A phone number can reveal whether a device is active, in standby or offline (and more). This PoC demonstrates how delivery receipts + RTT timing leak sensitive device-activity patterns. (WhatsApp /…

TypeScript 1,429 263 Updated Dec 19, 2025

0xdea / semgrep-rules

A collection of my Semgrep rules to facilitate vulnerability research.

C 762 76 Updated Dec 14, 2025

crackinglandia / python-jjdecoder

A Python port of the JJDecoder function written by Syed Zainudeen

Python 19 15 Updated Jan 28, 2014

hahwul / dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Go 4,744 507 Updated Dec 16, 2025

vulncheck-oss / go-exploit

A Go-based Exploit Framework

Go 398 42 Updated Dec 22, 2025

deepch / RTSPtoWeb

RTSP Stream to WebBrowser

JavaScript 1,635 373 Updated Dec 20, 2025

BushidoUK / Breach-Report-Collection

A collection of companies that disclose adversary TTPs after they have been breached

291 20 Updated Nov 11, 2025

Adversis / NextjsServerActionAnalyzer

A Burp Suite extension for analyzing Next.js Server Actions - server-side functions identified by hash IDs and `Next-Action` headers.

Python 39 7 Updated Aug 8, 2025

ambionics / phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

PHP 3,689 538 Updated Sep 29, 2025

gitleaks / gitleaks

Find secrets with Gitleaks 🔑

Go 24,350 1,864 Updated Dec 9, 2025

Adversis / grpc-scan

A tool for discovering gRPC services and methods without needing protobuf files.

Go 21 1 Updated Jun 12, 2025

westonbrown / Cyber-AutoAgent

AI agent for autonomous cyber operations

TypeScript 450 106 Updated Nov 29, 2025

An open-source, self-hostable PaaS alternative to Vercel, Heroku & Netlify that lets you easily deploy static sites, databases, full-stack applications and 280+ one-click services on your own servers.

PHP 48,714 3,324 Updated Dec 23, 2025

davidenetti / TOCTOU_Vulnerability

PoC and notes about TOCTOU (race condition) vulnerability in C language and tested on GNU/Linux (Ubuntu 16.04).

C 10 Updated Sep 14, 2023

ssstonebraker / Pentest-Service-Enumeration

Suggests programs to run against services found during the enumeration phase of a Pentest

Shell 113 24 Updated Oct 25, 2025

CharlesTheGreat77 / ctf-prompt-injection

A hands-on Capture The Flag (CTF) environment designed to practice prompt injection techniques against a Large Language Model (LLM).

HTML 3 1 Updated Apr 2, 2025

offsecginger / CTFd-Docker-Challenges

Docker Challenge creation for CTFd. Allows per team/user containers!

Python 107 68 Updated May 8, 2025

EFForg / rayhunter

Rust tool to detect cell site simulators on an orbic mobile hotspot

Rust 3,736 278 Updated Dec 16, 2025

TotallyNotChase / glitch-this

📷 Glitchify images and GIF - with highly customizable options!

Python 1,789 63 Updated Jun 6, 2024

ioccc-src / winner

Winners of the International Obfuscated C Code Contest

HTML 1,073 74 Updated Dec 15, 2025

envs-net / 0x0

Forked from onstatus/0x0

envs.sh - null pointer

Python 43 9 Updated Jan 13, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Beau Taub btaub

Achievements

Achievements

Block or report btaub

Lists (1)

ctf

Stars

appsecco / vulnerable-mcp-servers-lab

telekom-security / tpotce

peasead / elastic-container

anchore / grype

zoicware / RemoveWindowsAI

gommzystudio / device-activity-tracker