Victor Fresk0
@hacefresko.com
π€ 55
π₯ 69
π 9
hacking for fun ~ likes bug hunting and vuln research
https://hacefresko.com
pinned post!
Good news! I've uploaded a new post about the most complex and beautiful vulnerability I've ever found, involving patching and uploading deprecated .jar libraries to get RCE on a big target. It's a very technical post, but I hope you like it ! :)
www.hacefresko.com/posts/rce-on...
loading . . .
A very fancy way to obtain RCE on a Solr server
https://www.hacefresko.com/posts/rce-on-solr-server-via-replication
about 1 year ago
1
29
13
Finally, the CVE for the buffer overflow I found on the TP-Link Archer AX50 router has been published! It has been assigned CVE-2025-40634 and I've also published the exploit that I made back then for it :)
github.com/hacefresko/C...
loading . . .
GitHub - hacefresko/CVE-2025-40634: Exploit for stack-based buffer overflow found in the conn-indicator binary in the TP-Link Archer AX50 router
Exploit for stack-based buffer overflow found in the conn-indicator binary in the TP-Link Archer AX50 router - hacefresko/CVE-2025-40634
https://github.com/hacefresko/CVE-2025-40634
about 1 year ago
0
1
0
reposted by
Victor Fresk0
Jack Rhysider
about 1 year ago
Ep 158: MalwareTech Yes
@malwaretech.com
joins us. Tells us one of the most insane stories ever. Do not miss this one.
darkentdiaries.com/episode/158
7
132
32
reposted by
Victor Fresk0
Gynvael Coldwind
about 1 year ago
Paged Out! #6 is out!
pagedout.institute
Totally free, 80 pages, best issue so far! 'nuff said, enjoy! (please repost to help spread out the news!)
0
25
19
reposted by
Victor Fresk0
tmp0ut
about 1 year ago
Would you look at that, it's tmp.0ut Volume 4! Happy Friday, hope you enjoy this latest issue!
tmpout.sh/4/
2
123
71
I want to get into mastodon. Any recommended hacking/bug hunting/vuln research server to join?
about 1 year ago
0
0
0
Good news! I've uploaded a new post about the most complex and beautiful vulnerability I've ever found, involving patching and uploading deprecated .jar libraries to get RCE on a big target. It's a very technical post, but I hope you like it ! :)
www.hacefresko.com/posts/rce-on...
loading . . .
A very fancy way to obtain RCE on a Solr server
https://www.hacefresko.com/posts/rce-on-solr-server-via-replication
about 1 year ago
1
29
13
π₯°π₯°πΎπΎ
over 1 year ago
0
0
0
I've spent this weekend taking a closer look into Solr and ended up finding a bug in a big BB program which allowed me to modify the Solr database and configuration files via replication! I will spend the following days trying to escalate it to RCE
over 1 year ago
0
0
0
reposted by
Victor Fresk0
Mom Rock Aficionado π΅πΈπ³οΈβπ
over 2 years ago
20 years ago we were suing teenagers for millions of dollars because they were torrenting a single Metallica album and now billionaires are demanding the free right to every work in history, so that they can re-sell it. The law only ever serves capital.
add a skeleton here at some point
187
27150
13882
About to start a new save in Fallout New Vegas while I wait for Saturday, when I will take the CRTO exam. Also waiting for my local CVE provider to respond about a TP-Link RCE I reported back in October. Blog post coming soon :)
over 1 year ago
0
0
0
Last week I got my first mechanical keyboard (a rainy 75) and the experience is being amazing. It feels really great to hack on this thing
over 1 year ago
0
2
0
Finally uninstalled X for now :)
over 1 year ago
0
1
0
you reached the end!!
feeds!
log in
