A C++ REPL for IDA Pro / IDA C++ SDK

A reverse-engineering agent for IDA Pro and Binary Ninja

ida utilities / plugins / scripts

Simple AST for reverse engineering, purely meant as an example.

Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in user-mode.

PDB file inspection tool

A Windows Kernel Driver Emulator base on Unicorn, Kernel Memory Dump and some of native environment

Vibecoded DriverView except not only view.

Mod loader, scripting platform, and VR support for all RE Engine games

A x86_64 software emulator

A JIT assembler for x86/x64 architectures supporting FPU, MMX, SSE (1-4), AVX (1-2, 512), APX, and AVX10.2

Modular and extensible library for Virtual Machine Introspection

Statistics from our binary transformation framework

Collection of hypervisor detections

Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!

Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)

Admin to Kernel code execution using the KSecDD driver

A portable header only library extending the C++20 STL.

Unicorn Engine port for UEFI firmware

Deobfuscation via optimization with usage of LLVM IR and parsing assembly.

A devirtualization engine for Themida.

RISC-V Virtual Machine

A small tool for rapid enumeration of CPUID, and MSR fields.

Hex-Rays Decompiler plugin for better code navigation

Writeups for CTF challenges

The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.