Programming

Learn how to write Python C extensions to speed up critical tasks, with practical examples for penetration testers and red team operators.

Learn how to write concurrent and parallel programs in Rust, explore advanced concurrency techniques, and discover how Rust can be used in pen testing and red teaming scenarios. Compare Rust with other languages commonly used in the security field.

Master the art of heap exploitation with this comprehensive guide, diving into advanced techniques, real-world examples, and practical code snippets to elevate your red teaming and pen testing skills.

This article explores the use of JavaScript and Socket.io for building real-time applications, with a focus on techniques and examples relevant to penetration testing and red teaming, while highlighting the pros and cons of using JavaScript in these scenarios.

Explore advanced Python debugging: profile code with cProfile, measure time using timeit, identify memory leaks, and optimize scripts for red team ops.

Mastering advanced Rails routing and its cybersecurity implications equips us to unearth potential vulnerabilities, enhancing web application security

Dive into Python’s data science libraries like NumPy, Pandas, Matplotlib, Seaborn & Scikit-Learn, exploring their use in penetration testing and hacking.

Explore Rust’s advanced memory management, lifetimes, borrowing, custom allocators, and techniques for red teamers/pen testers.

This article delves into advanced JavaScript DOM manipulation techniques for red teams and pen testers, covering various methods of accessing, modifying, and traversing the DOM, along with real-world examples demonstrating their applications in hacking scenarios.

This article explores advanced object-oriented programming concepts in Python, such as decorators, inheritance, abstract base classes, composition, aggregation, and properties, along with practical code examples tailored for pen testers and red teamers to create robust and flexible software.

This article covers the powerful metaprogramming techniques in Ruby, including method_missing, define_method, dynamically defining classes and modules, and executing code dynamically with eval, that allow writing code that writes code to make programs more flexible, dynamic, and powerful.

This article is an introduction to the Lua programming language for pen testers and red team members, covering its basic concepts and syntax, examples of its use in network analysis, password cracking, and web scraping, and weighing its pros and cons compared to other languages.

This article provides an introduction to PowerShell scripting, including basic concepts and syntax, specific code examples for pen testing and red teaming tasks, and the language’s pros and cons compared to other programming languages in the field.

This article provides a comprehensive guide to the C++ programming language, covering its basic concepts and syntax, as well as its application in pen testing and red teaming, including code examples for a port scanner, password cracker, and web crawler, and discussing its pros and cons compared to other languages for these purposes.

This article discusses the basic concepts and syntax of the Kotlin programming language, as well as its applications in pen testing and red teaming, including code examples for a port scanner, password cracker, and web crawler, and compares its pros and cons to other languages used in the field.

Explore C programming basics, pen testing and red teaming applications, write exploits and shellcode, and compare C to other languages for security pros.

Explore Swift basics, syntax, and use cases for pen testing and red teaming. Learn how to create custom tools like brute force crackers and port scanners.

This article delves into the Java programming language, covering basic concepts, syntax, and its practical applications in pen testing and red teaming, while also discussing its pros and cons for cybersecurity professionals.

Why is everyone rewriting their C2 in Go? Cross-compilation, static binaries, and speed. We dive into using Go for offensive operations.

A working tour of the Python that matters on offensive engagements. Raw sockets, binary parsing with struct, ctypes for Win32 calls and shellcode loaders, Scapy for packet crafting, and the current state of the libraries every operator ends up writing on top of (Impacket, NetExec, pwntools, mitm6).

A Rails primer for operators who need to assess or exploit a Rails application. Covers the MVC layout that tells you where the bugs live, strong parameters and the permit! footgun, what SECRET_KEY_BASE actually gives you on modern Rails versus the classic Marshal RCE chain on Rails 3, the raw/html_safe XSS surface, IDOR patterns, and the static-analysis tools (Brakeman, bundler-audit) that should be your first pass.

A guide to using Nim for offensive tooling. Covers language fundamentals, the winim WinAPI bindings, compile-time string obfuscation with macros, direct syscall stubs, the offensive Nim ecosystem (OffensiveNim, NimlineWhispers, Nim-RunPE, NimPackt, Nimcrypt2), and an honest take on what edge Nim actually still gives you against modern EDR.

A comprehensive deep-dive into the Rust programming language for offensive security. Learn the core concepts of ownership and borrowing, master idiomatic error handling, build a multi-threaded port scanner, and discover how to use “Unsafe Rust” for shellcode injection and high-performance exploit development.

A long-form Ruby walkthrough for security folks. Covers syntax, the object model, blocks and metaprogramming, networking, FFI, and writing Metasploit modules.

Comprehensive guide to Bash scripting fundamentals with security best practices, modern techniques, and ethical penetration testing examples for red team professionals.