Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.

An Embedded NoSQL, Transactional Database Engine

SQLCipher is a standalone fork of SQLite that adds 256 bit AES encryption of database files and other security features.

A Stealthy Trojan Spyware

A Terrific Keystroke Recorder

A simple keylogger for Windows, Linux and Mac

The C++14 wrapper around sqlite library

❤️ SQLite ORM light header only library for modern C++

A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.

BOF to decrypt Signal Desktop chat logs

free C++ class library of cryptographic schemes

Remote-control of OBS Studio through WebSocket

InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.

A Course on Intermediate Level Linux Exploitation

Reverse engineering winapi function loadlibrary.

Obfuscate specific windows apis with different apis

Obfuscation LLVM 17

PE bin2bin obfuscator

Articles and tools related to research in the Apple environment (mainly macOS).

Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.

Now You See Me, Now You Don't

protector & obfuscator & code virtualizer

📚 Large base of PowerShell notes in ru language (Сheat Sheet & Documentation).

A curated list of awesome resources related to executable packing

A simple memory allocator - Memory allocation 101

Fully open reproduction of DeepSeek-R1

Tool for creating snapshots and remote backups of btrfs subvolumes

A Windows memory instrumentation tool to track memory allocations and deallocations for long-running applications.