logo
The Social Connect plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.2. This is due to insufficient verification on the OpenID server being supplied during the social login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email.

#BINARY-EXPLOITATION

x86matthew
Nightmare

An intro to binary exploitation / reverse engineering course based around ctf challenges.

Offensive Security & Reverse Engineering Course

This repository is for the Offensive Security and Reverse Engineering Course. I used to teaching at Champlain College and currently sharing it for free online (check the YouTube channel for the recordings).

Modern Binary Exploitation

Course materials for Modern Binary Exploitation by RPISEC.

CTF Workshop

Challenges for Binary Exploitation Workshop.

Crackmes

This is a simple place where you can download crackmes to improve your reverse engineering skills. If you want to submit a crackme or a solution to one of them, you must register. But before that, I strongly recommend you to read the FAQ. If you have any kind of question regarding the website, a crackme, feel free to join the discord chat.