DDE stands for “Dynamic Data Exchange”, this is a method used by windows to facilitate one program being able to subscribe to an item made

A Javascript library for browser exploitation. Contribute to theori-io/pwnjs development by creating an account on GitHub.

A few days ago, the company Armis published a proof of concept (PoC) of a remote code execution vulnerability in Android via Bluetooth (CVE-2017-0781), known as BlueBorne. Although BlueBorne refers to a set of 8 vulnerabilities, this PoC uses only 2 of them…

Signed-off-by: Scott Bauer

Some neat tricks to bypass CSRF-protection from #ZeroNights https://t.co/6sD580hSMq

A collection of pentest tools and resources targeting Hadoop environments - wavestone-cdt/hadoop-attack-library

Empire HTTP(S) C2 redirector setup script. Contribute to V1V1/Sleight development by creating an account on GitHub.

Tarlogic Security's Red Team shows how to exploit the CVE-2017-11826 vulnerabilities that affected MS Office