drtychai / browser-exploitationLinks
A collection of curated resources and CVEs I use for research.
☆106Updated 3 years ago
Alternatives and similar repositories for browser-exploitation
Users that are interested in browser-exploitation are comparing it to the libraries listed below
Sorting:
- Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…☆188Updated last year
- A proper well structured documentation for getting started with chrome pwning & v8 pwning☆195Updated 2 years ago
- ☆154Updated 6 years ago
- An awesome list for Effective and Powerful harnesses for fuzzing using libfuzzer - fuzzers by Google☆75Updated 4 years ago
- Code execution via corrupting mmap malloc chunks with ASLR bypass☆43Updated 2 years ago
- A DOM fuzzer☆149Updated 2 years ago
- ☆88Updated 3 years ago
- Old and new CTFs about Linux kernel exploitation.☆55Updated 3 years ago
- Automatic ROPChain Generation☆288Updated 5 years ago
- An intentionally vulnerable linux driver for research purposes/practice in kernel exploit dev☆121Updated 7 years ago
- Windows Graphics Device Interface (GDI+) fuzzer☆129Updated 4 years ago
- ☆21Updated 5 years ago
- harness for fuzzing with winafl. both public and my own which i have released.☆57Updated 4 years ago
- "Pwntools does not support Windows. Use a real OS ;)" — Zach Riggle, 2015☆85Updated 5 years ago
- ☆115Updated last year
- 0day VirtualBox 6.1.2 Escape for RealWorld CTF 2020/2021 CVE-2021-2119☆139Updated 4 years ago
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆228Updated 2 years ago
- Fuzzing harnesses, corpora, scripts, and target-specific notes for fuzzing IrfanView☆23Updated 4 years ago
- A multi-platform fuzzer for poking at userland binaries, network clients and servers☆69Updated 9 months ago
- JavaScript Fuzzing framework for v8☆135Updated 3 years ago
- ☆137Updated 3 years ago
- My conference presentations and Materials for them.☆32Updated 2 years ago
- Web user interface and service agent for the monitoring and remote management of WinAFL.☆52Updated 2 months ago
- A happy heap editor to support your exploitation process☆195Updated 4 years ago
- Corpus of public v8 vulnerability PoCs.☆213Updated 4 years ago
- Repository of the findings found by wtf when fuzzing IDA75.☆87Updated 3 years ago
- Exploit for the [pwn] just-in-time challenge from google ctf 2018's finals (TurboFan bug)☆61Updated 6 years ago
- ☆198Updated 2 years ago
- Linux Kernel Snapshot Fuzzer using KVM☆47Updated last year
- Include CVE vulnerability analyze, ctf pwn and documents for Browser-pwn☆184Updated 4 years ago