Pinned Repositories
CVE-2016-5734-docker
PhpMyAdmin 4.0.x—4.6.2 Remote Code Execution Vulnerability (CVE-2016-5734)
CVE-2022-29078
vuln ejs 3.1.6 docker
CVE-2023-20887
VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)
CVE-2023-32315
Openfire Console Authentication Bypass Vulnerability with RCE plugin
TelegramBot-ChatGPT-filter-bypass
Simple Python Server for Telegram Bot that allows you to bypass content filtering in ChatGPT. This calls the OpenAI autocompletion API for DaVinci-003.
miko550's Repositories
miko550/CVE-2022-24124_POC
Casdoor是一个基于OAuth 2.0/OIDC 的中心化的单点登录(SSO)身份验证平台,此漏洞属于Sql注入漏洞,在查询API 存在与字段和值参数相关的SQL注入漏洞
miko550/reinschauer
miko550/Wpushell
Wpushell is a tool used to upload a backdoor shell to a site that uses a WordPress Content Management System with a simple and fast process.
miko550/CVE-2022-1802
miko550/paracosme
Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64.
miko550/CVE-2022-27925-PoC
Zimbra RCE simple poc
miko550/CVE-2022-27925
miko550/CVE-2022-36446-Webmin-Software-Package-Updates-RCE
A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.
miko550/vmware_Poc
This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager
miko550/CVE-2022-21881
POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox
miko550/CVE-2022-31061
PoC for GLPI CVE-2022-31061
miko550/random
miko550/CVE-2022-34918
CVE-2022-34918 netfilter nf_tables 本地提权 POC
miko550/DeathSleep
A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.
miko550/Windows-Backdoor
A Hidden and Undetectable Remote Access Tool written in C++ and Server in Python3.
miko550/CVE-2022-26138
Confluence Hardcoded Password POC
miko550/CVE
A collection of proof-of-concept exploit scripts written by the STAR Labs team for various CVEs that they discovered or found by others.
miko550/cve-2022-33891
cve-2022-33891-poc
miko550/CVE-2022-23614
PoC for CVE-2022-23614 (Twig sort filter code execution/sandbox bypass)
miko550/CVE-2022-24086-POC
Verifed Proof of Concept on CVE-2022-24086 RCE
miko550/randy
A pre-authenticated RCE exploit for Inductive Automation Ignition
miko550/favhasher
Calculate Favicon Hash for Shodan
miko550/BokuLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
miko550/jira-mobile-ssrf-exploit
Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
miko550/CallStackSpoofer
A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
miko550/CVE-2022-32532
Apache Shiro CVE-2022-32532
miko550/CVE-2021-25003
WPCargo < 6.9.0 - Unauthenticated RCE
miko550/PHP-binary-bugs
PHP binary bugs advisory
miko550/nanodump
A crappy LSASS dumper with no ASCII art
miko550/Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs