NucleiFuzzer is a robust automation tool designed for efficiently detecting web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enum…

Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution

Generate contents for DevTut

Herramientas y utilidades de pentesting, ethical hacking y seguridad ofensiva.

Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)

Terraform provider for the Terraform platform engineering for Azure

Handbook and survival guide for hacking over the wire, OSCP-style

Vulnerable server used for learning software exploitation

Linux enumeration tool for pentesting and CTFs with verbosity levels

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Linux privilege escalation auditing tool

An online handy-recon tool

Yet another Stego Tool

C# Lsass parser

Writeups for vulnerable machines.

A collection of awesome security hardening guides, tools and other resources

S3 Account Search

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

A minimal, responsive, and feature-rich Jekyll theme for technical writing.

Come and join us, we need you!

JWT brute force cracker written in C

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

Course materials for Modern Binary Exploitation by RPISEC

Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories

https://youtu.be/4lYDlrjUx48

Project for learning V8 internals