_kernproc
Dobby. a lightweight, multi-platform, multi-architecture hook framework.
4.8kHookZzModules. modules deps on HookZz framework.
530pwn2exploit. all mine papers, pwn & exploit
404NoteZ. notebook base on github issue
86evilELF. Malicious use of ELF such as .so inject, func hook and so on.
77goscan. golang的扫描框架, 支持协程池和自动调节协程个数.
47DobbyDrill. hook MachO file based on Dobby (NOT DONE)
45DyldMachoParser. Macho Parser base on dyld (supported static/runtime)
36rtspy. runtime spy elf with android/linux and macho with macOS/IOS
36evilMACHO. Malicious use of macho, such as dump-runtime-macho, function-hook.
15proxyscanner. 分析协议构造验证数据,采用异步非阻塞socket发送数据,不采用request的方式。
11torweb. 基于tornado并且有很多trick用法的社区.
9minihttpd. 用Pure C写的httpd,快速提供web服务。
7SaitamaCore. [wip] a toy kernel
7Riru-Il2CppDumper. Using Riru to dump il2cpp data at runtime
7tornado-project-generator. tornado项目模板
7linux-insides-zh. Linux 内核揭密
7Detours-mirror. detours mirror v3.0 Build 343 (microsoft add x64 support)
6PUBGKit. pubg kit = {crouch jump, remove grass, ...}
5jmpews.github.io. Zz...
5qemu. Official QEMU mirror. Please see http://wiki.qemu.org/Contribute/SubmitAPatch for how to submit changes to QEMU. Pull Requests are ignored. Please only use release tarballs from the QEMU website.
5fishhook. A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS. (arm64e pac support)
5evilHEAP. heap exploit example
4configs. 自用的各类config集合, 方便使用.
4VirtualXposed. A simple app to use Xposed without root, unlock the bootloader or modify system image, etc.
4ktrw. An iOS kernel debugger based on a KTRR bypass for A11 iPhones that works with LLDB.
4ios-resources. Useful resources for iOS hacking
4Blackbone. Windows memory hacking library
3pypcode. Python bindings to Ghidra's SLEIGH library for disassembly and IR translation
3ios_bfu_triage. Bash script to extract data from a "chekcra1ned" iOS device
3localproxy. 自动切换代理
3CVE-2019-6207. xnu kernel heap inofo leak
2LIEF. LIEF - Library to Instrument Executable Formats
2shadowsocks. Python
2xboot. The extensible bootloader for embedded system with application engine, write once, run everywhere.
2crypto-algorithms. Basic implementations of standard cryptography algorithms, like AES and SHA-1.
2MonkeyDev. CaptainHook Tweak、Logos Tweak and Command-line Tool、Patch iOS Apps, Without Jailbreak.
2http-client. A high-performance, high-stability, cross-platform HTTP client.
2pocs. Proof of Concepts (PE, PDF...)
2Zelda. A simple multi-process HTTP/HTTPS tunnel proxy, supports Basic authentication.
2QBDI. A Dynamic Binary Instrumentation framework based on LLVM.
2Saily. Modern. Fast. Beautiful.
1syzkaller. syzkaller is an unsupervised coverage-guided kernel fuzzer
1ArxContainer. C++ container-like classes (vector, map, etc.) for Arduino which cannot use STL
1MiniSTL. Tiny STL based on SGI STL
1tunelo. tunelo encrypts and tunnels UDP traffic (e.g. WireGuard) over a transport protocol like websocket or TCP. Helping to use VPNs in restricted areas.
1lldb-capstone-arm. Capstone disassemble scripts for lldb
1Pocsuite. Pocsuite 是知道创宇安全研究团队打造的一款基于漏洞与 PoC 的远程漏洞验证框架,Pocsuite is A remote vulnerability test framework developed by Knownsec Security Team.
1goron. Yet another llvm based obfuscator
1iBoot64helper. IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering
1frida-gum. Low-level code instrumentation library used by frida-core
1