Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Proofs-of-concept

iblessing is an iOS security exploiting toolkit, it mainly includes application information gathering, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

OPCDE Cybersecurity Conference Materials

Android Kernel Exploitation

PC firmware exploitation tool and library

Fuzzing tutorial with easy-to-learn labs 🚀

PoC demonstrating the use of cve-2020-1034 for privilege escalation

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Unreal Engine 4 vulnerability, that allows you to run shellcode directly into the target game process, to load any DLL undetected from most game anti cheats, such as Easy Anti Cheat, BattleEye, Ricochet, Vanguard, ATG, and more.

Report and exploit of CVE-2023-36427

retools: a reverse engineering toolkit for normies

A static binary vulnerability scanner

LPE exploits for Secret Net and Secret Net Studio

Analysis of the vulnerability

Report and exploit of CVE-2024-21305.

Plusfish is a classic web application vulnerability scanner/fuzzer and aimed at security professionals

Guest to host VM escape exploit for Parallels Desktop

Inject dll to explorer.exe and hide file from process.