This is your work, valued

$HOME

ninjaki

Elite
@dhmosfunk

Offensive Security @ Deloitte | BSCP | CRTO

CVE-2023-25690-POC. CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.

287

7-Zip-CVE-2025-0411-POC. This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.

155

simple-http-smuggler-generator. This tool is developed for burp suite practitioner certificate exam and HTTP Request Smuggling labs. The most important about this tool is TE.CL vulnerability exploitation and chunk size auto generator. Feel free to contribute and make a PR ;) Have fun exploiting these labs >.<

22

HTTP3ONSTEROIDS. HTTP3ONSTEROIDS - A research on CVE-2023-25950 where HAProxy's HTTP/3 implementation fails to block a malformed HTTP header field name.

10

DNSEXFIL. OOB Data Exfiltration via DNS

8

Network-Intrusion-Detection-Model. This repository contains all necessary files for implementation of the Intrusion Detection System model. This project is for educational purposes only and is implemented for decision support system class.

5

lauraops07-xss-at-its-finest. lauraops07 - XSS at its finest. This repository contains lauraops07 research "Weaponizing XSS vulnerabilities for Red Team engagements."

4

CVE-2025-58098. #exec cmd=... (CVE-2025-58098) argument injection

3

PayloadsAllTheThings. A list of useful payloads and bypass for Web Application Security and Pentest/CTF

2

dhmosfunk. https://dhmosfunk.github.io/

2

dhmosfunk.github.io. Τhis repository contains all the necessary files for my GitHub pages. Feel free to fork and use it! :heart:

1

Supernova. Real fucking shellcode encryption tool.

1

karelias. A digital watchdog barking when new CVEs appear.

1