IDA Pro RPC for assisted RE-tasks

An IDA Pro / Hex-Rays plugin that turns noisy pseudocode into reviewable, kernel-aware cleanup artifacts

watchOS kernel R/W + live process memory dumping on Apple Watch Series 4 (watchOS 10.6.2 - latest). Named after the children's book Peepo!

DCOM in memory and fileless lateral movement techniques through .Net deserilization

Autonomous Windows POC developer from patchwatch diff reports

A local tool for ingesting Windows Patch Tuesday CVEs, diffing patched binaries with Ghidriff and surfacing LLM-generated security analysis through a browser UI

ExploitBench measures how far AI agents climb, from reaching vulnerable code, to triggering the bug, to building exploit primitives, to arbitrary code execution.

CyberGym is a large-scale, high-quality cybersecurity evaluation framework designed to rigorously assess the capabilities of AI agents on real-world vulnerability analysis tasks.

This PoC demonstrates a race condition in the Windows kernel leading to a double-free vulnerability, allowing local privilege escalation to SYSTEM. The exploit uses multithreaded handle manipulatio…

WinIo64 physical memory exploit. Locates System EPROCESS, steals System token via direct EPROCESS memory read/write, spawns cmd as SYSTEM.

LEAKED SYSTEM PROMPTS FOR CHATGPT, CLAUDE, GEMINI, GROK, PERPLEXITY, CURSOR, LOVABLE, REPLIT, AND MORE! - AI SYSTEMS TRANSPARENCY FOR ALL! 👐

VulnGym: A Real-World, Project-Level Vulnerability Benchmark for White-Box Vulnerability-Hunting Agents

Visa Vulnerability Agentic Harness

GreatXML bitlocker bypass vulnerability

RoguePlanet Windows Defender Vulnerability

Attack surface in the real-world environment of CVE-2026-41096

A Ghidra agentic reverse engineering skill.

CVE-2026-41089 PoC — Netlogon CLDAP stack buffer overflow (CVSS 9.8 CRITICAL)

😢Unpwned😢 TyphoonPWN 2026 Zero-Day Exploit ($10,000)

Practice code for reading process memory in Windows using WriteProcessMemory.

An Electron-based YouTube Music desktop client with app-local SOCKS5 tunneling via sing-box & WireGuard.

Lnk crafting and research tools

For educational purposes only, samples of ransomware/wiper trojans including screenshots/ransom-notes.

CVE-2026-41096: Heap Overflow in the Windows DNS Client

Publications from Calif

Usermode exploit to bypass any AC using a 0day shatter attack.

A Windows kernel driver viewer and manager built in Rust — real-time enumeration, signature verification, SCM operations, and multi-format exports with a modern dark-themed GUI.