eBPF-based Networking, Security, and Observability

Git status for Bash and Zsh prompt

The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.

A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)

A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.

Unsecure time-based secret exploitation and Sandwich attack implementation Resources

Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

Peirates - Kubernetes Penetration Testing tool

The Kubernetes Package Manager

A complete computer science study plan to become a software engineer.

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

Never ever ever use pixelation as a redaction technique

Identify privilege escalation paths within and across different clouds

proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" fo…

Builds a secure CI/CD pipeline on Google Cloud

A python script to fetch various information about a user from guns.lol

A python script to test whether a site is vulnerable to the inclusion of LateX scripts

A directory containing all the challenges developed for my graduating class - ENSIBS CyberLog

A tool which allow you to crack OSPF protocol key

Python script that looks for malicious imports in a project

Basic ransomware, i have probably too much free time. And this is my first exercise in Golang