No reviews yet. Be the first to share your experience!
Latest Posts
r0 Crew (Channel)
May 25, 2026, 08:59 AM
Shoggoth is an open-source project based on C++ and asmjit library used to encrypt given shellcode, PE, and COFF files polymorphically.
https://github.com/frkngksl/Shoggoth
#redteam
5,370
13
0
r0 Crew (Channel)
May 25, 2026, 08:59 AM
SGN is a polymorphic binary encoder for offensive security purposes such as generating statically undetecable binary payloads. It uses a additive feedback loop to encode given binary instructions similar toΒ https://en.wikipedia.org/wiki/Linear-feedback_shift_register. This project is the reimplementation of theΒ https://github.com/rapid7/metasploit-framework/blob/master/modules/encoders/x86/shikata_ga_nai.rbΒ in golang with many improvements.
https://github.com/EgeBalci/sgn
#redteam #golang
5,060
6
0
r0 Crew (Channel)
May 25, 2026, 08:59 AM
How to Bypass Golang SSL Verification
https://www.cyberark.com/resources/threat-research-blog/how-to-bypass-golang-ssl-verification
#golang #ssl #bypass #reverse #web #pentest
4,950
7
0
r0 Crew (Channel)
May 25, 2026, 08:59 AM
DJI - The ART of obfuscation
https://blog.quarkslab.com/dji-the-art-of-obfuscation.html
#reverse #mobile #android #obfuscation
Keystone / Capstone Replacement
Nyxstone is a powerful assembly and disassembly library based on LLVM. It doesnβt require patches to the LLVM source tree and links against standard LLVM libraries available in most Linux distributions. Implemented as a C++ library, Nyxstone also offers Rust and Python bindings. It supports all official LLVM architectures and allows to configure architecture-specific target settings.
GitHub: https://github.com/emproof-com/nyxstone
Blog: https://www.emproof.com/introducing-nyxstone-an-llvm-based-disassembly-framework/
8,520
20
0
r0 Crew (Channel)
May 25, 2026, 08:59 AM
Thread-Name Calling - A new process injection technique using Thread Name.
The code to be injected is passed as a thread description to the target.
https://research.checkpoint.com/2024/thread-name-calling-using-thread-name-for-offense/
#redteam #inject
8,020
12
0
r0 Crew (Channel)
May 25, 2026, 08:59 AM
π· Photo
The installation package for IDA Pro 9.0 Beta 2 available without password.
https://out5.hex-rays.com/beta90_6ba923/
Forum for discussion:
https://forum.reverse4you.org/t/ida-pro-9-0-beta/20459
Chat for discussion:
https://t.me/r0_chat
#tools #reverse #idapro #windows #linux #macos
8,910
32
r0 Crew (Channel)
May 25, 2026, 08:59 AM
Mergen converts Assembly code into LLVM IR, a process known as lifting. It leverages the LLVM optimization pipeline for code optimization and constructs control flow through pseudo-emulation of instructions. Unlike typical emulation, Mergen can handle unknown values, easing the detection of opaque branches and theoretically enabling exploration of multiple code branches.
These capabilities facilitate the deobfuscation and devirtualization of obfuscated or virtualized functions. Currently in early development, Mergen already shows promise in devirtualizing older versions of VMProtect, with ambitions to support most x86_64 instructions.
https://github.com/NaC-L/Mergen
#llvm #lifting #vmprotect #tnaci
9,710
39
r0 Crew (Channel)
May 25, 2026, 08:59 AM
xVMP is an LLVM IR-based code virtualization tool, which fulfilled a scalable and virtualized instruction-hardened obfuscation. It supports multiple programming languages, and architectures. It is also compatible with existing LLVM IR-based obfuscation schemes (such as Obfuscator-LLVM).
xVMP is developer friendly. You only need to add annotations to the to-be-protected function in the source code, and xVMP can perform virtualization protection on the function during compilation.
https://github.com/GANGE666/xVMP
#virtualization #obfuscation #alekum
