Summary
When you've confirmed a vulnerability and need a working PoC, this handles the messy parts of exploitation. It covers classic stack and heap overflows, ROP chain construction with pwntools, format string attacks, and modern heap techniques like tcache poisoning and House of Apple for glibc 2.35+. The mitigation bypass table is solid, mapping each protection (ASLR, DEP, canaries, CFI) to actual techniques. It includes shellcode generation with msfvenom, constraint handling for null-free and alphanumeric payloads, and deserialization exploits across Python pickle, Java ysoserial, and .NET. The quality standards are worth reading: it pushes for 90% reliability and proper documentation of exact versions. This is focused on binary and web exploitation with real code templates, not theoretical concepts.
Install to Claude Code
npx -y skills add hypnguyen1209/offensive-claude --skill exploit-development --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
