借口 

Security Engineer

Internet
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
借口 is an offensive security engineer with five years of hands-on experience identifying and weaponizing vulnerabilities across a wide range of enterprise software. Operating from the Internet, they contribute practical proof-of-concept exploits—many packaged as .jar POCs—targeting high-impact issues like WebLogic RCEs, Redis/Redis-unauthorized RCEs, VMware vCenter file disclosure, and various CVE-class vulnerabilities. Their GitHub activity reflects a focus on rapid vulnerability validation and exploit development rather than large-scale software projects, signaling deep familiarity with exploitation techniques and real-world attack chains. Comfortable working across diverse stacks and protocols, they translate security research into reproducible demonstrations that accelerate patching and risk assessment. Less obvious: their pattern of uploads hints at a methodical cataloging approach that prioritizes breadth of coverage, making them a strong asset for red team engagements and vulnerability discovery programs.
code5 years of coding experience
github-logo-circle

Github Skills (9)

security-testing10
vulnerabilities10
exploit10
vulnerability10
reverse8
weblogic8
reverse-engineering8
gitlab7
sql-injection6

Programming languages (6)

C#JavaJavaScriptGoPHPPython

Github contributions (5)

github-logo-circle
1n7erface/PocList

Mar 2021 - Jul 2021

Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BIG-IP-CVE-2021-22986/Sonicwall-SSL-VPN-RCE/GitLab-Graphql-CNVD-2021-14193/D-Link-DCS-CVE-2020-25078/WLAN-AP-WEA453e-RCE/360TianQing-Unauthorized/360TianQing-SQLinjection/FanWeiOA-V8-SQLinjection/QiZhiBaoLeiJi-AnyUserLogin/QiAnXin-WangKangFirewall-RCE/金山-V8-终端安全系统/NCCloud-SQLinjection/ShowDoc-RCE
Role in this project:
userSecurity Engineer
Contributions:87 commits, 87 pushes, 1 branch in 4 months
Contributions summary:借口's contributions center around the addition of multiple `.jar` files to the repository. These files appear to be Proofs of Concepts (POCs) or exploit code, targeting vulnerabilities in various software and systems. The commit messages consistently indicate the addition of these files via upload, suggesting a focus on vulnerability identification and exploitation rather than code development. The filenames indicate exploits related to several technologies and vulnerabilities.
exchangesolrwlancvecve-2020-25078
1n7erface/sendMail

Apr 2021 - Jun 2022

Contributions:19 commits, 15 pushes, 1 branch in 1 year 2 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
借口 - Security Engineer