Reach 125K+ monthly visitors
Advertise on TrendshiftPentesting
Lightweight security scanner for vibecoded apps:: run it from your AI agent (Cursor/Claude Code) or the CLI. Black-box + white-box, OWASP-mapped, SARIF-ready. Authorized testing only.
Primeiro upload de um script python funcoional para teste da vulnerabilidade path traversal
A fast, open-source HTTP proxy and web security testing platform
🔍 Recon notes organizer for bug bounty hunters and CTF players — subdomains, ports, endpoints, vulns, all in one place.
KQL detection rules for Microsoft Sentinel and Defender XDR covering the bikini/exploitarium anonymous disclosure — a personal research archive of 15 distinct vulnerability targets across 109 tracked files, released without vendor notification on June 28, 2026.
Security Assessment: Sarvam-105B Identity Fragility, Prompt Robustness Failures, and Information Disclosure (8 vulnerabilities, CVSS 4.0-7.5)
Security skills and agents for Claude Code: OSS multi-scanner security review, an RLS auditor, and a Supabase data-API lockdown kit.
Static BYOVD hunting pipeline for Windows kernel drivers. Imports + IOCTL dispatch extraction (Capstone), cross-references LOLDrivers/MS Blocklist/KDU/VirusTotal, surfaces novel zero-day candidates. C++ comm-header generator for runtime validation. Pairs with Claude for triage.
Educational, defensive kit for two Linux page-cache-corruption LPEs (DirtyClone CVE-2026-43503, pedit COW CVE-2026-46331): hardening, detection, verification, seccomp + validation harness. Detection and prevention only — no exploit code. TLP:CLEAR.
A simple tool wrapper to automate the enumeration, fingerprinting, and PSK extraction of an IPSec VPN gateway.
Decrypt VMware vTPM-encrypted .vmem/.vmsn/.vmss/.nvram from the VM password, and flatten the .vmem to a Volatility-ready image.
A bundle of a pre-configured Python 2.7.6 install and EternalBlue exploits with a wrapper
Complete QEMU/KVM virtualization lab for Arch Linux with Windows 11, Kali Linux, Ubuntu, Metasploitable2, networking, TPM 2.0, UEFI, VirtIO, and cybersecurity lab setup.
PowerShell tool for active minimal-rights lateral movement enumeration, extending BloodHound Legacy
Memory-injection-resistant smart contract audit agent — a reference implementation of a secure AI agent