evilsocket / jscytheLinks
Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.
☆334Updated last year
Alternatives and similar repositories for jscythe
Users that are interested in jscythe are comparing it to the libraries listed below
Sorting:
- Intercept stdin/stdout/stderr for any process☆202Updated 3 years ago
- Take over macOS Electron apps' TCC permissions☆220Updated 2 years ago
- ☆207Updated last year
- A crossplatform mDNS enumeration tool.☆363Updated 3 years ago
- Blazing fast, advanced Padding Oracle exploit☆263Updated last month
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆304Updated 2 weeks ago
- ☆170Updated 3 years ago
- A structure-aware HTTP fuzzing library☆217Updated 3 weeks ago
- One-stop TLS traffic inspection and manipulation using dynamic instrumentation☆244Updated 3 years ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆146Updated 3 years ago
- A web client port-scanner written in GO, that supports the WASM/WASI interface for Browser WebAssembly runtime execution.☆156Updated 2 years ago
- Minimal code to connect to a CEF debugger.☆211Updated 5 years ago
- 🤩 Emoji shellcoding tools for RISC-V (32-bit and 64-bit)☆175Updated 6 months ago
- Execute ELF files without dropping them on disk☆502Updated last year
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆123Updated 3 years ago
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆143Updated 3 years ago
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆199Updated 2 years ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆113Updated 8 months ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆211Updated 5 years ago
- ☆65Updated 3 years ago
- Comprehensive toolkit for Ghidra headless.☆363Updated 9 months ago
- Tool to test if you're in a Docker container and attempt simple breakouts☆150Updated 3 years ago
- Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious S…☆241Updated 2 years ago
- An automatic Blind ROP exploitation tool☆207Updated 2 years ago
- WebSocket REPL for pentesters☆233Updated last year
- A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.☆215Updated 3 years ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆212Updated 2 years ago
- CQ, a code security scanner☆99Updated last year
- A toolbox for extracting RSA private keys from public keys.☆190Updated 4 years ago
- Command line fuzzer and bruteforcer 🌪 wfuzz for command☆94Updated 3 years ago