Large Language Model-Powered Smart Contract Vulnerability Detection: New Perspectives (TPS23)

A tool to predict vulnerability discovery of binary only programs

leaked prompts of GPTs

Simple (relatively) things allowing you to dig a bit deeper than usual.

본 프로젝트는 KITRI BoB(Best of the Best) 10기에서 진행한 프로젝트로, 드론에 대한 취약성 연구를 진행한 내용을 기록하였습니다.

러그풀 예측 AI모델 개발

Smartian: Enhancing Smart Contract Fuzzing with Static and Dynamic Data-Flow Analyses (ASE '21)

The Delphi Hand Rake

A collection of links related to Korean products hacking

PoC to coerce authentication from Windows hosts using MS-WSP

writeup of CVE-2020-1362

Sysmon configuration file template with default high-quality event tracing

mTLS-Encrypted Back-Connect SOCKS5 Proxy

A book on all things Foundry, available at https://book.getfoundry.sh.

컨테이너 기술 공부

My Favorite Offensive Security Scripts

List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.

FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities

NTFUZZ: Enabling Type-Aware Kernel Fuzzing on Windows with Static Binary Analysis (IEEE S&P '21)

Winnie is an end-to-end system that makes fuzzing Windows applications easy

(Unofficial) Korean translation of Wladimir Palant's series of writing on vulnerabilities and issues around Korean Security apps.

All about bug bounty (bypasses, payloads, and etc)

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

Yaegi is Another Elegant Go Interpreter

PingCastle - Get Active Directory Security at 80% in 20% of the time