whitehat42

heap_history_viewer

A program to draw rectangles from heap traces.

Ankou

Ankou: Guiding Grey-box Fuzzing towards Combinatorial Difference

bddisasm

bddisasm is a fast, lightweight, x86/x64 instruction decoder. Written entirely in C, it has no dependencies, it is thread safe, it allocates no memory at all and it provides extensive information about the decoded instructions. The project also features a fast, basic, x86/x64 instruction emulator, designed specifically to detect shellcode-like behavior.

blog

ctf-tasks

An archive of low-level CTF challenges developed over the years

elgoog

elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit

google-ctf

Google CTF

Kam1n0-Plugin-IDA-Pro

The Kam1n0 Assembly Clone Search Engine

KVM-Nyx

libnyx

libxdc

The fastest Intel-PT decoder for fuzzing

packer

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

QEMU-Nyx

rdpfuzz

Tools for fuzzing RDP

remcos-decoder

Talos Decryptor POC for Remcos RAT version 2.0.5 and earlier

spec-fuzzer

Teaser-2019

vmprotect-3.5.1

winafl-intelpt

A fork of AFL for fuzzing Windows binaries

Winbagility

WindowsIntelPT

This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows

winipt

The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by Windows 10 Redstone 5 (1809), through a set of libraries and a command-line tool.