Reverse engineering winapi function loadlibrary.

Single repository to store all of the necessary elements required to create a Raspberry Pi based simple IMSI catcher. All credit to the individual projects, joined here for ease of use.

Plugins for OmniFocus 3.8+

A omnifocus plugin to seamlessly start toggl timers from inside OmniFocus

Easily document cables and wiring harnesses.

A toolbox for analyzing DOS (Real Mode) programs with Ghidra

An unsorted collection of little tools and scripts I've made that don't fit anywhere else

The Delphi Hand Rake

Windows Shortcut file (LNK) parser

Automatically unpack SPLCrypt packed binaries (IcedID / BazarLoader stagers)

Some of my publicly available Malware analysis and Reverse engineering.

The "Activate Windows" watermark ported to Linux

An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

Just a collection of my Ghidra/scripts to aid malware reversing

High Octane Triage Analysis

Native API header files for the System Informer project.

Detect Tactics, Techniques & Combat Threats

bsdiff and bspatch are libraries for building and applying patches to binary files.

A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.

Plugin for Ghidra to assist reversing Golang binaries

Making GO reversing easier in IDA Pro

A list of IDA Plugins

Malware Configuration And Payload Extraction

LERN GHIDRA

This repository contains the tools we used in our research on the Google Titan M chip

Collection of malware analysis products for individual malware samples

Code snips and notes