zhuhuibeishadiao

猪会被杀掉's repositories

NtRays

Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.

Language:C++BSD-3-Clause300

StackVMCPP

A stack and register based virtual machine which can compile and run arbitrary code in runtime

Language:C++GPL-2.0200

BlackDex

BlackDex是一个运行在Android手机上的脱壳工具，支持5.0～12，无需依赖任何环境任何手机都可以使用，包括模拟器。只需几秒，即可对已安装包括未安装的APK进行脱壳。

Language:JavaApache-2.0100

CFB

Canadian Furious Beaver is a tool for monitoring IRP handler in Windows drivers, and facilitating the process of analyzing, replaying and fuzzing Windows drivers for vulnerabilities

Language:C++100

crtsys

C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL

Language:C++MIT100

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Language:CBSD-3-Clause100

feng

data driven file format template system

MIT100

libmem

Process & Memory Hacking Library written in C89 (Windows/Linux/BSD) (Internal/External) (x86/x64, ARM/ARM64) (C/C++)

Language:CGPL-3.0100

manual_exception_handling

Handling C++ & __try exceptions without the need of built-in handlers.

Language:C++100

MsIoExploit

Exploit MsIo vulnerable driver

MIT100

NoVmpy

Language:PythonBSD-3-Clause100

ucxxrt

The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.

Language:C++MIT1 10

unipacker

Automatic and platform-independent unpacker for Windows binaries based on emulation

Language:PythonGPL-2.0100

AceLdr

Cobalt Strike UDRL for memory scanner evasion.

MIT000

ACEPatcher

A simple to use, gui based program for patching .NET assemblies

000

DriverBuddyReloaded

Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks

GPL-3.0000

dumpscan

NOASSERTION000

efiXplorer

IDA plugin for UEFI firmware analysis and reverse engineering automation

GPL-3.0000

FindFunc

FindFunc is an IDA PRO plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string, or conform to various other constraints.

000