Windows NT Syscall tables

Themida unpacker

A reversing plugin for cross-decompiler collaboration, built on git.

Loader for GameBoy Advance ROM files

Hypervisor based anti anti debug plugin for x64dbg

The next generation reverse engineering IDE (work-in-progress).

A customizable process dumper.

A static devirtualizer for VMProtect x64 3.x. powered by VTIL.

Tool for PDB generation from IDA Pro database

A bunch of Windows anti-debugging tricks for x86 and x64.

pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers

State-of-the-art native debugging tools

AntiDebugging sample sources written in C++

PDBRipper is a utility for extract an information from PDB-files.

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Ghidra is a software reverse engineering (SRE) framework

Ghidra C++ Class and Run Time Type Information Analyzer

PE file viewer/editor for Windows, Linux and MacOS.

anti debugging library in c++.

The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support

Reverse engineering framework in Python

Writing a self modifying program to play Bad Apple with it's control flow graph

The Minimalistic x86/x64 API Hooking Library for Windows

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

UNIX-like reverse engineering framework and command-line toolset.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Framework for lifting x86, amd64, aarch64, sparc32, and sparc64 program binaries to LLVM bitcode