Hands-on vulnerability analysis & cybersecurity learning
| CVE | CVSS | Description |
|---|---|---|
| CVE-2026-31421 | 7.8 | Linux LPE, Privilege Escalation |
| CVE-2022-0778 | 6.0 | Infinite loop in OpenSSL BN_mod_sqrt causing DoS |
| CVE-2023-23397 | 9.0 | Microsoft Outlook privilege escalation via calendar parsing |
This repository documents real-world CVEs to understand:
- π How vulnerabilities are discovered
- π₯ How exploitation works (conceptually)
- π‘οΈ How systems are patched and secured
- π How severity (CVSS) is evaluated
Itβs mainly for learning and building real cybersecurity understanding through actual vulnerability research.
- Linux (Debian / Kali)
- Nmap
- SearchSploit
- Open Source CVE databases (NVD / MITRE)
- Python (automation scripts)
π CVE-Studies/
Each CVE folder follows the same format:
- notes.md β main explanation of the vulnerability
- analysis.md β how the exploit works (high level)
- mitigation.md β how to fix/prevent it/analyze it
- image.png β visual notes or diagrams
- script.py β exploit scripts