Skip to main content
abel

Projets

Those are my most important projects, that treats various topics among forensics, reverse engineering, hypervisors, and research subjects.

I mainly work with Rust and Python but I also have some experience with C, C++ and Java. You will also find various usage of DevOps tools like Docker, Vagrant, Terraform, Ansible and Nix of which I am a big fan.

  1. Xenith

    2025

    Project management, Rust, Hypervisor, Debugging, Anti-virtualization

    Xenith is a lightweight Xen-based hypervisor designed for research and development in the realm of operating systems and virtualization. It provides a very stealth environment, advanced debugging capabilities, including low-level insights into guest systems and support for virtual machine introspection.

    Built with performance and stealth in mind, Xenith ensures minimal overhead for seamless execution of virtualized workloads. Its intuitive GUI simplifies management and monitoring, while a robust scripting API enables developers to automate tasks and extend functionality with ease.

    Also see the website for more information.

    xenith-re/xenith

    Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.

    Rust
    5
    0

  2. awesome-anti-virtualization

    2025

    Anti-virtualization

    A curated list of resources related to anti-virtualization techniques containing references to books, papers, blog posts, and other written resources.

    theo-abel/awesome-anti-virtualization

    A curated list of awesome resources related to anti virtualization techniques

    null
    45
    2

  3. Specialized RAG

    2025

    Docker, Ollama, Kotaemon, AI

    Empowers anyone to easily setup a specialized local Retrival Augmented Generation on Linux through Kotaemon and Ollama.

    theo-abel/specialized-rag

    Empowers anyone to easily setup a specialized local RAG.

    Shell
    1
    1

  4. Blackpill

    2024

    Rootkit, Rust, Linux, Kernel, Hypervisor

    A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs.

    The rootkit is composed of multiple modules (talking about Rust modules, not kernel modules) :
    - defense evasion: hide files, processes, network connections, etc.
    - hooking: hook syscalls and IDT
    - hypervisor: create a virtual machine to execute malicious code
    - persistence: make the rootkit persistent after reboot and resilient to supression
    - utils: various utilities

    DualHorizon/blackpill

    A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs

    Rust
    289
    34

  5. PyDFIRRam

    2024

    DFIR, Memory Forensics, Python, Volatility

    PyDFIRRam is a Python library leveraging Volatility 3 to simplify and enhance memory forensics. It streamlines the research, parsing, and analysis of memory dumps, allowing users to focus on data rather than commands.

    PyDFIR/pyDFIRRam

    PyDFIRRam is a Python library leveraging Volatility 3 to simplify and enhance memory forensics. It streamlines the research, parsing, and analysis of memory dumps, allowing users to focus on data rather than commands.

    Python
    25
    1

  6. secmalloc

    2024

    Linux, C, Memory allocation, Heap security

    Unoptimized secure implementation of malloc/realloc/free-like functions

    theo-abel/secmalloc

    Unoptimized secure implementation of malloc/realloc/free-like functions

    C
    0
    0

  7. libMMU

    2024

    Project management, Rust, Memory Forensics

    libMMU is an open-source project based on the thesis In the Land of MMUs: Multiarchitecture OS-Agnostic Virtual Memory Forensics by Andrea Oliveri and Davide Balzarotti and their tool MMUShell. It is a Rust crate that simplifies the process of reconstructing the virtual address space from a dump of volatile memory.

    Memoscopy/libMMU

    Rust crate that aims to simplify the process of rebuilding virtual address spaces from a memory dump

    Nix
    6
    0

  8. ctf-commander

    2024

    Project management, Rust, CLI, REST API

    CTFCommander is a CLI and TUI tool that allows you to access and interact with different cybersecurity platforms from your terminal. It will support the following platforms:
    - Hack The Box
    - Root-me
    - Try Hack Me
    - CTFd

    shard77/ctf-commander

    CTFCommander is a CLI / API wrapper around different cybersecurity platforms.

    Rust
    4
    0

  9. AthenaOS project management

    2024

    Project management, Nix

    AthenaOS is a distribution based on Arch Linux and NixOS oriented towards cybersecurity. It is designed to be a complete and easy-to-use operating system for security professionals, researchers, and enthusiasts.

    Athena-OS/athena

    Athena OS is a Arch/Nix-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!

    Shell
    1110
    89

  10. Garry's Mod cheat client

    2020

    Lua

    theo-abel/Pity

    Pity est un fichier lua permettant de tricher sur Garry’s Mod dans de nombreux modes de jeu.

    Lua
    0
    0