Recently, I developed a PoC AV/EDR Framework, called Inceptor. More information about the tool can be found in the repository itself, and in the accompanying blog post.

Recently, I got my hands on a hardware wallet that features iris recognition as a selling point. The novelty of the iris component sparked my curiosity, so I decided to take a deep dive into its implementation. Since the wallet’s hardware and software design…

Feel Free to contact me : t.me/Ke3rNel

Macro-header for compile-time C obfuscation (tcc, win x86/x64) - DosX-dev/obfus.h

A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs - DualHorizon/blackpill

NoMoreStealers is a Windows file system minifilter driver that protects sensitive user data from untrusted processes. - EvilBytecode/NoMoreStealers

How I reverse engineered an ESP32-based smart home device to gain remote control access and integrate it with Home Assistant.

EDR bypasses techniques written in Rust for Windows 10 - Arasimnida/EDR-bypass-rs

At Hexacon 2023, we presented our Windows kernel security research, uncovering CVE-2023-28218, a heap overflow in afd.sys. Read our exploit analysis and methodology. | Vulnerability Research

In this beginner malware analysis stream, we reverse engineered a Babuk Ransomware variant with IDA Pro. We analyzed its command-line parsing, service termination, process termination, anti-recovery commands, file encryption, share encryption, and manually…

https://media.ccc.de/v/38c3-reverse-engineering-u-boot-for-fun-and-profit

A field guide to dumping and reverse engineering a bare-metal U-Boot binary, including all the good stuff like funky hardware setups, UART logs, a locked bootloader and unknown base…

Introduction

Reverse engineering firmware binaries often entails going through the datasheet, compiler headers to set up the base address and memory map correctly.