Skip to content
View mbadanoiu's full-sized avatar
☠️
Hackin'
☠️
Hackin'

Block or report mbadanoiu

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mbadanoiu/README.md

Welcome to the Weekend Retreat of Matei "Mal" Badanoiu

This GitHub is used to post my CVEs and Security Research during my free time/weekends.

All materials present in this GitHub profile are meant for security research and etichal hacking.

I do not condone malicious behavoiur such as hacking systems without being authorized to do so, ransomare, or any unethical use of my work.

Whoami?

I am:

  • Matei "Mal" Badanoiu
  • Hacker
  • Pentester by day
  • Security researcher by night
  • Owner of +100 responsibly disclosed 0-days/CVEs

Additional Information

If you find any spelling/grammatical errors and/or other mistakes please open an issue in the respective repo. Thanks.


Q: Why do you write your CVEs as PDFs?

A: I use PDFs to responsably disclose the identified vulnerabilities to the respective software vendors. As I want to eventually post all +100 0-days, I needed a way to quickly modify and post them here without reworking them from scratch (rewriting them as Markdown is too labor intensive).


Q: Why do you (usually) not upload scripts and proof of concept code directly into repositories?

A: I do this because I want:

  • People to read the PDF and understand the mechanisms and inner workings behind the exploit
  • To prevent script kiddies from easily git cloning/copy-pasting and running the exploits without understanding what they do

Pinned Loading

  1. MAL-001 MAL-001 Public

    MAL-001: FreeMarker Server-Side Template Injection in Liferay Portal

  2. log4jolokia log4jolokia Public

    Python3 implementation for exploiting Log4J over Jolokia

    Python

  3. CVE-2024-22274 CVE-2024-22274 Public

    CVE-2024-22274: Authenticated Remote Code Execution in VMware vCenter Server

    37 10

  4. CVE-2023-49964 CVE-2023-49964 Public

    CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco

    5 4

  5. CVE-2023-34468 CVE-2023-34468 Public

    CVE-2023-34468: Remote Code Execution via DB Components in Apache NiFi

    5

  6. CVE-2022-20818 CVE-2022-20818 Public

    CVE-2022-20818: Local Privilege Escalation via Partial File Read in Cisco SD-WAN