Juan Pablo Perata's repositories
CVE-2022-42889-text4shell
CVE-2022-42889 aka Text4Shell research & PoC
xss-finder
PoC tool to check if a URL is vulnerable to XSS
ctf-writeups
A series of many CTFs writeups made by me.
CVE-2022-1388_PoC
F5 BIG-IP RCE exploitation (CVE-2022-1388)
CVE-2022-22965-spring4shell
CVE-2022-22965 Spring4Shell research & PoC
CVE-2022-39952
POC for CVE-2022-39952
CVE-2022-40684
A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
local-spring-vuln-scanner
Simple local scanner for applications containing vulnerable Spring libraries
owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
spring-core-rce
spring框架RCE漏洞 CVE-2022-22965
Spring4Shell-POC
Spring4Shell Proof Of Concept/Information
Spring4Shell-POC-1
Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
spring4shell_vulnapp
Intentionally Vulnerable to Spring4Shell
SpringCore0day
SpringCore0day from https://share.vx-underground.org/
SpringShell
Spring Core RCE
VirusTotalC2
Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , and in case you don't have C2 infrastructure , now you have a free one
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
business-ctf-2024
Official writeups for Business CTF 2024: The Vault Of Hope
CVE-2020-1472
Test tool for CVE-2020-1472 ZeroLogon
CVE-2023-25690-POC
CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
CVE-2024-23897
POC for CVE-2024-23897 Jenkins File-Read
cxzero.github.io
Personal website at https://cxzero.github.io
disable-flutter-tls-verification
A Frida script that disables Flutter's TLS verification
Frida-Guide
This repository explain how to write frida hook scripts and analysis written hooks.
HTB-Business-CTF-2023-The-Great-Escape
Hackthebox Business CTF 2023- The Great Escape Writeups
htb-cyber-apocalypse-2024
Official writeups for Cyber Apocalypse CTF 2024: Hacker Royale
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
public-templates-htb
Templates for submissions