PoC for the Untrusted Pointer Dereference in the ks.sys driver.
Self Cleanup in post-ex job, suitable for CobaltStrike, demonstrating self-cleaning technology in memory execution.
A repository of KQL queries for Microsoft Defender and Sentinel to enhance detection capabilities.
使用 Nuclei 进行日志痕迹检测 辅助蓝队人员检测WEB日志中的攻击痕迹
Showcases real-world vulnerabilities exploited as a Jr. Penetration Tester, including XSS and EOL Software.
A GUI vulnerability detection tool for ThinkPHP developed using JavaFX.
A tool for exploiting tomcat CVE-2024-50379/CVE-2024-56337 file upload vulnerabilities.
A GitHub repository for cve-2024-42327 ZBX-25623, focusing on vulnerability management.
A tool to search and parse plain text passwords from various breaches using custom proxies.
Safari 1day RCE Exploit for educational purposes, confirmed to work on specific macOS and iOS versions.
Zimbra 10 SQL Injection (CVE-2025-25064) Analysis Article - A detailed analysis of a SQL injection vulnerability in Zimbra 10.
A project that uses large models to crawl and analyze GitHub projects containing valuable vulnerability information.
