CVE cache of the official CVE List in CVE JSON 5 format

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

A small collection of vulnerable code snippets

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Source code for the 2022 DEF CON Qualifiers.

General data-binding package for Jackson (2.x): works on streaming API (core) implementation(s)

Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis

A simple shell script and two bash sourceable scripts used to build a static gdb-7.12 gdbserver using cross-compiler setups

Platform for emulation and dynamic analysis of Linux-based firmware

Toolkit to emulate firmware and analyse it for security vulnerabilities

Binee: binary emulation environment

This repository is a mirror of https://git.openwrt.org/openwrt/openwrt.git It is for reference only and is not active for check-ins. We will continue to accept Pull Requests here. They will be merg…

Diaphora, the most advanced Free and Open Source program diffing tool.

kernel-pwn and writeup collection

CTF Archives: Collection of CTF Challenges.

american fuzzy lop - a security-oriented fuzzer

Old and new CTFs about Linux kernel exploitation.

A repository for learning various heap exploitation techniques.

CTF题目收集

Automate repetitive tasks for fuzzing

PoC CVE-2021-37980 : Inappropriate implementation in Sandbox (windows only)

Web CTF CheatSheet 🐈

An updated collection of resources targeting browser-exploitation.

A Collection of Chrome Sandbox Escape POCs/Exploits for learning

official source code of *CTF2019

Google CTF