Proof of concepts for feature support lifecycle analysis in BugHog.

Proof of concepts for CSP bug lifecycle analysis in BugHog.

FFmpeg Assembly Language Lessons

Custom Agent and Tooling for using Nyx with Firefox

Automate your mobile devices with natural language commands - an LLM agnostic mobile Agent 🤖

FOSDEM Security Devroom 2026 planning

A retro multiplayer shooter

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

the prototype of the work on OOPSLA'25

Some helpful preload libraries for pwning stuff.

A curated list of Multiplayer Game Network Programming Resources

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

LAN Firewall for Android

Dataset and evaluation materials of the Pfuzzer system for fuzzing environment-sensitive malware

CTF Field Guide

DARPA Challenges Sets for Linux, Windows, and macOS

Cross-platform harnessing framework designed for Nyx-based fuzzers

Malware Configuration And Payload Extraction

This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks.

A repository for learning various heap exploitation techniques.

A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders implemented by C2 beacons) or other problematic executables tha…

The SELinux Notebook

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Develo…

An step by step fuzzing tutorial. A GitHub Security Lab initiative

TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can be used to manually test TLS clients and servers or as as a software library for more advanced tools.