Personal Zero Trust Browser Security (ZTBS)

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

Use the GCP testIamPermissions functionality to bruteforce and discover your permissions

Fully autonomous AI hacker to find actual exploits in your web apps. Shannon has achieved a 96.15% success rate on the hint-free, source-aware XBOW Benchmark.

Library packaging and distribution for Ruby.

[PoC] Trusted Publishing verifier for package URLs (purl)

CVE-2024-4367 & CVE-2024-34342 Proof of Concept

Redis(<=5.0.5) RCE

58 MB Google Chrome to fit inside AWS Lambda Layer compressed with Brotli

CVE-2025-48384 PoC

A minimal network monitoring MCP tool for Playwright browser automation. **Just 3 simple tools** to capture, filter, and analyze network traffic during web automation.

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

CTFs as you need them

✨ Fully autonomous AI Agents system capable of performing complex penetration testing tasks

an open source, extensible AI agent that goes beyond code suggestions - install, execute, edit, and test with any LLM

Open-Source Remote Administration Tool For Windows C# (RAT)

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

U16プロコンの題材となっているCHaserのNode.js製ライブラリです。

#YOLO motherfuckers!

deck is a tool for creating deck using Markdown and Google Slides.

Scanning APK file for URIs, endpoints & secrets.

Astro dev toolbar app that previews your page on social platforms and shows its open graph data.

A coding font based on JISZ8903

Find, verify, and analyze leaked credentials