小红书xs纯算 小红书x-s x-s-common xsc 等字段 纯算逆向

JS混淆代码的AST分析工具 AST analysis tool for obfuscated JS code

补环境框架sdenv，完美过瑞数vmp理论通杀，配合瑞数vmp纯算法逆向项目（rs-reverse）更好学习原理

This is my EAC Bypass (Setup) Driver that offers an undetected communication and callback handler/hooking system through IOCTL.

Windows RPC Python fuzzer

CTF framework and exploit development library

Installable GitHub library of 1,326+ agentic skills for Claude Code, Cursor, Codex CLI, Gemini CLI, Antigravity, and more. Includes installer CLI, bundles, workflows, and official/community skill c…

FastMonitor是一款基于golang开发的网络流量监控与威胁检测工具，集成了数据包分析、进程关联、会话流统计、威胁检测分析、地理位置可视化等功能于一体。

A custom tool to unpack VMProtect-obfuscated executables and restore the original binary

kernel mode spoofer disk and smbios, socket communication

A tool to help query AD via the LDAP protocol

Module extending manual mapper

AirPods liberated from Apple's ecosystem.

Loader base source using keyauth made by me with basic protection, u can use it as a base for your spoofer/cheat loader

Detects process injection and memory manipulation used by malware. Finds RWX regions, shellcode patterns, API hooks, thread hijacking, and process hollowing. Built in Rust for speed. Includes CLI a…

[Android RAT] Remotely manage your android phone using PHP Interface

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulation for LSASS memory dumping on modern Windows with HVCI/VBS.

AV/EDR evasion via direct system calls.

The Kernel Script Utility is an x64 Kernel-Mode rootkit written in C. It was designed to intercept process memory flow featuring a full TCP/IP network API.

A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.

KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.

IoCreateDriver Implementation, it can be useful if you're trying to bypass anticheats

Open-source android spyware

Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2

Android Parental control app

AndroRAT | Remote Administrator Tool for Android OS Hacking

Contexts Optical Compression

This tool helps inject code into the processes of Antivirus programs.