ACTIVE ARSENAL
Tools and research that push boundaries
Advanced malware project achieving Windows Defender bypass through custom shellcode loading and evasion techniques. Explores syscall mechanics, memory manipulation, and behavioral detection evasion. Private repository with research in the Sneaky Shellcode blog.
Locally-hosted AI-driven static analysis security testing engine. Model-agnostic design for future-proofing, structured machine-readable output, and integration with existing CI/CD pipelines. Focuses on reasoning about code behavior, not just pattern matching.
ML-powered malware implementing advanced attack techniques including process hollowing, credential harvesting, and persistence mechanisms. Research-focused exploration of modern threat capabilities.
Full-featured phishing simulation platform for red team operations. Includes campaign management, email templating, landing page creation, and detailed analytics for social engineering assessments.
Open-source tool for APK signing and unbundling operations. Streamlines mobile security testing workflows with automated certificate handling and app manipulation.
A modal system for managing server access without remembering passwords. Uses a self-owned three-way handshake encryption system — authenticate once, and the vault handles the rest. Built for operators who manage multiple environments and refuse to reuse credentials.