Kanban as it should be. Not as it has been.

Native macOS menu bar app for finding and killing processes on open ports. Perfect for developers.

SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack techniques into a single, easy-to-use tool with both interacti…

Proof of concept for Kerberos Armoring abuse.

Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.

python script to create, download and upload to s3 your Jira or Confluence cloud instance backup

smalidea is a smali language plugin for IntelliJ IDEA

Original Proof-of-Concepts for React2Shell CVE-2025-55182

A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.

High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

Shellcode and In-PowerShell solution for patching AMSI via Page Guard Exceptions

Deobfuscate obfuscator.io, unminify and unpack bundled javascript

Indirect-Shellcode-Executor expoits the miss-configuration/vulnerability present on the API Windows method ReadProcessMemory discovered by DarkCoderSc. It exploits the nature of the in/out pointer …

Bazzite makes gaming and everyday use smoother and simpler across desktop PCs, handhelds, tablets, and home theater PCs.

Waydroid uses a container-based approach to boot a full Android system on a regular GNU/Linux system like Ubuntu.

PowerShell rebuilt in C# for Red Teaming purposes

📱 objection - runtime mobile exploration

EDR-Redir : a tool used to redirect the EDR's folder to another location.

Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! 🎫

🌩 Self-hosted file management and sharing system, supports multiple storage providers

Detects process injection and memory manipulation used by malware. Finds RWX regions, shellcode patterns, API hooks, thread hijacking, and process hollowing. Built in Rust for speed. Includes CLI a…

Live theme switching for Zed in Omarchy

Code at the speed of thought – Zed is a high-performance, multiplayer code editor from the creators of Atom and Tree-sitter.

Docker-based local PHP+Node.js web development environments

PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads

Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow with very detailed explanation.

AirPods liberated from Apple's ecosystem.

Tool to enumerate privileged Scheduled Tasks on Remote Systems

PyInjector - inject your python-code into any running python process or spawn interactive python-shell inside this process (even if it's GUI process)

Network-wide ads & trackers blocking DNS server