Lisbon, Portugal

Andre Marques (zc00l)

Elite
@0x00-0x00

Penetration Tester, OSCP.

ShellPop. Pop shells like a master.

1.5k

FakePip. Pip install exploit package

158

CVE-2019-0841-BYPASS. A fully automatic CVE-2019-0841 bypass targeting all versions of Edge in Windows 10.

58

CVE-2018-1000001. glibc getcwd() local privilege escalation compiled binaries

31

Shellkiller. A killer reverse-shell script that is able to use a lot of techniques to ensure your shell will pop back to you.

30

NamedPipes. Bind shell that uses Named Pipes as transport and execute PowerShell code through Runspaces.

17

CVE-2016-2098. Ruby On Rails unrestricted render() exploit

16

-CVE-2017-9805. Exploit script for Apache Struts2 REST Plugin XStream RCE (‎CVE-2017-9805)

15

CVE-2019-1064. CVE-2019-1064 Local Privilege Escalation Vulnerability

11

TelePreter. Telegram-based PowerShell Runspace Host

11

CVE-2018-12613. PHPMyAdmin v4.8.0 and v.4.8.1 LFI exploit

10

XXE. My own repository used for testing XXE vulnerabilities in a more automated way.

6

CVE-2016-10033. PHPMailer < 5.2.18 Remote Code Execution Exploit

6

CVE-2017-5638. Struts02 s2-045 exploit program

6

CVE-2018-10517. CMS Made Simple 2.2.7 RCE exploit

5

CVE-2018-7600. CVE-2018-7600 - Drupal 7.x RCE

4

BlueKeep. Proof of concept for CVE-2019-0708

3

Hash-Buster. Crack hashes in seconds.

3

ctf_tools. Tools we (Watchers) use for CTF wargames.

3

CVE-2014-6271. Shellshock exploitation script that is able to upload and RCE using any vector due to its versatility.

3

webminerpool. Complete sources for a monero webminer.

3

shemutils. Pythonic multi-task library of encryption, database, logging and checksum.

3

0x00-0x00.github.io. Ruby

3

CVE-2015-3224. Modification of Metasploit module for RCE in Ruby-On-Rails Console CVE-2015-3224

2

netcracker. WiFi auditing tool to monitor, capture and crack WPA handshakes.

2

crypt. Crypt is a cryptography tool to protect all kinds of data using AES-256 and RSA-4096 algorithms.

2

shredder. C program to erase files securely overwritting data with random patterns.

2

gadreel-bot. Telegram bot to help with task management and CTF wargames

2

router_attack. wireless security audit repository

2

CVE-2018-10949. Zimbra Collaboration Suite Username Enumeration

1

CTF_SecurityWeekend. Data for FATEC's 1st SecurityWeekend CTF

1

nichide. NicHide is a pure-C program to hide your NIC hardware address.

1

decryptor. A substitution cipher decryptor that uses the operator (user) to decrypt the cipher on-the-fly.

1

hashfind. A simple program to request to decrypthash.com to decrypt the hash given by the user.

1

ReverseEngineerPractice. Reverse Engineering Tutorial Files from Lena Course

1

autobackup. C program to handle rsync and SimplePush notifications easily for my own servers.

1

CVE-2018-15131. Zimbra Collaboration Suite Username Enumeration

1

asyncspider. A URL brute-forcer to find hidden files from a target URL. AsyncIO.

1

proxypwn. ProxyPwn is a scanner and tunneler for open proxies.

1

CVE-2018-7422. Wordpress plugin Site-Editor v1.1.1 LFI exploit

1

netwatch. NetWatch is a tool to monitor network hosts TCP ports, uptime and visualize scan logs.

1

shell_scripts. My own shell scripts used for management.

1
42
Apply