GHSA-X845-2F78-7V36 Blocky DNSSEC validation bypass and validation-cache scope pollution

Summary Blocky accepts and caches forged DNS answers while dnssec.validate: true is enabled. The issue has two related exploit paths: 1. Basic DNSSEC validation bypass. If an untrusted upstream returns an unsigned positive answer for a DNSSEC-signed public domain, Blocky classifies the response a...

EUVD-2026-36119

Plonky3 is a toolkit for polynomial IOPs PIOPs. Prior to versions 0.4.3 and 0.5.3, an attacker controlling prover-side observations can craft distinct transcripts that produce identical challenges, breaking the binding property of Fiat-Shamir. This issue has been patched in versions 0.4.3 and 0.5...

Smart_Contract_Researcher_POC

Smart Contract Security Research Portfolio hailthelord...

Kernel-Exploit-Dojo-425

Kernel-Exploit-Dojo-425 CTF kernel exploitation notes, PoCs,...

Kernel-Exploit-Dojo-243

Kernel-Exploit-Dojo-243 CTF kernel exploitation notes, PoCs,...

Kernel-Exploit-Dojo-239

Kernel-Exploit-Dojo-239 CTF kernel exploitation notes, PoCs,...

Kernel-Exploit-Dojo-248

Kernel-Exploit-Dojo-248 CTF kernel exploitation notes, PoCs,...

Kernel-Exploit-Dojo-866

Kernel-Exploit-Dojo-866 CTF kernel exploitation notes, PoCs,...

Kernel-Exploit-Dojo-283

Kernel-Exploit-Dojo-283 CTF kernel exploitation notes, PoCs,...

Kernel-Exploit-Dojo-962

Kernel-Exploit-Dojo-962 CTF kernel exploitation notes, PoCs,...

Dstack-Capsule: Pod-Level Remote Attestation for Confidential Workloads on Kubernetes

The rise of LLM-as-a-Service and other confidential cloud workloads demands cryptographic proof that user data is processed in a trusted, untampered environment. Existing solutions, notably Confidential Containers CoCo, enforce a strict "one Pod per VM" model that attests only the Guest OS stack,...

cve-arsenal

cve-arse...

NICE: A Framework for Declarative and Machine-Checkable Vulnerability Reproduction

Reproducing software vulnerabilities is fundamental to security researchers, open-source maintainers, and educators. Yet, vulnerabilities remain hard to reproduce today, and even when they can be reproduced, recreating a software environment where the vulnerability can be exploited becomes harder...

bungee-gum

bungee-gum A colle...

mythos-preview

🜲 Mythos Preview Multi-agent vulnerability discovery harn...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...

OrchidMantis

Orchid Mantis A Framework for ZKPoX — Zero-Knowledge Proof...

poc-archive

poc-archive A structured archive of security research proof-o...

offsec-skills

offsec-exploit-research Elite adaptive whitebox exploit resea...

UGen: An Agentic Framework for Generating Microarchitectural Attack PoCs

Microarchitectural attacks continue to evolve, uncovering new exploitation vectors in modern processors. From a defensive perspective, assessing a system's susceptibility to such attacks remains challenging. Developing functional attack implementations is labor-intensive, requires deep...