一款强大的针对x64dbg开发的Python自动化控制模块，提高逆向分析效率 。 A powerful Python automatic control module developed for x64dbg to improve the efficiency of reverse analysis

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Kernel Mode TCP Sockets + LSASS Dump (Rust Shellcode)

ART环境下自动化脱壳方案

Windows System Call Tables (NT/2000/XP/2003/Vista/2008/7/2012/8/10)

Qiling Advanced Binary Emulation Framework

This is an exploit for CVE-2020-0674 that runs on the x64 version of IE 8, 9, 10, and 11 on Windows 7.

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.

AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With …

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

Reverse engineered source code of the autochk rootkit

CVE-2019-0859 1day Exploit

A function tracer

Porting BlueKeep PoC from @Ekultek to actual exploits

Proof of concept for CVE-2019-0708

CTF games I played.

A bunch of links related to Linux kernel exploitation

Some pwn challenges selected for training and education.

😁 writeup & exploits 😋

可以方便地部署一个或者多个pwn题到一个docker容器中（使用chroot，并用自己写的catflag程序作为/bin/sh程序）

official source code of *CTF2019

Chrome, Safari Exploitation

CTF binary exploit code

锁主页驱动

CTF write-ups by Plaid Parliament of Pwning

Detours with just single dependency - NTDLL