This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

CVE-2025-55182 POC

A proof of concept demonstrating an attack that occurred on yETH

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Pers…

A next-generation HTTP stealth proxy which perfectly cloaks requests as the Chrome browser across all layers of the stack.

fresh directories for every vibe

PoC for this issue https://github.com/docker/compose/pull/13331/commits/14a860bb990ce82962779f4c0b17f81b491eafdf

Playground to experiment with different behavior on patched/unpatched Kestrel for the CVE-2025-55315 HTTP smuggling vulnerability

Language-agnostic AI auditor that autonomously builds and refines adaptive knowledge graphs for deep, iterative code reasoning.

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

A model-driven approach to building AI agents in just a few lines of code.

Turn click CLIs into MCP servers with one line of code

AWS MCP Servers — helping you get the most out of AWS, wherever you use MCP.

🧙‍♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications

MCP Server for Ghidra

The best WordPress to static site migrator

Matkap - hunt down malicious Telegram bots

Multi-Cloud Security Auditing Tool

A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.

Scan for misconfigured S3 buckets across S3-compatible APIs!

Abstraction library for AWS Bedrock

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

Proof-of-concept code for research into GitHub Actions Cache poisoning.

boostsecurityio/lotp