GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Automagically reverse-engineer REST APIs via capturing traffic

Automate the creation of a lab environment complete with security tooling and logging best practices

HTTPLeaks - All possible ways, a website can leak HTTP requests

Canarytokens helps track activity and actions on your network.

🔪Browser logic vulnerabilities ☠️

Content hijacking proof-of-concept using Flash, PDF and Silverlight

Files + Writeups for DownUnderCTF 2022 Challenges

WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.

Server prepared for SSRF post exploitation, javascript exploits and open redirect.

An example html page that loads http://localhost:3001/ into an iframe to demonstrate a clickjacking attack