iveresk's repositories
voip-caller
Simple 5060 port exploit that calls to a receiver device with pre-setuped phrase
camera_dorks
This is Camera Dorks for your default browser by 1vere$k.
cve-2022-26134
Just simple PoC for the Atlassian Jira exploit. Provides code execution for unauthorised user on a server.
CVE-2022-29885
Apache Tomcat DoS (CVE-2022-29885) Exploit
cve-2023-20198
1vere$k POC on the CVE-2023-20198
cve-2022-30525
Initial POC for the CVE-2022-30525
cve-mikrotik-cisco-zoo
Zoo of exploits used in my practise
cve-2022-1388-1veresk
Simple shell script for the exploit
cve-2022-1388-iveresk-command-shell
Improved POC for CVE-2022-1388 that affects multiple F5 products.
cve-2022-21907
Multithread Golang application
cve-2022-21907-http.sys
An unauthenticated attacker can send an HTTP request with an "Accept-Encoding" HTTP request header triggering a double free in the unknown coding-list inside the HTTP Protocol Stack (http.sys) to process packets, resulting in a kernel crash.
cve-2022-31749
Simple PoC-checker for CVE-2022-31749 by 1vere$k
CVE-2023-22515
iveresk-CVE-2023-22515
IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
nvd-cve-parser
NVD parser for CVEs, CPEs and CWEs with all known used exploits
reverse-shell-generator
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
rtsp_autogrinder3
rtsp_authgrinder3.py - Brute forcing tool for RTSP Protocol. Copyright (C) 2022 re-written for Python3, bugs and logic issues fixed by 1vere$k. All creds go to Luke Stephens and Tek Security Group, LLC
b64-email-sender
Simple Python email sender in Base 64 format
binance-order-recorder
Simple order recorder for the first deal in the row
cve-2018-19052
PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias..
cve-2020-3452
Just proof of concept for Cisco CVE-2020-3452. Using external or internal file base.
CVE-2023-36845-6-
CVE-2023-36845 и CVE-2023-36846 Juniper Junos OS J-Web RCE
cve-2023-40000
That's a PoC of cve-2023-40000. Wordpress LiteSpeed Cache exploit.
goparamspider
Red team enumeration tool
grandstream_exploit_zoo
[WIP] PoCs zoo for the Grandstream device.
mongo-connector
When you've found a MongoDb creds via dorks, you'll need to scan and process a bunch of MongoDB hosts. Here is the tool for it.
pass-rzd-ripper
Simple API ripper for RZD client: ruzzian warship go frack yourself! Ukraine stands!
rapid-hnews-crawler
Simple POC for the news crawler. It will be developed further as a product. It made to be in touch with the last CVEs that are reported shortly.
simple-converters-zoo
Just a bunch of the simplest scripts which are quality of life improvers... It's only a start. Will fill it every day with some useful stuffs.