329 matches found
Exploit for Improper Authentication in Wordpress
CVE-2008-1930 Exploitation Documentation Guide Document In...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-2025-55182 Research Repository !License: MIThttps://i...
Exploit for Use After Free in Arm Avalon_Gpu_Kernel_Driver
CVE-2022-46395 QEMU r36p0 Lab This repository contains a QEMU...
Needles at Scale: LLM-Assisted Target Selection for Windows Vulnerability Research
The attack surface of a modern operating system is a haystack: thousands of signed binaries and millions of functions, almost none relevant to any given vulnerability. A human analyst or an LLM agent must pick the function worth reading before analyzing it. At whole-OS scope, this target selectio...
Making Vulnerable Drivers Exploitable Without Hardware - The BYOVD Perspective
1 Introduction This article provides a technical analysis of how many Windows kernel mode drivers can be interacted with from user mode without the hardware they were developed for. This work was motivated by driver-oriented vulnerability research and the need to evaluate the exploitability of...
Breaking things to keep them safe with Philippe Laulheret
In the latest Humans of Talos, Amy sits down with Senior Vulnerability Researcher Philippe Laulheret to demystify the world of ethical hacking. Philippe shares his unique journey from French engineering school to the front lines of cybersecurity, explaining how his lifelong love for solving puzzl...
security-skills
Security Skills Security Skills is a Hermes Agent skill pack...
Mythos
Mythos Autonomous cybersecurity agent that connects to multip...
security-advisories
Security Advisories Public write-ups and PoCs for CVEs I've d...
ethical-hacking-ctf
๐ Ethical Hacking CTF Writeup Coventry University โ 7072SC...
recon2exploit
recon2exploit recon2exploit is a single-file security ass...
catbyte-toolkit
cb - Binary Analysis Toolkit for macOS/iOS Security Research...
Zero Day Quest 2026: $2.3 million awarded for vulnerability research
Protecting customers is at the core of Zero Day Quest. During the 2026 live hacking event, Microsoft partnered with the global security research community, representing more than 20 countries and a wide range of professional backgrounds, from high school students to college professors. Together,...
The Increasing Role of AI in Vulnerability Research
At Wordfence, we run a bug bounty program that pays out mid-six figures per year to researchers in bug bounties for WordPress related vulnerabilities. Funding this research helps us improve security for the WordPress community overall, and helps us secure our customers by rolling out protection f...
IoT-Vulnerability-Research
IoT V...
Exploit for Classic Buffer Overflow in Freefloat Freefloat_Ftp_Server
CVE-2025-5548 Security research and reprod...
๐ WordPress AI Engine 3.1.3 Mass Enumeration
This advisory documents a fully automated PHP-based exploitation framework designed to perform mass enumeration, plugin detection, token extraction, and automated account creation targeting vulnerable WordPress MCP-related REST API endpoints...
Abi-smuggling-exploit
Web3 Security Research Portfolio A collection of smart contra...
๐ n8n Workflow Automation Remote Configuration / Admin Data Extraction
This Metasploit module exploits multiple vulnerabilities in n8n workflow automation tool. It leverages a file read vulnerability to steal encryption keys and database, then uses stolen credentials to authenticate and execute arbitrary commands via the Execute Command node...
CVE_Research
No d...