This repository contains a curated collection of resources focused on auditing Move smart contracts. It includes tools, best practices, checklists, and guidelines to help developers and auditors en…

The Web3 Security Resources Hub is a comprehensive collection of curated tools, guides, and best practices for securing decentralized systems and smart contracts in the blockchain space.

[USENIX Security'24] Official repository of "Making Them Ask and Answer: Jailbreaking Large Language Models in Few Queries via Disguise and Reconstruction"

fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.

LLVM based static binary analysis framework

A portfolio repository for Egis Security's past audits

Explanation to key concepts in ML

A cheat sheet that contains advanced queries for SQL Injection of all types.

Public results and products from DARPA AIxCC

[USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

An exploit based Jailed Package Manager for iOS 15.0-18.0/18.1b4

The Art, Science, and Engineering of Fuzzing: A Survey

📦 Repopack is a powerful tool that packs your entire repository into a single, AI-friendly file. Perfect for when you need to feed your codebase to Large Language Models (LLMs) or other AI tools li…

Application Fuzzing: Tools, Techniques, and Best Practices

Diaphora Machine Learning tools and datasets

Codes and Data for ACL 2024 Paper "Faithful Logical Reasoning via Symbolic Chain-of-Thought".

Accepted by IJCAI-24 Survey Track

Official code implementation of General OCR Theory: Towards OCR-2.0 via a Unified End-to-end Model

This repository contains PoC for CVE-2024-7965. This is the vulnerability in the V8 that occurs only within ARM64.

Entity-Relation Diagram Assisted Hacking Tool

Automated vulnerability discovery and annotation

Crashbench is a LLM benchmark to measure bug-finding and reporting capabilities of LLMs

Slides from Off-By-One Conferences

PoC for vulnerabilities of Realtek SD card reader driver

CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK) ROUGHT SKELLETON ATM. WILL EVENTUALLY TURN IT INTO FULL EOP

Evolving fuzzers with large language models