Victor Fresk0's Avatar

Victor Fresk0

@hacefresko.com.bsky.social

// hacking for fun // currently working as pentester // likes bug hunting and vuln research https://hacefresko.com

57 Followers  |  57 Following  |  9 Posts  |  Joined: 10.11.2024  |  1.4735

Latest posts by hacefresko.com on Bluesky

Preview
GitHub - hacefresko/CVE-2025-40634: Exploit for stack-based buffer overflow found in the conn-indicator binary in the TP-Link Archer AX50 router Exploit for stack-based buffer overflow found in the conn-indicator binary in the TP-Link Archer AX50 router - hacefresko/CVE-2025-40634

Finally, the CVE for the buffer overflow I found on the TP-Link Archer AX50 router has been published! It has been assigned CVE-2025-40634 and I've also published the exploit that I made back then for it :)

github.com/hacefresko/C...

21.05.2025 11:15 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Ep 158: MalwareTech

Yes @malwaretech.com joins us. Tells us one of the most insane stories ever. Do not miss this one.

darkentdiaries.com/episode/158

06.05.2025 06:13 โ€” ๐Ÿ‘ 134    ๐Ÿ” 31    ๐Ÿ’ฌ 7    ๐Ÿ“Œ 2
Post image

Paged Out! #6 is out!
pagedout.institute
Totally free, 80 pages, best issue so far!
'nuff said, enjoy!

(please repost to help spread out the news!)

29.03.2025 12:08 โ€” ๐Ÿ‘ 25    ๐Ÿ” 19    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
table of contents for tmp.0ut volume 4

table of contents for tmp.0ut volume 4

Would you look at that, it's tmp.0ut Volume 4! Happy Friday, hope you enjoy this latest issue!

tmpout.sh/4/

21.03.2025 16:26 โ€” ๐Ÿ‘ 126    ๐Ÿ” 67    ๐Ÿ’ฌ 2    ๐Ÿ“Œ 7

I want to get into mastodon. Any recommended hacking/bug hunting/vuln research server to join?

14.03.2025 11:20 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Wow! Thanks so much :)

10.03.2025 13:09 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0
Preview
A very fancy way to obtain RCE on a Solr server

Good news! I've uploaded a new post about the most complex and beautiful vulnerability I've ever found, involving patching and uploading deprecated .jar libraries to get RCE on a big target. It's a very technical post, but I hope you like it ! :)

www.hacefresko.com/posts/rce-on...

26.02.2025 16:40 โ€” ๐Ÿ‘ 30    ๐Ÿ” 11    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 2
Post image

๐Ÿฅฐ๐Ÿฅฐ๐Ÿ‘พ๐Ÿ‘พ

06.02.2025 09:26 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

I've spent this weekend taking a closer look into Solr and ended up finding a bug in a big BB program which allowed me to modify the Solr database and configuration files via replication! I will spend the following days trying to escalate it to RCE

03.02.2025 16:53 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

20 years ago we were suing teenagers for millions of dollars because they were torrenting a single Metallica album and now billionaires are demanding the free right to every work in history, so that they can re-sell it.

The law only ever serves capital.

08.01.2024 16:34 โ€” ๐Ÿ‘ 27460    ๐Ÿ” 13813    ๐Ÿ’ฌ 190    ๐Ÿ“Œ 242
Post image

About to start a new save in Fallout New Vegas while I wait for Saturday, when I will take the CRTO exam. Also waiting for my local CVE provider to respond about a TP-Link RCE I reported back in October. Blog post coming soon :)

10.12.2024 18:15 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Last week I got my first mechanical keyboard (a rainy 75) and the experience is being amazing. It feels really great to hack on this thing

01.12.2024 17:59 โ€” ๐Ÿ‘ 2    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Finally uninstalled X for now :)

26.11.2024 18:05 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

@hacefresko.com is following 19 prominent accounts