Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

A port of Doom (1993) that runs inside a PDF file

A repository for learning various heap exploitation techniques.

💔 Hearbleed exploit to retrieve sensitive information CVE-2014-0160 💔

Malware to gain persistence on a victims machine.

LibZeroEvil & the Research Rootkit project.

A Tutorial how to get started with Linux Kernel Modules and Linux Drivers.

Exploitation of process killer drivers

HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux

Python utility for parsing Xamarin AssemblyStore blob files

PoC for CVE-2024-48990

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC, MIPS, RISC-V 64, a…

Research about the Zend Engine

Load a statically-linked ELF binary(x86 architecture) without the execve syscall.

curiosity got me here

www.eudyptula-challenge.org

Tool to parse the Group Policy Preferences XML file which extracts the username and decrypts the cpassword attribute.

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

A Compiler Writing Journey

「⚠️」Performing a BYOVD on the truesight.sys driver

Connect like there is no firewall. Securely.

🎯 An aimbot that uses Yolov5 and PyTorch to play CS:GO

JWT brute force cracker written in C

Tool for performing SNMP scanning accross wide swaths of IP ranges

A malicious LDAP server for JNDI injection attacks

Exploiting CVE-2021-44228 in Unifi Network Application for remote code execution and more.

Proof-of-Concept for CVE-2024-8353

Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)