@W01fh4cker Profile picture

W01fh4cker

@W01fh4cker

Coder | Poet | Idealist

Joined January 2022
Similar User
SEEM photo

@SEEMsec

探姬 | Hello-CTF 🚩 photo

@ProbiusOfficial

Ybspro photo

@ybspro_official

𝕾𝖆𝖔𝕹𝖆𝖓𝖈𝖞 photo

@SaosNancy

adventurer_coin photo

@luck_hacking

曾哥 photo

@AabyssZG

b1ue0cean photo

@b1ue0cean7

青青草原羊真香 photo

@muWpPzThmh12LLw

T4rn photo

@tttt4rn

夏 evi1_f4iry Xena photo

@evi1_f4iry

雨苁-www.ddosi.org photo

@gov_hack

0rangecat photo

@0rang3c4t

hakuya photo

@h4kuy4_

Xenny photo

@xennyxd1

Frank Wu photo

@FrankOverF1ow

Pinned

昨天文章发出后访问量太大,导致阿里云oss不断告警欠费,因此干脆关了博客,文章开源至github:github.com/W01fh4cker/Lea…


2000fo commemoration

Tweet Image 1

The impact of the vulnerability is limited at present, but thanks to @chudyPB for providing a clever bypass idea. Simple Poc: github.com/W01fh4cker/CVE… #redteam #sharepoint #cve #BugBountyHunter

Tweet Image 1

The dust has settled, and the reason why CVE-2024-30043 failed to reproduce has been found. Windows Server has not been updated:

Tweet Image 1
Tweet Image 2

I'm going crazy... CVE-2024-30043 SharePoint XXE


Has anyone successfully reproduced Microsoft Sharepoint XXE (CVE-2024-30043)? I'm stuck here. "file:///localhost\c$/sites/cvetest/poc.xml" doesn't seem to help me get the unrestricted policy. Why is that? Can you give me some advice?

Tweet Image 1
Tweet Image 2
Tweet Image 3

FOFA: title="Check Point SSL Network Extender"

Observed several LATAM banks (CL,AR,CO,BR) vulnerable to this!!! Also, IT providers! #csirt #ir #checkpoint CVE-2024-24919 @1ZRR4H labs.watchtowr.com/check-point-wr…

Tweet Image 1


CVE-2024-21683 Confluence Authenticated RCE Exp: github.com/W01fh4cker/CVE… #CVE-2024-21683 #confluence #rce #redteam

Tweet Image 1

Premise: - a low-privilege user - have permission to execute scripts Exp: github.com/W01fh4cker/CVE… #redteam #bugbounty #bugbountytips #zabbix

Tweet Image 1

用go语言实现通过dcerpc和ntlmssp获取Windows远程主机信息,代码翻译自Z20攻防的komomon师傅写的脚本。 源脚本地址(Python实现):github.com/komomon/Dcerpc… 本脚本地址(Golang实现):github.com/W01fh4cker/Dce…

Tweet Image 1
Tweet Image 2

Perfect TeamcityRCE!!! New Script: github.com/W01fh4cker/CVE… #Teamcity #RCE #Jetbrains #CVE-2024-27198

Tweet Image 1

Solved the problem that the endpoint 404 of /app/rest/debug/processes in 2023.11.3 and other versions caused the RCE to fail. I will update the script to Github later. Please pay attention: github.com/W01fh4cker/CVE… #teamcity #rce #jetbrain #cve-2024-27198

Tweet Image 1

Loading...

Something went wrong.


Something went wrong.