Reattempt of BlueHammer disclosed in April 2026

KCon is a famous Hacker Con powered by Knownsec Team.

CVE

一款lcx.exe在golang下的实现, 可用于内网穿透, 建立TCP反弹隧道用以绕过防火墙入站限制等, This tool is used to establish reverse tunnel in NAT network environment, it can bypass firewall inbound restriction, support all functions of …

Various binaries for the mips architecture.

CVE-2024-40617 Exploit PoC

Collection of methodology and test case for various web vulnerabilities.

Reverse Engineering and Observability toolkit for Draytek firewalls

The Decompressoin tool for Vxworks MINIFS

Automatically Collect POC or EXP from GitHub by CVE ID.

RTOS base address searching tool for DataCon2022-IoT-Challenge-1

Collect some iot-related security articles, including vulnerability analysis, security conferences and papers, etc.

一个基于 docsify 快速部署 Awesome-POC 漏洞文档的项目。Deploying the Awesome-POC repository via docsify.

一键提取vxwork固件内部文件，并依据binwalk分析结果和uboot镜像内文件名偏移表，正确恢复vxwork文件名；以及实现主要bin文件寻找和函数符号表搜索提取功能

Decrypt TP-Link Firmware

Collection of CVEs that I have discovered and their corresponding exploits

Reolink RLC-410-5MP IP camera reverse engineered technical details

History of official firmwares for Reolink devices.

Exploitation Framework for Embedded Devices

The Router Exploitation Framework

Dahua Console, access internal debug console and/or other researched functions in Dahua devices. Feel free to contribute in this project.

Issues has been disabled for these PoC's, as they are simply PoC, Public Domain and unsupported.

Full exploit for D-Link DCS-5020L, POC crash for others that are vulnerable as well.

Fortigate related tools