Highlights
- Pro
Stars
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across …
Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
Nidhogg is an all-in-one simple to use windows kernel rootkit.
LPE exploit for CVE-2023-21768
Just a repo for random tools we have developed related to vulnerability research and exploit development.
This is a simple how-to to create your own android kernel debugging cable using commercially available parts.
Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read
A program to draw rectangles from heap traces.
A simple shell script and two bash sourceable scripts used to build a static gdb-7.12 gdbserver using cross-compiler setups
Fuzzing harness for testing proprietary image codecs supported by Skia on Android
PoC 2019-2215 exploit for S8/S8 active with DAC + SELinux + Knox/RKP bypass
A True Instrumentable Binary Emulation Framework
A collection of pwn/CTF related utilities for Ghidra
Fully asynchronous SMB library written in pure python
Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.
AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
SharpBox is a C# tool for compressing, encrypting, and exfiltrating data to DropBox using the DropBox API.
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
The best tool for finding one gadget RCE in libc.so.6
Kernel Address Space Layout Randomization (KASLR) Recovery Software
Tor Browser and Tails version fingerprint PoC
Helper scripts for hosting a Linux kernel exploitation CTF challenge