Audits Portfolio : Tools And Functions
In the realm of blockchain and Web3 security, audits play a crucial role in ensuring the integrity and reliability of decentralized systems.
An audits...
XrefGen – Advanced Cross-Reference Generator For IDA Pro
XrefGen is an innovative IDAPython script designed to augment IDA Pro's static analysis capabilities by identifying and generating additional cross-references that may not be...
Doing The Due Diligence : Analyzing The Next.js Middleware Bypass (CVE-2025-29927)
A critical vulnerability, CVE-2025-29927, has recently been identified in the Next.js ecosystem, allowing attackers to bypass authentication mechanisms implemented at the middleware layer.
This...
Awesome-Redteam : A Comprehensive Guide To Advanced Red Teaming Tools And Techniques
The Awesome-Redteam repository is a comprehensive collection of tools and resources designed for red teaming and offensive security.
It provides a structured approach to...
CVE-2025-29927 : Next.js Middleware Authorization Bypass – Technical Analysis
A critical vulnerability, CVE-2025-29927, has been identified in Next.js, a React-based web framework by Vercel. This flaw allows attackers to bypass middleware-based authorization checks...
OSCE³ and OSEE Study Guide : Understanding Key Tools And Functions
The OSCE³ (Offensive Security Certified Expert 3) and OSEE (Offensive Security Exploitation Expert) certifications are advanced qualifications in the field of cybersecurity, focusing on...
Kernel Callbacks Removal : Bypassing EDR Detections
Kernel callbacks are essential components used by Endpoint Detection and Response (EDR) systems to monitor system events, such as process creation, image loading, and...
Blockchain-Attack-Vectors : A Comprehensive Tool For Web3 Security
The Blockchain-Attack-Vectors directory is a vital resource for the Web3 community, designed to categorize and mitigate various attack vectors on blockchain networks.
This open...
TInjA – The Template INJection Analyzer
TInjA is a powerful CLI tool designed to detect and identify template injection vulnerabilities in web applications.
Developed by Hackmanit and Maximilian Hildebrand, it...
Log4jScanner : A Comprehensive Tool For Vulnerability Detection
Log4jScanner is a powerful tool designed to help penetration testers identify Log4j-related vulnerabilities, specifically CVE-2021-44228 and CVE-2021-45046, in web applications.
It is primarily used...