Projects in Awesome Lists by Chocapikk
A curated list of projects in awesome lists by Chocapikk .
https://github.com/chocapikk/cve-2023-29357
Microsoft SharePoint Server Elevation of Privilege Vulnerability
cve-2023-24955 cve-2023-29357 exploit infosec microsoft sharepoint
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-25600
Unauthenticated Remote Code Execution – Bricks <= 1.9.6
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2023-22515
CVE-2023-22515: Confluence Broken Access Control Exploit
broken-access-control confluence cve-2023-22515 exploit infosec privilege-escalation security vulnerability
Last synced: 11 Aug 2025
https://github.com/chocapikk/cve-2024-45519
Zimbra - Remote Command Execution (CVE-2024-45519)
Last synced: 05 Apr 2025
https://github.com/chocapikk/cve-2024-36401
GeoServer Remote Code Execution
Last synced: 04 Oct 2025
https://github.com/chocapikk/cve-2023-6553
Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution
cve cve-2023-6553 cybersecurity exploit hacking infosec php python rce security security-research vulnerability wordpress
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2023-4966
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
citrix cve-2023-4966 exploit exploitation infosec memory-leak netscaler network-security open-source pentesting python security security-research session-tokens vulnerability
Last synced: 19 Apr 2025
https://github.com/Chocapikk/CVE-2024-3273
D-Link NAS CVE-2024-3273 Exploit Tool
Last synced: 07 May 2025
https://github.com/chocapikk/cve-2024-3273
D-Link NAS CVE-2024-3273 Exploit Tool
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2024-21887
A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-8504
VICIdial Unauthenticated SQLi to RCE Exploit (CVE-2024-8503 and CVE-2024-8504)
Last synced: 05 Aug 2025
https://github.com/chocapikk/lfihunt
Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2024-27198
Proof of Concept for Authentication Bypass in JetBrains TeamCity Pre-2023.11.4
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-4577
PHP CGI Argument Injection vulnerability
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-21893-to-cve-2024-21887
CVE-2024-21893 to CVE-2024-21887 Exploit Toolkit
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-1212
Unauthenticated Command Injection In Progress Kemp LoadMaster
Last synced: 17 Sep 2025
https://github.com/chocapikk/cve-2023-50917
MajorDoMo Unauthenticated RCE: Deep Dive & Exploitation Techniques
Last synced: 27 Aug 2025
https://github.com/chocapikk/cve-2023-46805
Ivanti Pulse Secure CVE-2023-46805 Scanner - Based on Assetnote's Research
Last synced: 13 Aug 2025
https://github.com/chocapikk/cve-2023-30943
A Python-based tool to detect the CVE-2023-30943 vulnerability in Moodle, which allows unauthorized folder creation via specially crafted requests in TinyMCE loaders.
Last synced: 02 Jul 2025
https://github.com/chocapikk/cve-2023-51467
Apache OfBiz Auth Bypass Scanner for CVE-2023-51467
apache-ofbiz auth-bypass bugbounty cve-2023-51467 cybersecurity ethical-hacking exploit infosec open-source-security patch-management penetration-testing security-automation security-tools vulnerability-detection vulnerability-scanner
Last synced: 29 Jul 2025
https://github.com/chocapikk/cve-2023-22527
Atlassian Confluence - Remote Code Execution
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-7954
Unauthenticated Remote Code Execution in SPIP versions up to and including 4.2.12
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2023-5360
Exploit for the unauthenticated file upload vulnerability in WordPress's Royal Elementor Addons and Templates plugin (< 1.3.79). CVE-ID: CVE-2023-5360.
cve-2023-5360 exploit hacking infosec open-source penetration-testing python remote-code-execution royal-elementor-addons vulnerability web-security wordpress
Last synced: 13 Apr 2025
https://github.com/chocapikk/ghost-framework
Modified Version of Ghost Framework
Last synced: 19 Jul 2025
https://github.com/chocapikk/cve-2024-8517
SPIP BigUp Plugin Unauthenticated RCE
Last synced: 05 Oct 2025
https://github.com/chocapikk/cve-2024-20767
Exploit Toolkit for Adobe ColdFusion CVE-2024-20767 Vulnerability
Last synced: 13 Apr 2025
https://github.com/chocapikk/msf-exploit-collection
✪ Collection of Metasploit Modules ✪
Last synced: 13 Aug 2025
https://github.com/chocapikk/cve-2024-5084
Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated Arbitrary File Upload to Remote Code Execution
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2025-32432
CraftCMS RCE Checker (CVE-2025-32432)
Last synced: 17 Sep 2025
https://github.com/chocapikk/balgo-crypter
Balgo Crypter is a Xor encoded payload generation utility with hexadecimal.
