Set up a personal VPN in the cloud

Main reference implementation for NLWeb, implemented in Python.

A tool to facilitate ROP Chain Development for XML Character Sanitization

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

A TCP/UDP based network daemon fuzzer

This project aims to compare and evaluate the telemetry of various EDR products.

AIL framework - Analysis Information Leak framework

Firmware Analysis Tool

EMBArk - The firmware security scanning environment

EMBA - The firmware security analyzer

A curated list of GPT agents for cybersecurity

Deserialization payload generator for a variety of .NET formatters

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

A snapshotting, coverage-guided fuzzer for software (UEFI, Kernel, firmware, BIOS) built on SIMICS

Support CI generation of SBOMs via golang tooling.

🚀 Caido releases, wiki and roadmap

Export disassemblies into Protocol Buffers

GUAC aggregates software security metadata into a high fidelity graph database.

A Huge Learning Resources with Labs For Offensive Security Players

kill anti-malware protected processes ( BYOVD )

FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulation. It's fast and comparably easy to set up.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

Unofficial Common Log File System (CLFS) Documentation

Automated Penetration Testing Agentic Framework Powered by Large Language Models

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Java Serialization (ObjectOutputStream) analysis / parsing library

Tool for Active Directory Certificate Services enumeration and abuse