iltosec
Penetration Tester at LoreSecurity | OSWE | eWPTXv2
About Me
I started my career as a graduate of Akdeniz University Management Information Systems and took my first steps in the field of cyber security, especially CTI, by doing research on dark web forums. Later, I transitioned into the field I wanted to pursue, pentesting, to further develop my technical skills and security knowledge. Currently, I am focused on strengthening information security systems and detecting vulnerabilities, with a focus on web security. I constantly follow innovations in my field.
CVEs
CVE-2024-11319 - Django CMS 4.1.3: Stored XSS
Reported on Nov 2024
Django CMS version 4.1.3 is affected by a stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject arbitrary JavaScript code that is executed in the context of the web application, potentially compromising the safety of all users visiting the affected page.
Mitre Link Git Commit Vendor Patch Blog PostExperience
Awards & Certifications
Projects
CVE-2022-29464-Bypass-CloudFlare
Published: Feb 2024
WSO2 RCE (CVE-2022-29464) exploit and bypass CloudFlare. the vulnerability is an unauthenticated unrestricted arbitrary file upload which allows unauthenticated attackers to gain RCE on WSO2...
Source CodePython For Hackers
Published: May 2022
There are simple python scripts for penetration testing. Hacking with Python is a simple and extensible tool for getting started with ethical hacking activities and running python scripts. Scripts will be constantly updated and new scripts will be added.
Source CodePython Ransomware
Published: Oct 2021
Simple Ransomware using Python PyQt5 and Cryptography libraries. You can make the design you want using the design files.
Source Code