QLOG provides enriched Event Logging for security related events on Windows based systems. It is under heavy development and currently…
BatchQL is a GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations. This script is…
Concealed Position is a local privilege escalation attack against Windows using the concept of "Bring Your Own Vulnerability". Specifically, Concealed…
Plution is a convenient way to scan at scale for pages that are vulnerable to client side prototype pollution via…
Ntlm_Theft is a tool for generating multiple types of NTLMv2 hash theft files. ntlm_theft is an Open Source Python3 Tool…
DNSTake takeover vulnerabilities occur when a subdomain (subdomain.example.com) or domain has its authoritative nameserver set to a provider (e.g. AWS…
CVE-2021-40444 PoC is a Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution) Creation of this Script…
Kali Linux 2021.3 is a Penetration Testing and Ethical Hacking Linux Distribution. A summary of the changes since the 2021.2 release from June are:…
GoKart is a static analysis tool for Go that finds vulnerabilities using the SSA (single static assignment) form of Go…
Vailyn is a multi-phased vulnerability analysis and exploitation tool for path traversal and file inclusion vulnerabilities. It is built to…