Last synced: 19 Apr 2025
https://github.com/chocapikk/cve-2023-27372
SPIP Vulnerability Scanner - CVE-2023-27372 Detector
Last synced: 13 Jul 2025
https://github.com/chocapikk/cve-2024-22899-to-22903-exploitchain
Comprehensive Exploit Chain for Multiple Vulnerabilities in VinChin Backup & Recovery <= 7.2
authenticated-rce cve-2024-22899 cve-2024-22900 cve-2024-22901 cve-2024-22902 cve-2024-22903 cybersecurity ethical-hacking exploit-chain exploit-development hacking-tools infosec open-source-security penetration-testing reverse-engineering security-research security-vulnerability vinchin-exploit vulnerability-research
Last synced: 24 Jun 2025
https://github.com/chocapikk/cve-2022-40684
Fortinet Critical Authentication Bypass Vulnerability (CVE-2022-40684) [ Mass Exploit ]
Last synced: 03 Oct 2025
https://github.com/chocapikk/cve-2023-35885
CloudPanel 2 Remote Code Execution Exploit
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2024-31819
Unauthenticated Remote Code Execution (RCE) Vulnerability in WWBNIndex Plugin of AVideo Platform from 12.4 to 14.2
Last synced: 09 Sep 2025
https://github.com/chocapikk/personalrobloxscripts
Here is my personal exploits
Last synced: 03 Sep 2025
https://github.com/chocapikk/cve-2022-27925-revshell
Python Script to exploit Zimbra Auth Bypass + RCE (CVE-2022-27925)
Last synced: 13 Apr 2025
https://github.com/chocapikk/cyberpanel
CyberPanel v2.3.6 Pre-Auth RCE Exploit Tool
Last synced: 24 Jun 2025
https://github.com/chocapikk/cve-2022-26134
CVE-2022-26134 - Pre-Auth Remote Code Execution via OGNL Injection
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2022-29303
Python script to exploit CVE-2022-29303
Last synced: 06 Jan 2026
https://github.com/chocapikk/cve-2022-31814
pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)
Last synced: 13 Apr 2025
https://github.com/chocapikk/ctf-challenges
This repo contains challenges I made to train my friends
Last synced: 17 Sep 2025
https://github.com/chocapikk/cve-2023-38646
Remote Code Execution on Metabase CVE-2023-38646
Last synced: 26 Jul 2025
https://github.com/chocapikk/cve-2022-29464
Python script to exploit CVE-2022-29464 (mass mode)
Last synced: 30 Mar 2025
https://github.com/chocapikk/cve-2023-35082
Remote Unauthenticated API Access Vulnerability in MobileIron Core 11.2 and older
Last synced: 30 Apr 2025
https://github.com/chocapikk/cve-2022-39952
PoC for CVE-2022-39952 affecting Fortinet FortiNAC.
Last synced: 30 Apr 2025
https://github.com/chocapikk/cve-2023-36846
Remote Code Execution on Junos OS CVE-2023-36846
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2023-28432
Automated vulnerability scanner for CVE-2023-28432 in Minio deployments, revealing sensitive environment variables.
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2023-1698
WAGO Remote Exploit Tool for CVE-2023-1698
Last synced: 13 Apr 2025
https://github.com/chocapikk/cve-2022-36804-reverseshell
PoC exploit for CVE-2022-36804 (BitBucket Critical Command Injection)
Last synced: 30 Apr 2025
https://github.com/chocapikk/balgofuckerrrr
SSH Botnet remastored by Balgo Security and mindfuckerrrr
Last synced: 30 Mar 2025
https://github.com/chocapikk/cve-2022-44877
Bash Script for Checking Command Injection Vulnerability on CentOS Web Panel [CWP] (CVE-2022-44877)
Last synced: 30 Mar 2025
https://github.com/chocapikk/cve-2019-19492
FreeSWITCH Exploit (CVE-2019-19492)
Last synced: 30 Mar 2025
https://github.com/chocapikk/cve-2022-22954
Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960
Last synced: 30 Mar 2025
https://github.com/chocapikk/cve-2023-33617
Authenticated OS command injection vulnerability (CVE-2023-33617)
Last synced: 30 Mar 2025
https://github.com/chocapikk/nmapweb-choca
Use nmap from Flask App (testing purpose)
Last synced: 15 Oct 2025
https://github.com/chocapikk/cve-2021-35064
Python script to exploit CVE-2021-35064 and CVE-2021-36356
Last synced: 30 Oct 2025
https://github.com/chocapikk/cve-2022-30525-reverse-shell
Simple python script to exploit CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection
Last synced: 30 Mar 2025
https://github.com/chocapikk/cve-2021-46422
Telesquare SDT-CW3B1 1.1.0 - OS Command Injection
Last synced: 06 Jul 2025
https://github.com/chocapikk/docker-misconfig-cli
An interactive Docker client that lets you list containers and run commands via either a Unix socket or a remote HTTP(S) endpoint.
Last synced: 17 Sep 2025
https://github.com/chocapikk/ssl_explorer
A CLI Tool for Extracting Server Ownership Clues from SSL/TLS Certificates
Last synced: 30 Mar 2025
https://github.com/chocapikk/pentest-reseau
Projet de pentest réseau automatisé
Last synced: 30 Mar 2025
https://github.com/chocapikk/lfi-training
LFI Challenge - Capture The Flag (CTF)
Last synced: 31 Jul 2025
https://github.com/chocapikk/cve-2022-1388
CVE-2022-1388 | F5 - Big IP Pre Auth RCE via '/mgmt/tm/util/bash' endpoint
Last synced: 07 Sep 2025
https://github.com/chocapikk/projet-docker
Projet Docker pour implémenter un docker-compose qui créé un wordpress avec un mysql.
Last synced: 30 Mar 2025
https://github.com/chocapikk/derbynet-research
List of vulnerabilities in jeffpiazza/derbynet prior v9.0
Last synced: 12 Jun 2025
https://github.com/chocapikk/vscode-config-file-parser
This program is designed to parse Visual Studio Code configuration files (sftp.json) that may be exposed on the internet
Last synced: 30 Mar 2025
https://github.com/chocapikk/piano-tiles-bot
My own Bot to cheat on Piano Tiles
Last synced: 13 Oct 2025
https://github.com/chocapikk/emojifygatevuln-proofofconcept
EmojifyGate Vulnerability: A PoC Demonstration
Last synced: 05 Aug 2025
https://github.com/chocapikk/cve-2023-30258
Command Injection vulnerability in MagnusSolution magnusbilling 6.x and 7.x allows remote attackers to run arbitrary commands via unauthenticated HTTP request.
Last synced: 17 Sep 2025