2-day longest streak
Vulnerability Findings |CVE ID|Project|Description| |------|-------|-----------| |CVE-2026-46388|osquery|Arbitrary file read| |CVE-2025-54409|AIDE|NULL pointer dereference leading to DoS| |CVE-2025-54389|AIDE|Improper output neutralization (detection bypass)| |CVE-2021-42086|Zammad|Privilege Escalation to admin| |CVE-2021-42094|Zammad|Command Injection via Package installation| |CVE-2021-42091|Zammad|Server side…
Vulnerability Findings
|CVE ID|Project|Description|
|------|-------|-----------|
|CVE-2026-46388|osquery|Arbitrary file read|
|CVE-2025-54409|AIDE|NULL pointer dereference leading to DoS|
|CVE-2025-54389|AIDE|Improper output neutralization (detection bypass)|
|CVE-2021-42086|Zammad|Privilege Escalation to admin|
|CVE-2021-42094|Zammad|Command Injection via Package installation|
|CVE-2021-42091|Zammad|Server side request forgery|
---
Tools
|Name|Description| |----|-----------| |persisthunt|A lightweight Linux persistence hunting & artifact collection script| |bpfdoorpoc|PoC for bpfdoor rootkit's eBPF technique and effective detection| |termspy|PoC terminal keylogger using ptrace| |dns2proc|Bash script to correlate DNS queries with the processes that made them | |ptrace_code_injection| PoC for injecting code into existing process with ptrace| ---Open Source Contributions
- PyCQA/bandit (Python SAST) plugin: logging_config_insecure_listen
- CIS Benchmark for Linux: 1.5.3 - Ensure ptrace_scope is restricted
- Minor improvements
---
-
bpfdoorpoc ★ PINNED
A small PoC for bpfdoor malware technique
C ★ 23 2y agoExplain → -
persisthunt ★ PINNED
Linux Persistence Detection, Hunting and Artifact Collection script
Shell ★ 23 1mo agoExplain → -
termspy ★ PINNED
A simple implementation of a terminal keylogger in C using ptrace.
C ★ 5 4y agoExplain → -
ptrace_code_injection ★ PINNED
Proof of concept code to use ptrace on Linux systems for injecting code in an existing process
C ★ 5 3y agoExplain → -
python-logging.config-exploit
Proof of concept exploit for Python Security Consideration "logging: Logging configuration uses eval()"
Python ★ 14 4y agoExplain → -
dns2proc
A rudimentary bash script to log DNS queries with process information on Linux systems (without eBPF)
Shell ★ 2 11mo agoExplain → -
vscode_trusted_rce
PoC for remote code execution when VSCode/VSCodium opens a project in "trusted" mode.
★ 1 3y agoExplain → -
raj3shp
No description.
★ 0 7d agoExplain → -
awesome-incident-response ⑂
A curated list of tools for incident response
★ 0 1mo agoExplain → -
chkproc
Python script to find Linux processes that are hidden from ps output by hacking syscalls such as getdents
Python ★ 0 1y agoExplain → -
ctf
Collection of CTF artifacts
★ 0 1y agoExplain → -
GTFOBins.github.io ⑂
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
★ 0 1y agoExplain → -
snake
Snake game in Python
Python ★ 0 4y agoExplain → -
bandit ⑂
Bandit is a tool designed to find common security issues in Python code.
Python ★ 0 1y agoExplain →
No repos match these filters.