Felipe Gabriel Renzi

CVE-2026-49975-HTTP-2-Bomb

Disclosed on June 3, 2026, the "HTTP/2 Bomb" is an unauthenticated remote DoS that combines an HPACK compression bomb with a Slowloris-style hold to exhaust server memory. It affects default HTTP/2 configurations of **nginx, Apache httpd, Microsoft IIS, Envoy, and Cloudflare Pingora**.

Nuclei2pdf

Gerador de relatórios PDF profissionais para scans do [Nuclei](https://github.com/projectdiscovery/nuclei) — tema escuro, suporte a múltiplos hosts e detalhamento completo de vulnerabilidades.

Python

UDP-Amplification-Attack

udp_amp_monitor.py is a blue team tool for identifying misconfigured UDP services that can be exploited in DDoS amplification attacks. These attacks abuse protocols that respond with packets far larger than the original request, allowing an attacker to amplify their traffic by directing reflections at the victim.

Python

Hunter

Hunter is an automated Bug Bounty recon framework written in Bash. It orchestrates multiple security tools into a chained pipeline, covering everything from subdomain enumeration to vulnerability scanning, JavaScript analysis, and sensitive file discovery on the Web Archive — all in a single command.

Nmap2pdf

Converta relatórios Nmap XML em PDFs executivos de segurança — com análise de risco, recomendações e visual profissional.

Python

AttackSurface

A Bash script that automates external attack surface discovery by combining DNS resolution, port scanning, and HTML report generation — all in a single command.

Massnuclei

MassNuclei is a Bash tool that combines the power of Masscan (ultra-fast port scanner) with Nuclei (template-based vulnerability scanner) into a single automated pipeline.

Checkercreds

Checkercreds is a Bash command-line tool built for security audits. It automatically tests a list of target hosts against a well-known set of default credentials across SSH, Telnet, and RDP protocols, using Hydra as the brute-force engine.