NodeJS File Write to RCE on a read-only filesystem using a ROP chain in libuv
☆38Oct 13, 2024Updated last year
Alternatives and similar repositories for nodejs-file-write-rce
Users that are interested in nodejs-file-write-rce are comparing it to the libraries listed below
Sorting:
- Hacking GraalVM Espresso - Abusing Continuation API to Make ROP-like Attack☆36Aug 27, 2025Updated 6 months ago
- JSPHorse Project Backup☆27Jan 17, 2022Updated 4 years ago
- Java bytecode line number restoration tool☆135Aug 31, 2025Updated 6 months ago
- ☆14Dec 22, 2020Updated 5 years ago
- Default Linux files/images location☆28Jan 12, 2021Updated 5 years ago
- ☆90Updated this week
- A Online PHP FilterChain Generator.☆17Aug 3, 2024Updated last year
- ☆11May 25, 2024Updated last year
- 一款基于James Forshaw的.NET Remoting反序列化工具升级版在TypeFilterLevel.Low模式无文件payload任意代码执行poc的开发心得☆48Jan 23, 2025Updated last year
- Proof of Concept Exploit for CVE-2024-9464☆44Oct 9, 2024Updated last year
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆223Jun 8, 2024Updated last year
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- Clickme is a powerful multi-step clickjacking tool designed for security professionals. Create, visualize, and demonstrate complex clickj…☆14Sep 4, 2025Updated 6 months ago
- A script that gives you the credentials of a Pterodactyl panel vulnerable to CVE-2025-49132☆17Jun 22, 2025Updated 9 months ago
- PoC of Spring AMQP Deserialization Vulnerability (CVE-2023-34050)☆13Jan 29, 2024Updated 2 years ago
- ☆16Mar 26, 2024Updated last year
- CodeQL 寻找 JNDI利用 Lookup接口☆166Apr 10, 2022Updated 3 years ago
- ☆17May 10, 2021Updated 4 years ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆57Oct 25, 2023Updated 2 years ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆46Jul 29, 2024Updated last year
- ☆21Sep 12, 2025Updated 6 months ago
- JDK CVE-2023-21939☆94Aug 26, 2023Updated 2 years ago
- PoC for CVE-2021-43557☆22Nov 22, 2021Updated 4 years ago
- WinDbg script to spoof origin and url of a renderer process in Chrome☆25Dec 2, 2020Updated 5 years ago
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆61Apr 19, 2025Updated 11 months ago
- Tool for Active Directory Certificate Services enumeration and abuse☆13Oct 7, 2024Updated last year
- 一个基于 Vineflower 引擎的多线程 Java 批量反编译工具,支持快速处理大量的 class 文件和 JAR 文件。☆58Apr 28, 2025Updated 10 months ago
- ☆20Sep 8, 2023Updated 2 years ago
- The next-generation AI Agent framework driven by Intent Engineering. Move beyond turn-based Function Calling to embrace code-level intent…☆75Jan 11, 2026Updated 2 months ago
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF☆56Jul 28, 2025Updated 7 months ago
- dotnet 反序列化学习笔记☆513Oct 19, 2023Updated 2 years ago
- ☆44Feb 11, 2022Updated 4 years ago
- Attack & Defense CTF dashboard☆16Oct 7, 2021Updated 4 years ago
- 自动化检测 Swagger API 接口未授权访问漏洞工具☆60Mar 10, 2025Updated last year
- ☆55Dec 29, 2021Updated 4 years ago
- ☆24Nov 19, 2024Updated last year
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆92Mar 25, 2024Updated last year
- CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…☆623Updated this week
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆78Jun 6, 2024Updated last year