Small and highly portable detection tests based on MITRE's ATT&CK.

Main Sigma Rule Repository

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.

The PHP Interpreter

dlopen from memory

Research about the Zend Engine

static sites for blog.orange.tw

Fast exfiltration of text using only CSS and Ligatures

Timeroasting scripts by Tom Tervoort

Sharry is a self-hosted file sharing web application.

This repository contains information on the CVEs I found.

A collection of cloud project ideas for those studying for certifications

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

Materials from the CS Level-Up trainers

This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location

📚 Solutions to Introduction to Algorithms Third Edition

Red Hat Certified Architect personal study notes.

LPIC3 Study Guide in plain English

Learning how to create a http server from scratch

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

OpenPLC Runtime version 3

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

webhook is a lightweight incoming webhook server to run shell commands