Cale Black

SQL injections come up a lot and I often reuse logic in individual exploits. These should be moved into `go-exploit`. Here is some snippets from CVE-2025-33053 for my time-based blind...

It'd be nice if `--help` was able to populate a lot more data. Internally, we use `README.md`s universally and even embedding those into the exploit for when `--help` is called...

A bit unsure of how it might be done, but it'd be nice if we had the ability to add markers to specific payloads that indicate what sort of indicators...

As long discussed,, we should make the dropper payload type support other "staged" write-then-execute payloads in order to support external implants/payloads.

It's been asked before if we can provide a `--command` flag to arbitrarily add user supplied strings in place of our payloads. Historically this wasn't trivial and we also have...

We've had a few reoccurring issues in the framework structure for C2s: 1. `c2` itself is a bit of a misnomer. People regularly need to serve up HTTP content (or...

Continuous bug bear of mine, HTTP client timeout errors are not always fatal and callbacks occuring while a client times out should not error. Propagate that error up so it...

I'd like to allow for programs to take programmatic input via some sort of UNIX socket style communications or initial `stdin` input pipe. This could also allow for exploits to...

It's been brought up that we potentially may want to expose earlier flag parsing to the framework before `RunExploit` so that the options can influence the config instead of vice-versa....

Currently C2 type selection is hardcoded and singular, but under some conditions an exploit might need to have multiple executions. For example, I have had multiple exploits that need a...