Specification and documentation for Agent Skills

The recursive internet scanner for hackers. 🧡

Original Proof-of-Concepts for React2Shell CVE-2025-55182

Explanation and full RCE PoC for CVE-2025-55182

High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

CVE-2025-55182 POC

AI agent for autonomous cyber operations

WSUS Unauthenticated RCE

PoC Exploit for the NTLM reflection SMB flaw.

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay infor…

tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it

Rust for Windows

Toolset to manipulate RPC clients by finding delayed services and masquerading as them

gpt-oss-120b and gpt-oss-20b are two open-weight language models by OpenAI

Fast web fuzzer written in Go

Community curated list of templates for the nuclei engine to find security vulnerabilities.

An open-source AI agent that brings the power of Gemini directly into your terminal.

A tool for creating and running Linux containers using lightweight virtual machines on a Mac. It is written in Swift, and optimized for Apple silicon.

😱 A curated list of amazingly awesome OSINT

Get started with building Fullstack Agents using Gemini 2.5 and LangGraph

POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY

MCP Server for Ghidra

Automated Penetration Testing Agentic Framework Powered by Large Language Models

eBPF implementation that runs on top of Windows

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Microsoft-Outlook-Remote-Code-Execution-Vulnerability

A collection of MCP servers.

Active Directory certificate abuse.

CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner.