A tool to detect orphaned packages and exploit depencency confusions with a nice web UI

A portable tool written in golang to dump LAPS passwords at scale in a domain

How to exploit CVE-2024-48990, one of the local privilege escalation vulnerabilities discovered recently by Qualys in 'needrestart' package.

A PowerShell PoC to exfiltrate data via DNS

A broad research of geo-location enabled apps made in 2021. Spoiler, many of them allowed you to acurately geo-locate users.

How to learn github workflows and pypi publication when your situation requires it