evilsocket / jscytheLinks
Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.
☆333Updated last year
Alternatives and similar repositories for jscythe
Users that are interested in jscythe are comparing it to the libraries listed below
Sorting:
- Take over macOS Electron apps' TCC permissions☆216Updated 2 years ago
- Intercept stdin/stdout/stderr for any process☆199Updated 3 years ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆302Updated this week
- A crossplatform mDNS enumeration tool.☆360Updated 3 years ago
- A web client port-scanner written in GO, that supports the WASM/WASI interface for Browser WebAssembly runtime execution.☆157Updated 2 years ago
- ☆207Updated last year
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆196Updated last year
- Execute ELF files without dropping them on disk☆499Updated last year
- Blazing fast, advanced Padding Oracle exploit☆258Updated 2 months ago
- ☆170Updated 3 years ago
- Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious S…☆239Updated 2 years ago
- Minimal code to connect to a CEF debugger.☆209Updated 5 years ago
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆142Updated 3 years ago
- One-stop TLS traffic inspection and manipulation using dynamic instrumentation☆244Updated 3 years ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆147Updated 2 years ago
- ☆65Updated 2 years ago
- ☆50Updated 3 years ago
- StringCheese is a CTF tool to solve easy challenges automatically in many cases where a strings | grep is just not enough☆88Updated 4 years ago
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆123Updated 3 years ago
- List of Trusted Types bypasses☆102Updated last year
- No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are alread…☆187Updated 4 years ago
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆100Updated 2 years ago
- A fast and secure multi protocol honeypot.☆326Updated 3 years ago
- A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.☆216Updated 3 years ago
- CQ, a code security scanner☆100Updated last year
- Electron Research☆71Updated 3 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- Convert shellcode into different formats!☆359Updated 2 years ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆111Updated 5 months ago
- MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash☆798Updated 3 years ago