Stars
Work-in-progress tool to reverse unity's IL2CPP toolchain.
🎓 Path to a free self-taught education in Computer Science!
Compile asm code into C# functions on fly!
GooseMod is a new, store-driven Discord mod.
Simple tool to extract and decompress embedded resources processed by Fody Costura
Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories
A C header-only HTTP/HTTPS server and client library
🔑KMS_VL_ALL - Smart Activation Script
An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
dnSpyEx / dnSpy
Forked from dnSpy/dnSpyUnofficial revival of the well known .NET debugger and assembly editor, dnSpy
Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file
Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction within NTDLL.
DEFCON 27 workshop - Modern Debugging with WinDbg Preview
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
Generates x86, x64, or AMD64 x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
Application to route DbgView 4.90 output to a Discord bot.
Blazing fast and correct x86/x64 disassembler, assembler, decoder, encoder for Rust, .NET, Java, Python, Lua
Parses MSDN documentation into an XML file
Imports MSDN documentation into IDA Pro
✨ Skin boosts a League of Legends ARAM lobby without consuming any RP, temporarily unlocking a skin for everyone and granting you extra BE at the end of your match
Stealthy way to hijack the existing game process handle within the game launcher (currently supports Steam and Battle.net). Achieve external game process read/write with minimum footprint.