tandera's repositories
CVE-2023-27163
Proof-of-Concept for Server Side Request Forgery (SSRF) in request-baskets (<= v.1.2.1)
wp-multi-bruteforce
Script for bruteforcing multiple Wordpress Users (XMLRPC)
CVE-2022-44268
PoC of Imagemagick's Arbitrary File Read
api-tamagochi
An API written in Flask for the Tamagochi application, an initiative of the research and development group at Universidade Positivo in the year of 2022/2023.
entr0pie.github.io
Hacking portal by entr0pie, aka tandera. "The true meaning of a code lies beyond its bytes."
FastifyOAuth2
OAuth2 implementation with Fastify + Prisma + JWT (RS256)
apollo
Apollo - Python Module for HTTP Requests Using Sockets
ReactHackerEffect
Recreation of the hacker effect by Hyperplexed using ReactJS.
Things-Things
A SQL Injection vulnerable server. Easy setup, minimal code. For educational purposes.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
python-hades
A Proof-Of-Concept for a colaborative Pentest framework.
Veil
Veil 3.1.X (Check version info in Veil at runtime)