wdahlenburg/werkzeug-debug-console-bypass external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

wdahlenburg/werkzeug-debug-console-bypass

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/wdahlenburg/werkzeug-debug-console-bypass)

Close

wdahlenburg / werkzeug-debug-console-bypassView on GitHubMore

• External links
• Readme badge

Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege escalation vector.

☆65Nov 16, 2022Updated 3 years ago

Alternatives and similar repositories for werkzeug-debug-console-bypass

Users that are interested in werkzeug-debug-console-bypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• v1k1ngfr / exploits-rconfig

  View on GitHub
  Exploit codes for rconfig <= 3.9.4
  ☆11Mar 17, 2020Updated 6 years ago
• kerszl / VMBreaker

  View on GitHub
  "VMBreaker" is a specialized tool for virtual machine security testing, offering essential, user-friendly features for efficient penetrat…
  ☆14Apr 15, 2024Updated 2 years ago
• roughiz / Webmin-1.910-Exploit-Script

  View on GitHub
  Webmin 1.910 - Remote Code Execution Using Python Script
  ☆11Feb 6, 2024Updated 2 years ago
• ajdumanhug / CVE-2023-46818

  View on GitHub
  CVE-2023-46818 Python3 Exploit for ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability
  ☆15Apr 16, 2025Updated last year
• tls-attacker / TLS-Breaker

  View on GitHub
  A tool collection of various attacks on TLS based on TLS-Attacker
  ☆24Jun 25, 2025Updated 11 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jstnkndy / scripts

  View on GitHub
  Scripts that I've written that others may find useful
  ☆14Aug 17, 2022Updated 3 years ago
• grav3m1nd-byte / werkzeug-pin

  View on GitHub
  Yet another Werkzeug Console Pin Exploit Explanation
  ☆23Jul 30, 2021Updated 4 years ago
• disclose / policymaker

  View on GitHub
  A free, open-source, multi-lingual, template-based VDP policy, safe harbor clause, securitytxt, and DNS Security TXT generator.
  ☆16Apr 17, 2026Updated last month
• darrenmartyn / sophucked

  View on GitHub
  CVE-2020-25223
  ☆11Sep 13, 2021Updated 4 years ago
• t0kx / privesc-CVE-2010-0426

  View on GitHub
  Sudo 1.6.x <= 1.6.9p21 and 1.7.x <= 1.7.2p4 Local Privilege Escalation and vulnerable container
  ☆11Dec 16, 2017Updated 8 years ago
• math-x-io / CVE-2024-54152-poc

  View on GitHub
  ☆12Dec 30, 2024Updated last year
• mogwailabs / DNSrebinder

  View on GitHub
  A python based minimal DNS server to test/verify DNS rebinding attacks
  ☆84May 15, 2023Updated 3 years ago
• LaiKash / JSP-Reverse-and-Web-Shell

  View on GitHub
  A simple reverse and as well a webshell that recognices the OS (Windows/Linux).
  ☆18Nov 11, 2020Updated 5 years ago
• wdahlenburg / spring-gateway-demo

  View on GitHub
  Sample Spring application to Demonstrate the Gateway Actuator
  ☆49Mar 3, 2022Updated 4 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• PalindromeLabs / Java-Deserialization-CVEs

  View on GitHub
  Compiled dataset of Java deserialization CVEs
  ☆60Aug 31, 2020Updated 5 years ago
• azeemba / sour16

  View on GitHub
  Toy version of the sweet32 attack
  ☆16Nov 24, 2017Updated 8 years ago
• squid22 / PostgreSQL_RCE

  View on GitHub
  Get a reverse shell using PostgreSQL
  ☆20Aug 16, 2024Updated last year
• sho-luv / zerologon

  View on GitHub
  Zerologon Check and Exploit - Discovered by Tom Tervoort of Secura and expanded on @Dirkjanm's cve-2020-1472 coded example. This tool wil…
  ☆18Apr 12, 2022Updated 4 years ago
• 0xjpuff / reverse_shell_splunk

  View on GitHub
  A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.
  ☆146Aug 20, 2018Updated 7 years ago
• TactiFail / Metasploit-Plugins

  View on GitHub
  A collection of Metasploit plugins I have written for various reasons.
  ☆15Dec 5, 2020Updated 5 years ago
• TarlogicSecurity / EoPLoadDriver

  View on GitHub
  Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)
  ☆166Jun 14, 2018Updated 7 years ago
• hackthebox / business-ctf-2025

  View on GitHub
  Official Writeups for HackTheBox Business CTF 2025: Operation Blackout
  ☆66Jun 5, 2025Updated last year
• VICXOR / CVE-2020-9484

  View on GitHub
  POC for CVE-2020-9484
  ☆13Feb 10, 2021Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• X0Rhyth / BSCP-Guide

  View on GitHub
  A study resource for the BSCP labs and exams.
  ☆39Aug 8, 2025Updated 10 months ago
• flast101 / docker-privesc

  View on GitHub
  Privilege escalation in Docker
  ☆32Jun 30, 2022Updated 3 years ago
• DragonJAR / Security-Wordlist

  View on GitHub
  A wordlist repository with human-curated and reviewed content.
  ☆129Oct 24, 2023Updated 2 years ago
• Splinter0 / tensorflow-rce

  View on GitHub
  RCE PoC for Tensorflow using a malicious Lambda layer
  ☆60Jul 30, 2025Updated 10 months ago
• laconicwolf / HTTP-Header-Fuzzer

  View on GitHub
  A multithreaded Python3 program that fuzzes HTTP headers and values and outputs the results to a CSV file.
  ☆21Jan 13, 2019Updated 7 years ago
• eauxfolles / morse-ocr

  View on GitHub
  Tool to read and translate morse code from picture.
  ☆20Aug 11, 2020Updated 5 years ago
• wdahlenburg / pyhprof

  View on GitHub
  Parse HPROF files from the Spring Boot Heapdump Actuator
  ☆30Jun 11, 2024Updated last year
• retr0reg / Reg-Retr0

  View on GitHub
  Resources required for my BiliBili Pwn tutorial
  ☆12Feb 10, 2023Updated 3 years ago
• wdahlenburg / CVESearch

  View on GitHub
  Query various sources for CVE proof-of-concepts
  ☆51Jun 1, 2023Updated 3 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• gurkylee / Linux-Privilege-Escalation-Basics

  View on GitHub
  Reverse shell cheat sheet
  ☆41Nov 11, 2022Updated 3 years ago
• alcaparra / CVE-2022-1292

  View on GitHub
  CVE-2022-1292 OpenSSL c_rehash Vulnerability - POC
  ☆28Jul 20, 2022Updated 3 years ago
• Leo4j / Tools

  View on GitHub
  ☆32Oct 1, 2025Updated 8 months ago
• Hong5489 / Hackthebox

  View on GitHub
  Hackthebox tools
  ☆13Mar 3, 2019Updated 7 years ago
• BlackFan / CVE_PoCs

  View on GitHub
  CVE PoCs
  ☆21Jul 16, 2020Updated 5 years ago
• yoryio / CVE-2024-27198

  View on GitHub
  Exploit for CVE-2024-27198 - TeamCity Server
  ☆37Dec 19, 2024Updated last year
• ProZachJ / ducktales

  View on GitHub
  Python's handling of NaN is....interesting?broken?...this project illustrates the issue
  ☆13Dec 28, 2021Updated 4 years ago