A DNS rebinding attack framework.

Some Useful Tricks for Pentest Android and iOS Apps

A zero-dependency, cross-platform CLI to exterminate the ansi-regex supply-chain attack and related variants.

A Web Site that gather all football live matches pressure graphs, live scoreboard and stats from SofaScore.

Este projeto é um script Node.js que utiliza a biblioteca mineflayer para criar e conectar múltiplos bots a um servidor de Minecraft. Os bots são projetados para passar automaticamente por verificações de captcha e simular a atividade de jogadores.

Fast Sms Bomber Türkiye. It is a crime to use it to disturb people. This software was created to draw attention to security vulnerabilities on sites. Don't forget to check out our other projects.

An implementation for MLLM oversensitivity evaluation

Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers

The Attack Surface Radar tool helps cybersecurity professionals visualize and analyze the attack surface of a system. It allows users to input various attack vectors, entry points, and other risk-related data, which is then visualized in a radar chart.

Padding Oracle Attack with Node.js

This repository is the source code for a Capstone Project - FPT University Group SP24IA08

Cryptanalysis of the DAO exploit & Multi-Stage Attack

Performing CRUD operation with AntiForgeryToken

Ultimate Container Security Track

Anti Shoulder Surfing Attack Platform (ASSAP)

Example of a reentrance attack.

Advanced Cyber Threat Map (Simplified, customizable, responsive and optimized)

A rate limiting store for express-rate-limit with mongoose

This project is an example project of many various JS security vulnerabilities on backend or on frontend.

Vulnerability CVE-2021-44228 allows remote code execution without authentication for several versions of Apache Log4j2 (Log4Shell). Attackers can exploit vulnerable servers by connecting over any protocol, such as HTTPS, and sending a specially crafted string.