A symbolic execution engine for EVM smart contract binaries.

automated-arancino is a lightweight analysis framework to automate malware experiments.

MarbleRun is the control plane for confidential computing. Deploy, scale, and verify your confidential microservices on vanilla Kubernetes. 100% Go, 100% cloud native, 100% confidential.

Python wrapper for tshark, allowing python packet parsing using wireshark dissectors (Python2 legacy version)

A powerful and user-friendly binary analysis platform!

Knox is a secret management service

16,432 Free Yara rules created by

A set of tutorials about code injection for Windows.

This is where we work on the newsletter

Arancino is a dynamic protection framework that defends Intel Pin against anti-instrumentation attacks.

Adversary tradecraft detection, protection, and hunting

Agrigento is a tool to identify privacy leaks in Android apps by performing black-box differential analysis on the network traffic.

AVClass malware labeling tool

Some setup scripts for security research tools.

A repository for learning various heap exploitation techniques.

A collected list of awesome security talks

Defund the Police.

C++ application that uses memory and code hooks to detect packers

DEPRECATED - replaced with "monitor"

Repository of modules and signatures contributed by the community

Cuckoo Sandbox is an automated dynamic malware analysis system

An attempt to answer the age old interview question "What happens when you type google.com into your browser and press enter?"