禅道最新身份认证绕过漏洞利用工具

a powerful tool designed to automate the detection of Server-Side Request Forgery (SSRF) and Open Redirect vulnerabilities

CoupDeWeb is an automated web vulnerability scanner designed for security researchers and developers. It scans for potential vulnerable endpoints, targeting various types of vulnerabilities such a…

Hack-A-Sat Qualifiers Writeups

SAML SSO for Ruby

NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications

Checklists for Testing Security environment

An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer

Hacking Windows through iTunes  - Local Privilege Escalation 0-day

Materials for CVE-2024-30052.

通过Dump内存读取ToDesk设备代码、连接密码

PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

i will upload all the books that helped me in learning in this repo

writeup on stealing roblox accounts with Solara

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

The best tools and resources for forensic analysis.

Proof of Concept Exploit for CVE-2024-28987: SolarWinds Web Help Desk Hardcoded Credential Vulnerability

Create tar/zip archives that try to exploit zipslip vulnerability.

Awesome-Cellular-Hacking

漏洞文库 wiki.wy876.cn

UEditor编辑器批量GetShell / Code By:Tas9er

主流供应商的一些攻击性漏洞汇总