PikaChu's Projects
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Burp Suite Attack Selector Plugin
A curated list of CTF frameworks, libraries, resources and softwares
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
A curated list of awesome iOS application security resources.
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
blue team field manual
Script use to detect secret key use to sign cookies
This map lists the essential techniques to bypass anti-virus and EDR
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
POC for CVE-2022-39952
Automate getting Domain Admin using Empire (https://github.com/EmpireProject/Empire)
Toolkit to emulate firmware and analyse it for security vulnerabilities
This repository explain how to write frida hook scripts and analysis written hooks.
Multi-Architecture GDB Enhanced Features for Exploit Devs & Reversers