Pinned Repositories
autoconf-code-execution
This repo contains my PoC exploits for the autoconf code execution vulnerabilities along with a technical explanation of why they exist.
Automations
Scripts that I create to automate tasks I come across when I would rather spend an hour coding than an 40 minutes doing it.
CVE-2023-40362
CVE-2023-40362 Vulnerabilitiy details and proof of concept
CVE-2023-45503
CVE-2023-45503 Reference
CVE-2024-27630
CVE-2024–27630 Reference
DorkLab
Web app tool for helping compose advance search operators (aka Google dorking AKA boolean searches) for a variety of search engines
Enum_AWS
Tools to enumerate AWS instances for security vulnerabilities
Kataskopeia
The Chrome Extension that safely spies on you
keylogger
Simple, lightweight Python program to log keystrokes
OSCP-cheatsheet
These are some of the notes that I created on my OSCP journey. I hope that you learn something new from them
ally-petitt's Repositories
ally-petitt/OSCP-cheatsheet
These are some of the notes that I created on my OSCP journey. I hope that you learn something new from them
ally-petitt/autoconf-code-execution
This repo contains my PoC exploits for the autoconf code execution vulnerabilities along with a technical explanation of why they exist.
ally-petitt/CVE-2023-40362
CVE-2023-40362 Vulnerabilitiy details and proof of concept
ally-petitt/CVE-2023-45503
CVE-2023-45503 Reference
ally-petitt/CVE-2024-27630
CVE-2024–27630 Reference
ally-petitt/CVE-2024-27632
CVE-2024–27632 Reference
ally-petitt/CVE-2024-29399
CVE-2024-29399 reference
ally-petitt/how2heap
A repository for learning various heap exploitation techniques.
ally-petitt/nvram-faker
A simple library to intercept calls to libnvram when running embedded linux applications in emulated environments.
ally-petitt/web-crawler
A python web crawler to recursively map out the layout of the webpage and the hyperlinks that it contains.
ally-petitt/Automations
Scripts that I create to automate tasks I come across when I would rather spend an hour coding than an 40 minutes doing it.
ally-petitt/DorkLab
Web app tool for helping compose advance search operators (aka Google dorking AKA boolean searches) for a variety of search engines
ally-petitt/Enum_AWS
Tools to enumerate AWS instances for security vulnerabilities
ally-petitt/Kataskopeia
The Chrome Extension that safely spies on you
ally-petitt/ally-petitt
Repository containing the code for my personal portfolio site.
ally-petitt/basic-graphql
basic graphql API to learn how it works
ally-petitt/c-voting-system
Voting System written in C
ally-petitt/CVE-2023-43154-PoC
PoC for the type confusion vulnerability in Mac's CMS that results in authentication bypass and administrator account takeover.
ally-petitt/CVE-2024-27631
CVE-2024–27631 Reference
ally-petitt/CVE-2024-48990-Exploit
My exploit for CVE-2024-48990. Full details of how I made this are on my blog.
ally-petitt/domain-scraper
Short python script to pull the domain names off of a website
ally-petitt/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
ally-petitt/massrecon
Bash script to automate the reconnaissance of subdomain, domain history, URLs and parameters within scope to assist in web application penetration testing.
ally-petitt/medium-to-hugo-post
An extension to https://github.com/smrfeld/medium-to-markdown that enables translating the markdown into a post compatible with Hugo.
ally-petitt/pentest-book
ally-petitt/Pentest-Cheatsheets
A compilation of some of the cheatsheets/resources that I find useful
ally-petitt/recyling-landing-page
ally-petitt/SURE
Code and data collected during the 4-week Chevron Summer Undergraduate Research Experience (SURE) program at CSUB.
ally-petitt/web-security-poc
Basic labs and PoCs to get hands-on practice with various web security fundamentals
ally-petitt/Wordlists
Custom wordlists