🎓 Path to a free self-taught education in Computer Science!

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Repository for the book "Crafting Interpreters"

A minimal, responsive, and feature-rich Jekyll theme for technical writing.

Learn You The Node.js For Much Win! An intro to Node.js via a set of self-guided workshops.

Test suites for Web platform specs — including WHATWG, W3C, and others

⚠️ Browser fingerprinting via favicon!

A sorted and updated list of security wargame sites.

Source code for privacytests.org. Includes browser testing code and site rendering.

Deadline countdowns for academic conferences in Security and Privacy

CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scripting) vulnerabilities on sites where injections are blocke…

Some ideas around spoofing and detecting user agents.

Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link resources from a valid HTML document.

An archive of past challenges from LA CTF hosted by ACM Cyber at UCLA and Psi Beta Rho.

All CTF events

Repository with the downloadable files and server files for the 2021 K3RN3LCTF.

✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com

How to create a valid polyglot HTML/JS/WebAssembly module​ -

Multiplatform reliable implant with failover protocols

SameSite Cookies Wiki

website

Bits of code that I need to put somewhere. Usually used so that I can serve an example from GitHub Pages.

Root-Me Xmas 2024 - Writeups & Sources

Here I will push the source code related to the blog post about php session quirks (and browser features)

Peeking through the window: Fingerprinting Browser Extensions through Page-Visible Execution Traces and Interactions - Artifact

random stuff