Demonstrate black-box adversarial attacks on LLM tool-calling to bypass safety and execute remote code using CMA-ES optimization.

Security analysis of the hypervisor drm method used to bypass denuvo. Reverse engineering of the driver loaders and boot components using Ghidra

Extract .pyc files from executables created with py2exe

Latest CVEs with their Proof of Concept exploits.

Quickly find differences and similarities in disassembled code

32-bit x86 operating system built from scratch. Features include a VGA GUI, window manager, terminal, FAT32 support, and more. No libc. No Linux dependencies.

A very fast image viewer rendered with GPU acceleration, built using Rust and egui, cross-platform.

Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by surgically patching SeCiCallbacks via native subsystem. Inclu…

Extract Windows credentials directly from VM memory snapshots and virtual disks

WIP darksword kexploit implement

A child of meniOS, but using a microkernel instead of a monolithic one.

meniOS is an operating system project written from scratch for fun

Privoxy, for build with MSVC, instead of Cygwin

Compile Python to C++

A headless MCP server for IDA Pro 9+

A Windows reverse shell written in C, featuring a CMD and Powershell version, persistent connection retry logic included

BurnWP Advanced Exploiter System instead Scanner & Custom Plugin for Pentester

The world's first agentic reverse engineer.

Windows watermark remover using IAT hooking and DLL proxy injection. Patches shell32.dll via TrustedInstaller privileges to intercept ExtTextOut and LoadString calls (removes evaluation and sign-in…

A really crappy hobby OS I've been developing for like a month

Binary Ninja plugin to resolve IOCTL codes to their WDK-defined names.

Python verification scripts for Armadillo ECDLP

⏬ Dumb downloader that scrapes the web

Remote Code Execution via Insecure Deserialization in Wazuh Cluster

🛠 Exploit the CVE-2025-14847 vulnerability in MongoDB to disclose sensitive heap memory using a Python script that analyzes responses for new leaked data.

Academic proof-of-concept demonstrating CVE-2025-14847 for authorized security research.

Gather and update all available and newest CVEs with their PoC.

CVE-2026-1731 - Critical command injection vulnerability in BeyondTrust Remote Support and Privileged Remote Access due to unsafe Bash arithmetic evaluation in a WebSocket-reachable script