Skip to content
View dhn's full-sized avatar
☠️
"><svg/onload=alert(1)>
☠️
"><svg/onload=alert(1)>

Block or report dhn

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
dhn/README.md

Excerpt of vulnerabilities I found in the last years

Over the past years I’ve found several vulnerabilities on several products/vendors for example, HP, ASUS, BioStar, Telekom, Adobe, Siemens, GDATA, Avast, Comodo, Synology, Wacom and many more. These list is just a short list because not all vulnerabilities have got an CVE number:

2018

2019

2021

  • Synology DSM:
    • Local Privilege Escalation (LPE) vulnerability that I’ve found in Synology DSM <= 6.2.4-25554 back in 2021. This vulnerability has no CVE, no advisory and was not mention in any update. At least an acknowledgement on their page ¯\_(ツ)_/¯.

2022

2023

PS: This idea is shameless stolen from my colleague frycos 😄.

Pinned Loading

  1. OSEE OSEE Public

    Collection of resources for my preparation to take the OSEE certification.

    Python 221 56

  2. udon udon Public

    A simple tool that helps to find assets/domains based on the Google Analytics ID.

    Go 170 9

  3. OSCE OSCE Public

    Some exploits, which I’ve created during my OSCE preparation.

    Python 80 37

  4. spk spk Public

    spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.

    Go 82 5

  5. exploits exploits Public

    Some personal exploits/pocs

    C 52 18

  6. bin2op bin2op Public

    Extract the opcode from the objdump of a binary

    Python 12 7