Proof-of-Concept exploit for CVE-2026-23918 (Apache mod_http2 double-free). Features multi-mode DoS (Rapid-RST, Slow-Drip) and passive RCE/vulnerability detection for Apache 2.4.66.

Exploit POC for CVE_2026_31431

Copy Fail (CVE-2026-31431): 9-year-old Linux kernel LPE found by Theori's Xint Code

Autonomous Hacking Agent for Red Team

⌨️ Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

Firmware High Boy

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

This PowerShell script is designed for authorized penetration testing and security labs to extract and decrypt credentials from Azure AD Connect Sync configurations. The script connects to the ADSy…

An AI-Powered Bug Bounty Hunting Platform - Comprehensive MCP server for security testing, vulnerability research, and bug bounty hunting

From a goal to a task DAG, automatically. TypeScript-native multi-agent orchestration with MCP and live tracing. Three runtime dependencies.

π RuView turns commodity WiFi signals into real-time spatial intelligence, vital sign monitoring, and presence detection — all without a single pixel of video.

Slap your MacBook, it yells back. Uses Apple Silicon accelerometer via IOKit HID.

Undetectable selenium chromedriver

Practical setup guides and helpers to connect Burp Suite MCP Server to multiple AI backends (Codex, Gemini, Ollama, ...).

PwnMachine is a self hosting solution based on docker aiming to provide an easy to use pwning station for bug hunters.

Useful "Match and Replace" burpsuite rules

A tool geared towards pentesting APIs using OpenAPI definitions.

Your own personal AI assistant. Any OS. Any Platform. The lobster way. 🦞

A tool to dump Java serialization streams in a more human readable form.

Your ultimate Flipper Zero restaurant pager tool

exploits and proof-of-concept vulnerability demonstration files from the team at Hacker House

PACK (Password Analysis and Cracking Kit) (Python 3 fork + bug fixes)

Outlook exploitation

Android TV and Fire TV Client for Jellyfin

Portable Windows forensic tool for reviewing Firefox-like and Chromium-based browser artifacts, with labeling, search, CLI processing, and HTML/PDF reports.

Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersecuritynews.com/windows-event-log-analysis/, to quickly highli…

Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.