Mayank Deshmukh's repositories
CVE-2021-26086
Atlassian Jira Server/Data Center 8.4.0 - Arbitrary File read (CVE-2021-26086)
CVE-2021-26085
Atlassian Confluence Server 7.5.1 Pre-Authorization Arbitrary File Read vulnerability (CVE-2021-26085)
CVE-2022-24124
POC for CVE-2022-24124
CVE-2022-36804
Atlassian Bitbucket Server and Data Center - Command Injection Vulnerability (CVE-2022-36804)
Keycloak-12.0.1-CVE-2020-10770
Keycloak 12.0.1 - 'request_uri ' Blind Server-Side Request Forgery (SSRF) (Unauthenticated)
CVE-2020-9484
POC - Apache Tomcat Deserialization Vulnerability (CVE-2020-9484)
CVE-2021-34429
POC for CVE-2021-34429 - Eclipse Jetty 11.0.5 Sensitive File Disclosure
KeysUnveil
Authenticated Memcached Keys Brute force Script
PHP-8.1.0-dev_WebShell-RCE
PHP 8.1.0-dev WebShell Remote Code Execution
ZipBreaker
Zip file Password Cracking tool
CVE-2021-44228-Log4Shell-POC
POC for Infamous Log4j CVE-2021-44228
CVE-2022-26134
Atlassian Confluence OGNL Injection Remote Code Execution (RCE) Vulnerability (CVE-2022-26134)
CVE-2019-11447_CuteNews-AvatarUploadRCE
Exploit Code for CVE-2019-11447 aka CuteNews 2.1.2 Avatar upload RCE (Authenticated)
CVE-2019-17240_Bludit-BF-Bypass
Bludit <= 3.9.2 - Authentication Bruteforce Mitigation Bypass Exploit/PoC
CVE-2022-44877-CWP7
Control Web Panel 7 (CWP7) Remote Code Execution (RCE) (CVE-2022-44877) (Unauthenticated)
LabScripts
Scripts that I wrote & used in HackTheBox and other CTF's
ProwlPhisher
Python tool to send Phishing mails
Simple-Nginx-Webapp
Sample Web Application on Nginx server
VerityScan
Auto full port & aggressive scan integrating masscan & Nmap
DigitalStriker
Digital Implementation of High Striker using FSR with PIC18F4550 Micro-controller
CTF-writeups-public
Writeups for infosec Capture the Flag events by team Galaxians
cve-bin-tool
This tool scans for a number of common, vulnerable components (openssl, libpng, libxml2, expat and a few others) to let you know if your system includes common libraries with known vulnerabilities.
docker-php-helloworld
A simple PHP application deployed using Docker
dockerized_backdrop_cms
The Backdrop CMS in a Docker Container.
HowToHunt
Tutorials and Things to Do while Hunting Vulnerability.
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
log4j-scanner
log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vulnerable web services affected by the log4j vulnerabilities.