Collection of malware source code for a variety of platforms in an array of different programming languages. - vxunderground/MalwareSourceCode

Interactive cross-site scripting (XSS) cheat sheet for 2025, brought to you by PortSwigger. Actively maintained, and regularly updated with new vectors.

In this video we will show you how we found and exploited vulnerabilities in the TP-Link Archer AC1750 to win $5,000 in Pwn2Own Tokyo 2019.
We made a total of $55,000 hacking routers in this competition!

00:00 Intro
01:48 Finding debug interface
04:35 Finding…

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities - six2dez/reconftw

Access Now and seven other human rights organizations have filed a reply to NSO Group’s opposition to the coalition’s amicus brief in the case of WhatsApp v. NSO in the U.S. Federal 9th Circuit Court.

Wide-spread campaign already with thousands of victims promotes trojanized applications on niche cryptocurrency forums and social media.

One of the greatest features of IDA is the ability to use Python directly in the interface to manipulate the disassembly code. IDAPython…

From l0w to h1gh level - full stack cyber!

CRC32 brute force for dridex network requests. GitHub Gist: instantly share code, notes, and snippets.

Did it happen to you that you wanted to quickly test a Yara rule you created, but you are missing a large enough data set to test your rule against? This is exactly what Yara Scan is designed for. …

Persisting in Outlook using add-ins

CVE-2020–35717 — RCE through XSS in zonote Electron App

Collection about PoC for sql injection on Joomla. Contribute to HoangKien1020/Joomla-SQLinjection development by creating an account on GitHub.