Use ChatGPT everywhere

A Chrome extension that will steal literally everything it can

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Process Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launched processes, and gives the analyst the option to either keep…

Statically unpacking common android banker malware.

Project for tracking publicly disclosed DLL Hijacking opportunities.

My presentations and papers

gooMBA is a Hex-Rays Decompiler plugin to simplify Mixed Boolean-Arithmetic (MBA) expressions

A GUI and CLI tool for removing bloat from executables

A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

IDA pro plugin to find crypto constants (and more)

Rust Demangler & Normalizer plugin for IDA

Detection in the form of Yara, Snort and ClamAV signatures.

WhiteRabbitTracker: Analyzing malware evasions with information flow tracking

Digital forensic acquisition tool for Windows based incident response.

Matkap - hunt down malicious Telegram bots

Companion code to my O'Reilly book "Flask Web Development", second edition.

Unofficial GoPro WiFi API Documentation - HTTP GET requests for commands, status, livestreaming and media query.

Privacy Engineering Collaboration Space

Go Dependency Analysis toolkit

This repository used to be the user-facing mirror of the Sage source tree. As Sage development migrated on 2023-02-01 from https://trac.sagemath.org/ to our new repository on GitHub, https://github…

Composable proof transcripts for public-coin arguments of knowledge

weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.

CodeHub is an iOS application written using Xamarin

SPITBOL 360 is an implementation of the SNOBOL4 programming language for use on IBM 360 compatible computers. SPITBOL 360 was the first true compiler for SNOBOL4 and is an incredibly clever work of…

A fully Go userland with Linux bootloaders! u-root can create a one-binary root file system (initramfs) containing a busybox-like set of tools written in Go.

A wiki using HAppS, pandoc, and git

A reimplementation of gitit in Yesod

Logging the daily shock and awe in national politics. Read in moderation.