PROJECTS
souvenir
An open-source, straightforward but secure password manager with a built-in web server/interface including AES-256 encryption (with pkcs7 padding), bcrypt hashing time optimization to limit brute-force attacks and secure session tokens using crypto/rand (Golang).
TAKE ME THERE!cyanide
Cyanide is a tool to poison request logs by injecting a payload in the user-agent. They can then be accessed back using an Local File Inclusion to trigger Remote Code Execution. It currently has a total of 6 great standalone payloads.
Take me therefollina
A POC of CVE-2022-30190, aka follina, that is a RCE vulnerability affecting Microsoft Support Diagnostic Tools (MSDT) on Office apps such as Word.
Take me thereopt4py
Adds to Python an Option container class that handles seamlessly NoneType checks in a monadic way. Similar to Option in Rust or Optional in Java, but it also overloads every operator for a smooth use without worries.
Take me there