A list of public penetration test reports published by several consulting firms and academic security groups.

ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

DataComp for Language Models

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

peeko – Browser-based XSS C2 for stealthy internal network exploration via infected browser.

Collection of Jupyter Notebooks by @fr0gger_

CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability

The most complete code auditing platform with thousands of real-world challenges

Playing NES ROMs with Ghidra's PCode Emulator

LLM Testing Findings Templates

TruffleHog Explorer, a user-friendly web-based tool to visualize and analyze data extracted using TruffleHog.

Guitar stereo multi-effects using RP2040

A web based checklist driven note taking app following bug bounty and web app pentest methodology.

Security Digest Archives Website (2002)

Demo of using draggable elements in a clickjacking PoC to "type" user inputs.

A Springfield Shopper Newspaper copy made with CSS