Gate, and "shellcodeless" ROP. The framework utilizes emulation and obfuscation to help expand the attack surface.
Supernova
Real fucking shellcode encryption tool
TangledWinExec
PoCs and tools for investigation of Windows process execution techniques
unicorn-emulator
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)
upx
UPX - the Ultimate Packer for eXecutables
Windows-Internals
Important notes and topics on my journey towards mastering Windows Internals
Winton
Command and Control (C2) framework
x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.