evilsocket / jscytheLinks
Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.
☆328Updated 9 months ago
Alternatives and similar repositories for jscythe
Users that are interested in jscythe are comparing it to the libraries listed below
Sorting:
- One-stop TLS traffic inspection and manipulation using dynamic instrumentation☆243Updated 2 years ago
- Intercept stdin/stdout/stderr for any process☆198Updated 2 years ago
- Execute ELF files without dropping them on disk☆492Updated 11 months ago
- Take over macOS Electron apps' TCC permissions☆204Updated last year
- Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious S…☆231Updated last year
- ☆204Updated 7 months ago
- A crossplatform mDNS enumeration tool.☆353Updated 2 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- Blazing fast, advanced Padding Oracle exploit☆254Updated last year
- Minimal code to connect to a CEF debugger.☆207Updated 5 years ago
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆98Updated 2 years ago
- A curated list of awesome browser security learning material.☆140Updated 2 years ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆147Updated 2 years ago
- A web client port-scanner written in GO, that supports the WASM/WASI interface for Browser WebAssembly runtime execution.☆154Updated 2 years ago
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆132Updated 2 years ago
- Convert shellcode into different formats!☆353Updated 2 years ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆295Updated this week
- Source Code Management Attack Toolkit☆219Updated 2 years ago
- A fast and secure multi protocol honeypot.☆322Updated 2 years ago
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆849Updated 3 months ago
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆189Updated last year
- ☆63Updated 2 years ago
- This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.☆506Updated 2 weeks ago
- A structure-aware HTTP fuzzing library☆213Updated 6 months ago
- CQ, a code security scanner☆100Updated last year
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆205Updated 2 years ago
- List of Trusted Types bypasses☆93Updated last year
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆122Updated 3 years ago
- ☆540Updated 2 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 3 months ago