A security issue in GitHub's Security Advisory feature allowed researchers to access ANY organization's codespace secrets without authorization.

Bypassing Asymmetric Encryption Without Private Key using Chrome and PyCript

WebGL fuzzer. Contribute to ant4g0nist/webgl-fuzzer development by creating an account on GitHub.

We are living in extraordinary times. Global conflict has moved from peace time to war footing which is being enhanced by civilian armies of ‘pseudo authorised and encouraged’ cyber volunteers. In addition to this merger between civilian and military, the…

🏄‍♂️ Decode and analyze protobuf efficiently. Contribute to mxrch/ProtoDeep development by creating an account on GitHub.

Crawlector is a threat hunting framework designed for scanning websites for malicious objects. - GitHub - MFMokbel/Crawlector: Crawlector is a threat hunting framework designed for scanning website...

Author : https://twitter.com/123456 A critical remote Denial-of-Service (DoS) vulnerability has been identified in Tendermint, which currently serves as the underlying technology powering a significant portion of the blockchain APIs in the Cosmos ecosystem.…

Before getting started reported product Clipchamp is not under the scope for MSRC bug bounty rewards so don't waste your precious time on this asset if monetary reward is your goal.
Vulnerability Denoscription
While the security research and analyzing the assets…

Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo - GitHub - davinci1012/pinduoduo_backdoor_unpacker: Samples and Unpacker of malicious backdoors and exploits...

Context menu provides shortcuts to the user in order to perform a number of actions. The context menu is invoked with a right mouse click and it is a very common action for every Windows user. In o…

DEV-1101 is an actor tracked by Microsoft responsible for the development, support, and advertising of several AiTM phishing kits, including an open-source kit capable of circumventing MFA through reverse-proxy functionality.

The ultimate SOC-in-a-box community project

Bootkit sample for firmware attack. Contribute to hardenedvault/bootkit-samples development by creating an account on GitHub.

Passwords are a common form of authentication and are used to grant access to online accounts, devices, and other resources. However, passwords are also a common target for attackers, who may use a variety of techniques to try to guess or capture them. This…