El Mehdi myuyu
AvasDream
/ oscp_prep.md
Last active
November 16, 2025 15:44
Resource for OSCP like HTB Boxes with Ippsec Videos and Writeups.
SwitHak
/ 20211210-TLP-WHITE_LOG4J.md
Last active
November 24, 2025 11:24
BlueTeam CheatSheet * Log4Shell* | Last updated: 2021-12-20 2238 UTC
Security Advisories / Bulletins / vendors Responses linked to Log4Shell (CVE-2021-44228)
- If you want to add a link, comment or send it to me
- Feel free to report any mistake directly below in the comment or in DM on Twitter @SwitHak
- Royce Williams list sorted by vendors responses Royce List
- Very detailed list NCSC-NL
- The list maintained by U.S. Cybersecurity and Infrastructure Security Agency: CISA List
0xdevalias
/ _deobfuscating-unminifying-obfuscated-web-app-code.md
Last active
December 12, 2025 14:23
Some notes and tools for reverse engineering / deobfuscating / unminifying obfuscated web app code
Some notes and tools for reverse engineering / deobfuscating / unminifying obfuscated web app code.
msrkp
/ review.md
Last active
February 6, 2024 20:30
https://portswigger.net/polls/top-10-web-hacking-techniques-2023
The criteria I used to rank:
- The level of complexity of the research. (How hard for me to do the same research?)
- The usefulness of the research to other security researchers.
- Novelty, scale of exploitation and impact
Top candidates
- Exploiting Hardened .NET Deserialization: New Exploitation Ideas and Abuse of Insecure Serialization
- https://github.com/thezdi/presentations/blob/main/2023_Hexacon/whitepaper-net-deser.pdf
tin-z
/ VR_roadmap.md
Last active
December 9, 2025 17:49
Becoming a Vulnerability Researcher roadmap: my personal experience
-
- #iot
- #chrome-and-friends: Chrome, V8, Blink, Mojo, etc.
- Linux kernel #todo
- expdev #todo
- fuzzing #todo
OlderNewer