Python script to decrypt Synology .pat files

Windows GUI for extracting Synology DSM 7 pat files and spk package files

Synology image files checksum calculator

Synology extract system patch

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

Protection against HTML smuggling attacks.

The engine that powers DeLorean!

Make everyone in your VLAN ASRep roastable

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Burp Plugin to Bypass WAFs through the insertion of Junk Data

Retired TrustedSec Capabilities

POC tools for exploring SMB over QUIC protocol

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

Amazing whoami alternatives

Explore ELF objects through the power of SQL

a command line tool for URL parsing and manipulation.

Differential testing framework for HTTP implementations

Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!

some vulns

Comprehensive Exploit Chain for Multiple Vulnerabilities in VinChin Backup & Recovery <= 7.2

An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

Cobalt Strike HTTPS beaconing over Microsoft Graph API

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

GitHub Actions Pipeline Enumeration and Attack Tool

Script collection to bypass Network Access Control (NAC, 802.1x)