Advanced exploits that I wrote for Pwn2Own competitions and other occasions
☆170Mar 23, 2024Updated last year
Alternatives and similar repositories for Exploits
Users that are interested in Exploits are comparing it to the libraries listed below
Sorting:
- Not necessarily related to software bugs and exploits; this repo contains snippets of code that demonstrate some interesting functionalit…☆35Apr 24, 2021Updated 4 years ago
- Zero-day and N-day security vulnerability notes, analysis, and proof-of-concepts☆426Mar 20, 2022Updated 4 years ago
- Full chain Chrome 71.0.3578.98 exploit☆22Jul 18, 2021Updated 4 years ago
- Full Chain Analysis of CVE-2022-4262, a non-trivial feedback slot type confusion in V8.☆107Feb 12, 2025Updated last year
- ☆15Nov 3, 2023Updated 2 years ago
- ☆16Nov 23, 2021Updated 4 years ago
- ☆130May 15, 2025Updated 10 months ago
- This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks.☆52Aug 3, 2025Updated 7 months ago
- POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox☆21Aug 9, 2022Updated 3 years ago
- ☆10Jun 2, 2021Updated 4 years ago
- 2018 Advent Calendar browser pwnables☆15Feb 14, 2019Updated 7 years ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆122Jul 21, 2022Updated 3 years ago
- SSH & FTP brute-forcing tool written in python☆11Oct 2, 2024Updated last year
- Report and exploit of CVE-2023-36427☆90Nov 22, 2023Updated 2 years ago
- PoC CVE-2021-30632 - Out of bounds write in V8☆74Sep 20, 2021Updated 4 years ago
- ☆130Aug 23, 2022Updated 3 years ago
- Static binary instrumentation for windows kernel drivers, to use with winafl☆81Feb 5, 2025Updated last year
- ☆71Oct 31, 2023Updated 2 years ago
- ☆26Oct 29, 2021Updated 4 years ago
- This tool calculates tricky canonical huffman histogram for CVE-2023-4863.☆26Dec 20, 2023Updated 2 years ago
- A Pwn2Own 2024 SpiderMonkey JIT Bug: From Integer Range Inconsistency to Bound Check Elimination then RCE☆95Feb 12, 2025Updated last year
- OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"☆43May 22, 2024Updated last year
- ☆23Nov 5, 2021Updated 4 years ago
- ☆29Aug 24, 2025Updated 6 months ago
- A POC to disable TamperProtection and other Defender / MDE components☆255Jun 6, 2024Updated last year
- ☆58Jan 29, 2024Updated 2 years ago
- Windows KASLR bypass using prefetch side-channel☆178Apr 26, 2024Updated last year
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆905Jan 21, 2025Updated last year
- Fuzzing IoT Devices Using the Router TL-WR902AC as Example☆129Nov 15, 2025Updated 4 months ago
- My Personal Reading lists for CVE Writeups☆38Feb 10, 2022Updated 4 years ago
- A collection of curated resources and CVEs I use for research.☆107Aug 8, 2021Updated 4 years ago
- Slides about HyperDbg☆39Feb 11, 2026Updated last month
- My Chrome and Safari exploit code + write-up repo☆532Nov 5, 2021Updated 4 years ago
- September Chrome 1day by István Kurucsai☆82Sep 9, 2019Updated 6 years ago
- ☆185Jan 12, 2023Updated 3 years ago
- DarkRat source - beware untested source and resources.☆21Dec 7, 2019Updated 6 years ago
- ☆146Aug 17, 2022Updated 3 years ago
- A collection of links related to VMware escape exploits☆1,495Sep 4, 2024Updated last year
- CVE-2025-31644: Command Injection in Appliance mode in F5 BIG-IP☆24May 11, 2025Updated 10 months ago