File formats dissections and more...

rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Windows Dependencies

Windows NT Syscall tables

Windows Object Explorer 64-bit

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-m…

Snapshot-based coverage-guided windows kernel fuzzer

Various kernel exploits

Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address as an unprivileged local user, for the purpose of bypassing K…

Various tips & tricks

Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)

Firmware Analysis and Comparison Tool

Dockerfile for building the FACT container

A curated list of awesome embedded and IoT security resources.

🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.（使用C和Intel x86汇编开发的Windows x86可执行文件打包工具，打包后的新文件可以阻碍逆向工程。）

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

awesome list of browser exploitation tutorials

symbolic execution plugin for binary ninja

Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper us…