🎯
Highlights
Starred repositories
Full exploit code for CVE-2026-40369 - A Windows kernel arbitrary write vulnerability that allows browser sandbox escape from all browsers render process sandbox
Model Context Protocol (MCP) server for the Ghost Security API
Live validation proxy tool for testing web app vulnerabilities
CVE-2020-17103 was apparently not patched or the patch was reversed, regardless this the PoC for an LPE in cldflt.sys
GreenPlasma Windows CTFMON Arbitrary Section Creation Elevation of Privileges Vulnerability
Repository hosting the bluehammer vulnerability
YellowKey Bitlocker Bypass Vulnerability
Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels.
Autonomous Windows POC developer from patchwatch diff reports
A local tool for ingesting Windows Patch Tuesday CVEs, diffing patched binaries with Ghidriff and surfacing LLM-generated security analysis through a browser UI
An MCP server wrapping `kd.exe` for Windows kernel debugging
ExploitBench measures how far AI agents climb, from reaching vulnerable code, to triggering the bug, to building exploit primitives, to arbitrary code execution.
A suite of plugins for legal workflows
Convert your HackerOne reports into reusable AI skills.
Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android
Burp Suite dashboard for bug hunters with targets, notes, radio streaming, and local MP3 JukeBox.
A tool for embedding XXE/XML exploits into different filetypes
Shell plugin: alias reminders & modern command suggestions
Blogpost series showcasing interesting cloud - web app security bugs
Dusseldorf is an out-of-band security tool to help in security research.
Rust implementation of Tailscale (preview, experimental)
Protect against malicious code installed via npm, yarn, pnpm, npx, pnpx, pip, uv and poetry with Aikido Safe Chain. Free to use, no tokens required.
Apache Tomcat Tribes EncryptInterceptor fail-open bypass, unauthenticated RCE PoC