sickcodes / no-sandbox
No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/
☆179Updated 3 years ago
Alternatives and similar repositories for no-sandbox:
Users that are interested in no-sandbox are comparing it to the libraries listed below
- PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitch.sys.☆218Updated 3 years ago
- A Docker image with four popular Java decompilers in one place (CFR, Fernflower, Krakatau, and Procyon)☆72Updated 2 years ago
- d(ockerp)wn - a docker pwn tool manager☆155Updated 3 years ago
- Electron Research☆70Updated 2 years ago
- encode a bash command with charset $, (, ), #, !, {, }, <, \, '.☆71Updated 5 years ago
- loot source code from sonarqube☆83Updated 4 years ago
- XS-Leak Browser Test Suite☆73Updated last year
- Minimal code to connect to a CEF debugger.☆201Updated 4 years ago
- Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.☆183Updated 8 months ago
- Linux kernel exploits for local privilege escalation☆77Updated 6 years ago
- A WIP "Vulnerable by Design" kext for iOS/macOS to play & learn *OS kernel exploitation☆231Updated 4 years ago
- A denial-of-service proof-of-concept for CVE-2020-1350☆238Updated 4 years ago
- PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)☆125Updated 4 years ago
- PoC for CVE-2022-28281 a Mozilla Firefox Out of bounds write.☆74Updated 2 years ago
- A curated list of awesome browser security learning material.☆138Updated 2 years ago
- A happy heap editor to support your exploitation process☆195Updated 3 years ago
- research☆151Updated 10 months ago
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆197Updated 5 years ago
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆106Updated 5 years ago
- Web-based reverse shell generator☆172Updated 3 years ago
- SSD Challenges☆47Updated 2 years ago
- HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Se…☆281Updated 3 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆150Updated last year
- Linux privilege escalation via LXD☆132Updated 4 years ago
- DupeKeyInjector☆135Updated 2 years ago
- Miscellaneous Tools☆39Updated 4 months ago
- Zenith exploits a memory corruption vulnerability in the NetUSB driver to get remote-code execution on the TP-Link Archer C7 V5 router fo…☆124Updated 2 years ago
- CVE-2021-3156☆111Updated 4 years ago
- 🐱💻 👍 Google Chrome - File System Access API - vulnerabilities reported by Maciej Pulikowski | Total Bug Bounty Reward: $5.000 | CVE-2…☆165Updated 3 years ago
- A variant analysis and visualisation tool that scans codebases for similar vulnerabilities☆70Updated 2 years ago