DownrightNifty / gh_hack_PoC
☆63Updated last year
Related projects: ⓘ
- ☆122Updated 10 months ago
- Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…☆106Updated last year
- ☆81Updated 2 months ago
- CQ, a code security scanner☆97Updated 4 months ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆139Updated last year
- A python module to explore the object tree to extract paths to interesting objects in memory.☆77Updated 6 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆112Updated 5 months ago
- ☆72Updated 4 months ago
- ☆115Updated last year
- GTFOArgs is a curated list of programs and their associated arguments that can be exploited to gain privileged access or execute arbitrar…☆119Updated 3 weeks ago
- ☆104Updated last year
- A series of writes about “Binary Exploitation”.☆87Updated last year
- ☆180Updated last year
- Repository to store exploits created by Assetnotes Security Research team☆175Updated 10 months ago
- A GraphQL enumeration and extraction tool☆127Updated last year
- Android App Pin Security Issue Allowing Unauthorized Payments via Google Wallet☆69Updated 7 months ago
- Searcher for cross-site leaks (XS-Leaks)☆81Updated last year
- Write ups for Ph0wn CTF☆31Updated this week
- ☆55Updated last year
- Repository that tracks public exploits, vulnerabilities and advisories that I [co-]discovered or [co-]authored.☆108Updated last year
- DEFCON 30 Mainframe buffer overlow workshop container☆86Updated 6 months ago
- Automate converting webshells into reverse shells.☆67Updated last month
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆96Updated this week
- A tool to inspect and attack version 1 GUIDs☆206Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆151Updated 3 weeks ago
- PP-finder Help you find gadget for prototype pollution exploitation☆127Updated last month
- ☆61Updated this week
- ☆36Updated 2 weeks ago
- WebSocket REPL for pentesters☆198Updated last month
- CVE-2023-38408 Remote Code Execution in OpenSSH's forwarded ssh-agent☆4Updated last year