Serverless AITM Simulation Framework for Entra ID and M365

Original Proof-of-Concepts for React2Shell CVE-2025-55182

A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.

⚠️ Browser fingerprinting via favicon!

Exploit for CVE-2025-11001 or CVE-2025-11002

Your definitive source for dashboard icons.

Request management and media discovery tool for the Plex ecosystem

SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.

Installer & Activited Microsoft Office For MacOS

基于Java实现的Shellcode加载器

Library for injecting a shared library into a Linux or Windows process

The code I write in my blog

A wrapper around grep, to help you grep for things

A patch to hide qemu itself, bypass mhyprot,EAC,nProtect / VMProtect,VProtect, Themida, Enigma Protector,Safegine Shielden

Homelab stacks, templates, and more fun resources!

Issues has been disabled for these PoC's, as they are simply PoC, Public Domain and unsupported.

Userland exec PoC to be used as attack vector technique

An alternative client for connecting to Authy

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

bare-metal homelab k8s automation

An step by step fuzzing tutorial. A GitHub Security Lab initiative

A tool for checking if MFA is enabled on multiple Microsoft Services

ASLR bypass without infoleak

Conference presentation slides

Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.

Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Record and Replay Framework

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.