（communication detected）a kernel driver for game cheater. includes read&write memory / key&mouse simulator / kernel DWM render / process hider / kernel remote call / force delete file / remote thre…

基于Unicorn仿真PE模拟

Hades HIDS/HIPS for Windows

Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team p…

Small tool to convert beteween the PE alignments (raw and virtual).

Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

eBPF-based lightweight debugger for Android

Hook WeChat / 微信逆向

Repository of yara rules

Set of IDA Pro scripts for parsing GoLang types information stored in compiled binary

strings+ can scan and print visiabled string from binary file.

All-in-One malware analysis tool.

Detect strange memory regions and DLLs

Practice to LLM.

Emulate Drivers in RING3 with self context mapping or unicorn

《构筑大语言模型应用：应用开发与架构设计》一本关于 LLM 在真实世界应用的开源电子书，介绍了大语言模型的基础知识和应用，以及如何构建自己的模型。其中包括Prompt的编写、开发和管理，探索最好的大语言模型能带来什么，以及LLM应用开发的模式和架构设计。

Threat Intel IoCs + bits and pieces of dark matter

Toolkit for linearizing PDFs for LLM datasets/training

A book for Learning the Foundations of LLMs

The Hunting ELK

大模型基础: 一文了解大模型基础知识

面向开发者的 LLM 入门教程，吴恩达大模型系列课程中文版

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Hunts out CobaltStrike beacons and logs operator command output

Scan files or process memory for CobaltStrike beacons and parse their configuration

CobaltStrikeDetect

通过 JAVA AGENT 查杀内存马，提供简易方便的 GUI 界面，一键反编译目标环境内存马进行分析，支持远程查杀和本地查杀（注意：仅供本地复现分析学习，请勿用于正式和生产环境）

蓝队应急工具