Skip to content
View tcbutler320's full-sized avatar
:octocat:
Working on @OpenXSS
:octocat:
Working on @OpenXSS
40 followers · 2 following

Achievements

Achievement: YOLOAchievement: StarstruckAchievement: Pull Sharkx3Achievement: Arctic Code Vault Contributor
BetaSend feedback

Achievements

Achievement: YOLOAchievement: StarstruckAchievement: Pull Sharkx3Achievement: Arctic Code Vault Contributor
BetaSend feedback
Block or Report

Block or report tcbutler320

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
tcbutler320/readme.md

👋 About Me

I'm a graduate student at Georgetown University in the Security Studies Program at the Walsh School of Foreign Service. My academic interests are on the intersection of emerging technology and national security, with a specific focus on state-sponsored cyber network operations and cyber operations policy. In my free time, I develop my vulnerability discovery and exploit development skills through freelance security research and bug bounty programs. Since 2018, I've engaged dozens of software vendors in responsible disclosures for vulnerabilities in open-source projects, web applications, IoT and embedded devices, culminating in being credited with discovery of several vulnerabilities.

Featured Security Research

Date CVE Title
09/2021 CVE-2021-38701 Avigilon - Multiple Devices Authenticated Stored XSS
08/2021 CVE-2021-3441 HP Officejet - 'AirPrint' Unauthenticated Stored XSS
06/2021 CVE-2021-35956 AKCP sensorProbe - 'Multiple' Authenticated XSS
05/2021 N/A PHP Timeclock 1.04 - Time & Boolean Based Blind SQL Injection

Exploit-DB Proof of Concept Exploits
Other Security Research

Pinned

  1. Jekyll-Theme-Dumbarton Jekyll-Theme-Dumbarton Public template

    Dumbarton is a Jekyll Theme developed by Tyler Butler. The theme is designed for academics and features a simple home page with an about me section, a blog, and an interactive highlights section to…

    HTML 60 56

  2. jek jek Public template

    Jek is a minimalist jekyll theme putting the power of color schemes in the user’s hands. Toggle between schemes hassle-free, create new ones on the go, and store settings in-browser.

    JavaScript 36 10

  3. BananaCannon BananaCannon Public

    BananaCannon is a series of exploit proof of concepts for MonkeyType.com, a popular typing test web application with a growing community. This repository contains XSS exploits and a python PoC to s…

    6 1

  4. TimeClock-1.01-Vuln TimeClock-1.01-Vuln Public

    A proof of concept for a time-based SQL injection attack in the Employee Time-clock software, version 1.01. This exploit was added to Exploit-DB in entry 48874

    VBA 4 2

  5. CVE-2021-35956 CVE-2021-35956 Public

    Proof of Concept Exploit for CVE-2021-35956, AKCP sensorProbe - 'Multiple' Cross Site Scripting (XSS)

    1

  6. CVE-2021-3441-check CVE-2021-3441-check Public

    CVE-2021-3441 CVE Check is a python script to search targets for indicators of compromise to CVE-2021-3441

    Python 2 1