## https://sploitus.com/exploit?id=D5ADB7F6-7152-5D68-81DA-EFE5FF60F5AF
# offensive-craft ๐ ๏ธ
> A forge for offensive security research โ exploit development, tooling, tradecraft, and proof-of-concept work across the red team spectrum.
This is a living lab. Each directory is a different discipline, explored through hands-on builds, not just theory. Some things will work. Some things will teach me why they don't.
## Contents
| Directory | Focus | Status |
|-----------|-------|--------|
| [exploit-lab](./exploit-lab/) | Stack buffer overflows, mitigation bypasses, return-oriented basics | โ Levels 1โBOSS complete |
| _more incoming_ | OSINT pipelines, credential tools, BEC tradecraft, infostealer PoCs | ๐ง |
## Why this exists
To learn by building. To have a place where code, notes, and tradecraft live together. And maybe to help someone else who's asking "where do I even start?"
## Structure
Each subdirectory is self-contained โ its own README, source files, compiled binaries, and exploit scripts. Compile flags and methodology are documented inline.
## Legal
Everything here was built for **educational and authorized testing purposes only**. Vulnerable programs are intentionally written to be vulnerable โ they model real bugs in a safe environment. Don't run exploits against systems you don't own or have written permission to test.
## Tools used
- Kali Linux
- gcc (with various -fno flags to simulate old-school and hardened targets)
- pwntools
- GDB
- objdump / readelf
- Pure curiosity
---
*Building the craft, one brick at a time.*