Name: Jake Baines
Type: User
Company: Rapid7
Bio: Lead Security Researcher @ Rapid7
Twitter: Junior_Baines
This account is read-only as of September 9, 2022. I am no longer a Rapid7 employee. To follow my work find me at the jacob-baines on GitHub or @Junior_Baines on Twitter.
Vulnerability researcher that sometimes gets lucky. Three-time DEFCON speaker and once a Black Hat speaker. Occasional blogger. Using this account for:
You can find some of my other work:
asdm_version_scanner
Scan ASA for ASDM Version Information
attackerkb_images
GitHub as an AttackerKB CDN
badblood
SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)
blankspace
Proof of Concept for EFSRPC Arbitrary File Upload (CVE-2021-43893)
cisco_asa_research
Cisco ASA Software and ASDM Security Research
dellicious
Enabled / Disable LSA Protection via BYOVD
getchoo
Cisco ASDM SGZ Parser
hook
Proof of Concept for WatchGuard Authenticated Arbitrary File Read (CVE-2022-31749)
jbaines-r7
longtime-sunshine
Nashorn Post Exploitation
metasploit-framework
Metasploit Framework
overkill
QNAP N-Day (Probably not CVE-2020-2509)
pinchme
Generates Malicious ASA-X SFR Module Boot Images
shakeitoff
Windows MSI Installer LPE (CVE-2021-43883)
slowcheetah
spring4shell_vulnapp
Intentionally Vulnerable to Spring4Shell
staystaystay
Proof of Concept for CVE-2021-1585: Cisco ASA Device Manager RCE
theway
A tool for extracting, modifying, and crafting ASDM binary packages (CVE-2022-20829)
through_the_wire
CVE-2022-26134 Proof of Concept
victorian_machinery
Proof of concept exploit for CVE-2022-30525 (Zxyel firewall command injection)
watchguard_cve-2022-26318
Watchguard RCE POC CVE-2022-26318
whatsup
Creates Malicious SFR Packages for Cisco ASA-X with FirePOWER Services
zyxel_scanner_environment
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.
