Production-ready fullstack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) running inside a container.

CyberStrikeAI is an AI-native security testing platform built in Go. It integrates 100+ security tools, an intelligent orchestration engine, role-based testing with predefined security roles, a ski…

🐊 Policy Controller for Kubernetes

👩‍🚒 Good content deserves good paper.

DCOM in memory and fileless lateral movement techniques through .Net deserilization

LEAKED SYSTEM PROMPTS FOR CHATGPT, CLAUDE, GEMINI, GROK, PERPLEXITY, CURSOR, LOVABLE, REPLIT, AND MORE! - AI SYSTEMS TRANSPARENCY FOR ALL! 👐

startup versions of container components

Docker-in-Qemu-in-Docker

💀 Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp…

Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs

Why is this running?

eBPF-based Security Observability and Runtime Enforcement

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

Linux page-cache injector for cross-container escape. Multiple kernel write primitives

Deploy a Production Ready Kubernetes Cluster

Claude Code skill that removes signs of AI-generated writing from text

Linux kernel local privilege escalation via `skb_gro_receive()` SKBFL_SHARED_FRAG non-propagation (GRO layer flag stripping).

VulnGym: A Real-World, Project-Level Vulnerability Benchmark for White-Box Vulnerability-Hunting Agents

DevSecOps CI/CD pipeline using GitHub Actions with secret scanning, IaC security, policy-as-code enforcement, and manual approval gates, deploying containerized services to AWS via Terraform.

CVE-2026-31431-killed page-cache exploit — code exec into containers sharing the same image layer

Create local administrators with the SAMR API (lowest-level technique). Implemented in C#, Crystal, Python and Rust

浑象 AI agent CTF 靶场竞赛平台

Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels.

poc it like it's hot

SDK for automating Ghidra from Python, Rust, and C++. Decompile, rename, annotate, inspect symbols/types/xrefs, and manage project lifecycle programmatically - treat Ghidra like infrastructure, not…

This repo contains the results of an internal re-write of impacket I undertook at my current company. It contains some of the IoCs found within the library

Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges

Simple Yet Powerful Anti-Detect Browser 🍩