#
Starred repositories
POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
A GPT-empowered penetration testing tool
eBPF implementation that runs on top of Windows
PoC for the Untrusted Pointer Dereference in the ks.sys driver
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner.
Useful scripts for WinDbg using the debugger data model
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
The automated prompt injection framework for LLM-integrated applications.
Proof of concept & details for CVE-2025-21298
Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
Tool for Active Directory Certificate Services enumeration and abuse
A PowerShell module for exporting, importing, removing, permissioning, publishing Active Directory Certificate Templates. It also includes a DSC resource for creating AD CS templates using these fu…
Evade EDR's the simple way, by not touching any of the API's they hook.
A collection of links related to VMware escape exploits
Awesome EDR Bypass Resources For Ethical Hacking
Folder Or File Delete to Get System Shell on Current Session Desktop
In-depth attack surface mapping and asset discovery
Security Certification Roadmap HTML5/CSS3 version