Chi Vo's Projects
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
All about bug bounty (bypasses, payloads, and etc)
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Free Bootstrap 4.1 based admin dashboard template
double-free bug in WhatsApp exploit poc
BuddyPress is an open source WordPress plugin to build a community site. In releases of BuddyPress from 5.0.0 before 7.2.1 it's possible for a non-privileged, regular user to obtain administrator rights by exploiting an issue in the REST API members endpoint. The vulnerability has been fixed in BuddyPress 7.2.1. Existing installations of the plugin should be updated to this version to mitigate the issue.
Laravel debug rce
PoC for CVE-2021-3156 (sudo heap overflow)
Sudo Baron Samedit Exploit
CVE-2021-4034 1day
A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
针对(CVE-2023-0179)漏洞利用 该漏洞被分配为CVE-2023-0179,影响了从5.5到6.2-rc3的所有Linux版本,该漏洞在6.1.6上被测试。 漏洞的细节和文章可以在os-security上找到。
CVE-2023-0386在ubuntu22.04上的提权
Basic PoC for CVE-2023-27524: Insecure Default Configuration in Apache Superset
CVE-2023-32233: Linux内核中的安全漏洞
Directus 8 Suite — Future-Proof Headless CMS & API for Custom Databases
Docker Remote API Scanner and Exploit
Source code for Eat The Blocks, a screencast for Ethereum Dapp Developers
Embedding executable files in PDF Documents
Reverse shell using Windows Registry files (.reg)
Deepfakes Software For All
File upload vulnerability scanner and exploitation tool.
Git extensions to provide high-level repository operations for Vincent Driessen's branching model.