The Backdoor Factory
Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Runpe In Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
DLL Hijacking Detection Tool
Checksec tool in Python, Rich output. Based on LIEF
A bridge/proxy allowing you to connect to Minecraft: Java Edition servers with Minecraft: Bedrock Edition.
Persistent IAT hooking application - based on bearparser
Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.
PE file viewer/editor for Windows, Linux and MacOS.
Library to read and edit files in the following formats: Executable and Linking Format (ELF), Portable Executable (PE), MachO and OAT (Android Runtime)
Hybrid mode plugin to allow for connections from Geyser to join online mode servers.
Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
PEiD detects most common packers, cryptors and compilers for PE files.
Stealing Signatures and Making One Invalid Signature at a Time
Win Version Info
Windows-only native addon to read version info from executables.
A static analyzer for PE executables.
Reflective PE packer.
An impish, cross-platform binary parsing crate, written in Rust
A tool to help you write binary exploits
The dissection of a simple "hello world" ELF binary.
Portable Executable parsing library (from PE-bear)
Portable Executable (PE) library written in .Net
PE (x86) and PE+ (x64) files viewer, based on libpe.
small Windows 10 (based on Windows PE) with customised tools
HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.
Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
Portable Executable launcher for Windows NT bypassing loader
COFF and Portable Executable format described using standard C++ with no dependencies.
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
Fast multi-platform (ELF/PE/MachO) binary checksec written in Rust.
Most advanced factions plugin for PocketMine-MP