I'm a security researcher and embedded software engineer who spends his days hunting n-days in safety-critical systems and developing binary analysis tools. I help hobbyists, students, ethical hackers, and companies identify security flaws or reverse-engineer smart devices and embedded systems so they can secure or integrate these devices without expensive equipment, licenses, or extensive training and documentation.
FUN FACT #1: I'm z0mb13w4r [zom-bee wawr].
FUN FACT #2: I'm on the TryHackMe UK Wall of Fame!
FUN FACT #3: The Lord of the Rings is my favourite books and movie trilogy.
If you find this project useful and would like to keep it maintained, with new features and a regular release cycle or want to support my research. Then, you can sponsor me at PayPal, or you can buy me a coffee at PayPal. I will be really thankful for anything, even if it is a coffee, because that helps me a lot to know that you care:)
If you require a service contract that includes: email support, technical help, support tickets, prioritised bug fixes with immediate release. Drop me an email: enquiries@uber-techie.co.uk
These tools were originally designed as a research project for industrial control systems (ICS) and the Internet of Things (IoT). A drop-in replacement for readelf, objcopy, and objdump that utilises the Capstone disassembly framework. The project then grew into a collection of tools for malware and binary analysis supporting x86, x86-64, ARM, ARM Thumb, AARCH64, MIPS and RISC-V architectures.
This suite of tools was inspired by a problem I encountered while comparing two subtly different executables that were compiled from the same source code. Also, having binaries built with different cross-compilers raises the question of which flavour of readelf or objdump to use? I started thinking about a simple solution that could be automated and didn't require a $ 7,000-a-year software license.
This problem is solved by the Heuristic Assembly Language Analysis Engine (HALAE), which converts x86-64, ARM, MIPS or RISC-V assembly language into an Intermediate Language (IL) for the comparison and analysis. READ MORE...
A collection of live malware for education and investigation purposes only for professionals who are interested in malware analysis, prevention and containment. READ MORE...
A collection of YARA rules to identify and classify malware families. They act as a "swiss knife" for security researchers, facilitating static analysis to detect specific malware variants through meta, string, and condition sections. READ MORE...
This is collection source-code snippets that can be compiled as ELF (Executable and Linkable Format) format, PE (Portable Executable) format, x86, x86-64, ARM, ARM Thumb, AARCH64, MIPS and RISC-V assembly language to practice binary analysis. READ MORE...
A collection of examples to help a person learn the basics of Java. READ MORE...