A Proof-Of-Concept for the CVE-2021-44228 vulnerability.

An unconventional Windows reverse shell, currently undetected by Microsoft Defender and various other AV solutions, solely based on http(s) traffic.

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Matic whitepaper

Atlassian Confluence (CVE-2022-26134) - Unauthenticated Remote code execution (RCE)

HTTP3-attacks (CVE-2022-30592)

This is working POC of CVE-2022-36271

An step by step fuzzing tutorial. A GitHub Security Lab initiative

nodejsscan is a static security code scanner for Node.js applications.

Carbon Language's main repository: documents, design, implementation, and related tools. (NOTE: Carbon Language is experimental; see README)

UPI Reconnaissance tool

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Extract metadata with SSRF (Server-Side Request Forgery)

Quick SQLMap Tamper Suggester

CVE-2022-26134 - Atlassian Confluence unauthenticated OGNL injection vulnerability (RCE).

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

A minimal but opinionated dict/object combo (like Bunch).

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

Various local exploits

👊🏾 In April 2021, a huge collection of personal data containing more than 500 million users was released online. 👎🏿 The biggest threat, if your information is leaked, is phishing and personal haras…

This is the walkthrough and cheatsheet of Machines on King of the hill on the online hacking platform TryHackme.

Static Analyzer for Solidity

Ethereum smart contract fuzzer