An uninitialized read vulnerability by incorrect Turboshaft Store-Store Elimination in V8.

Analysis of CVE-2025-43529 (WebKit UAF) + CVE-2025-14174 (ANGLE OOB) exploit chain - iOS Safari

Code Analysis and Semantic Retrieval Library with Smart Strategies

LLM驱动的 A/H/美股智能分析器，多数据源行情 + 实时新闻 + Gemini 决策仪表盘 + 多渠道推送，零成本，纯白嫖，定时运行

Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

The Best Agent Harness. Meet Sisyphus: The Batteries-Included Agent that codes like you.

Powerful+Fast+Low Privilege Kubernetes discovery tools

A Linux kernel crash log parser based on Syzkaller’s pkg/report.

The companion repository for the 39C3 talk: Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMU

Large Language Model guided Protocol Fuzzing (NDSS'24)

一款快速、全面、易用的页面信息提取工具，可快速发现和提取页面中的JS、URL和敏感信息。

PoC for CVE-2025-38089

Go PostgreSQL driver for database/sql

This is a proof of concept for CVE-2025-38352, a vulnerability in the Linux kernel's POSIX CPU timers implementation. The September 2025 Android Bulletin mentions that this vulnerability has been u…

mcp-language-server gives MCP enabled clients access semantic tools like get definition, references, rename, and diagnostics.

Intel® NPU (Neural Processing Unit) Driver

Model Context Protocol for WinDBG

Buttercup finds and patches software vulnerabilities

DeepAudit：人人拥有的 AI 黑客战队，让漏洞挖掘触手可及。国内首个开源的代码漏洞挖掘多智能体系统。小白一键部署运行，自主协作审计 + 自动化沙箱 PoC 验证。支持 Ollama 私有部署 ，一键生成报告。支持中转站。​让安全不再昂贵，让审计不再复杂。

Linux Process Injection via Seccomp Notifier

A data-only attack based on CVE-2024-0582

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

🚀 The fast, Pythonic way to build MCP servers and clients

A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.

Containers for building the Linux kernel or other software with many different compilers

A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted request…

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

crypto-trading-open