SANDY is a Huntress 2025 CTF reverse engineering challenge where you analyze a malicious binary, uncover its logic, and extract the hidden flag.

Reverse engineering RC4 in Windows malware using SystemFunction032 to extract keys and decrypt the payload.

NahamCon2025 CTF Malware Reversing Challenge

A PowerShell toolkit that automates enabling TCP/IP, adding -T7806, enabling the DAC, and decrypting SQL Server linked-server passwords - for legal, authorized use only.