sickcodes / no-sandboxLinks
No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/
☆184Updated 4 years ago
Alternatives and similar repositories for no-sandbox
Users that are interested in no-sandbox are comparing it to the libraries listed below
Sorting:
- PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitch.sys.☆223Updated 4 years ago
- PoC for CVE-2022-28281 a Mozilla Firefox Out of bounds write.☆74Updated 3 years ago
- A WIP "Vulnerable by Design" kext for iOS/macOS to play & learn *OS kernel exploitation☆230Updated 4 years ago
- Minimal code to connect to a CEF debugger.☆207Updated 4 years ago
- A repository of previous info-sec presentations I've presented.☆161Updated 7 months ago
- XS-Leak Browser Test Suite☆81Updated last year
- d(ockerp)wn - a docker pwn tool manager☆157Updated 3 years ago
- Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.☆233Updated 4 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆154Updated last year
- encode a bash command with charset $, (, ), #, !, {, }, <, \, '.☆72Updated 5 years ago
- Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.☆187Updated last year
- A curated list of awesome browser security learning material.☆141Updated 2 years ago
- Proof-of-concept for Spook.js☆71Updated 3 years ago
- loot source code from sonarqube☆84Updated 4 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- LPE for CVE-2020-1054 targeting Windows 7 x64☆86Updated 4 years ago
- Linux kernel exploits for local privilege escalation☆77Updated 6 years ago
- CVE-2022-22639: Get a Root Shell on macOS Monterey☆121Updated 3 years ago
- A Docker image with four popular Java decompilers in one place (CFR, Fernflower, Krakatau, and Procyon)☆73Updated 3 years ago
- Electron Research☆71Updated 3 years ago
- ☆115Updated last year
- A proper well structured documentation for getting started with chrome pwning & v8 pwning☆194Updated 2 years ago
- DupeKeyInjector☆135Updated 3 years ago
- PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)☆124Updated 4 years ago
- research☆151Updated last year
- This is an exploit for CVE-2020-0674 that runs on the x64 version of IE 8, 9, 10, and 11 on Windows 7.☆224Updated 5 years ago
- ☆130Updated 2 years ago
- Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.☆328Updated 8 months ago
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆122Updated 3 years ago
- Cisco ASA Software and ASDM Security Research☆85Updated 2 years ago