ahrixia
Security Consultant | SRT Researcher | OSCE3 | OSCP+ | OSEP | OSWE | OSED | CRTO | OSWA | OSWP | CRT | PNPT | eMAPT | CPENT | eJPT | CEH Master | CPSA | 9xCVE
SwarmneticsSingapore
Pinned Repositories
burp-suite-labs
Port Swigger Labs divided on the based of level and topic.
CREST_CPSA
After getting heavy demand on my Crest CPSA. I am sharing my notes on Network Security Assessment from recommended book for CPSA. Please don't keep you knowledge limited to my notes, I might have missed something important for anyone because I already knew about it.
CVE-2023-30256
QloApp 1.5.2: Vulnerable to XSS on two Parameter (email_create and back)
CVE-2023-50072
A stored cross-site scripting (XSS) vulnerability exists in OpenKM version 7.1.40.
CVE_2022_0847
CVE-2022-0847: Linux Kernel Privilege Escalation Vulnerability
flask-console-pin-generator
A python to generate PIN to get into Werkzeug Console Server.
flask-memcached-rce
Remote Code Execute on the Flask App with session stored in Memcached.
oscp-autocon
This is a simple bash script to connect the OSCP VPN file without entering the username or password everytime. It could be also used to connect any OpenVPN file with credentials.
Petoolkit
Penetration Toolkit - A toolkit with more than 35 Penetration Testing tools.
tp-link-wl-wn722n-wifi-hacking
This repo has the set of commands to allow monitoring mode on TP-LINK TL-WN722N.
ahrixia's Repositories
ahrixia/CVE_2022_0847
CVE-2022-0847: Linux Kernel Privilege Escalation Vulnerability
ahrixia/burp-suite-labs
Port Swigger Labs divided on the based of level and topic.
ahrixia/CREST_CPSA
After getting heavy demand on my Crest CPSA. I am sharing my notes on Network Security Assessment from recommended book for CPSA. Please don't keep you knowledge limited to my notes, I might have missed something important for anyone because I already knew about it.
ahrixia/CVE-2023-50072
A stored cross-site scripting (XSS) vulnerability exists in OpenKM version 7.1.40.
ahrixia/tp-link-wl-wn722n-wifi-hacking
This repo has the set of commands to allow monitoring mode on TP-LINK TL-WN722N.
ahrixia/CRTO
This is my custom Cobalt Strike Profile, I used in exam.
ahrixia/CVE-2023-30256
QloApp 1.5.2: Vulnerable to XSS on two Parameter (email_create and back)
ahrixia/CVE-2023-43323
mooSocial v3.1.8 is vulnerable to external service interaction on post function.
ahrixia/oscp-autocon
This is a simple bash script to connect the OSCP VPN file without entering the username or password everytime. It could be also used to connect any OpenVPN file with credentials.
ahrixia/CEH-Practical-Notes
My CEH Practical Preparation
ahrixia/CVE-2023-43325
mooSocial v3.1.8 is vulnerable to cross-site scripting on user login function.
ahrixia/CVE-2023-43326
mooSocial v3.1.8 is vulnerable to cross-site scripting on Multiple URLs.
ahrixia/CVE-2023-44811
mooSocial v3.1.8 is vulnerable to Cross Site Request Forgery (CSRF) which allows attacker to change admin password.
ahrixia/CVE-2023-44812
mooSocial v3.1.8 is vulnerable to cross-site scripting on Admin redirect function.
ahrixia/CVE-2023-44813
mooSocial v3.1.8 is vulnerable to cross-site scripting on Invite Friend function.
ahrixia/CVE-2023-45542
mooSocial v3.1.8 is vulnerable to cross-site scripting on search function.
ahrixia/flask-memcached-rce
Remote Code Execute on the Flask App with session stored in Memcached.
ahrixia/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
ahrixia/Petoolkit
Penetration Toolkit - A toolkit with more than 35 Penetration Testing tools.
ahrixia/random-encrypt-decrypt
Some handy scripts for Encryption and Decryption.
ahrixia/simple-password-python
Python scripts - One to check if the password is strong, another to perform a dictionary attack to crack the password.
ahrixia/Windows-Exploit-Suggester
This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
ahrixia/flask-console-pin-generator
A python to generate PIN to get into Werkzeug Console Server.
ahrixia/ahrixia
Config files for my GitHub profile.
ahrixia/bolt
Bolt is a simple CMS written in PHP. It is based on Silex and Symfony components, uses Twig and either SQLite, MySQL or PostgreSQL.
ahrixia/custom-poc-binaries
Just some random poc scripts for pentest/ctf/poc
ahrixia/Image2text
Prints the text content from an image
ahrixia/OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
ahrixia/raspberrypi-4-2k
This repo contains the config.txt file for 2K Diplay.