xcanwin / CVE-2023-4357-Chrome-XXELinks
[漏洞复现] 全球首款单文件利用 CVE-2023-4357 Chrome XXE 漏洞 EXP, 实现对访客者本地文件窃取. Chrome XXE vulnerability EXP, allowing attackers to obtain local files of visitors.
☆215Updated 2 months ago
Alternatives and similar repositories for CVE-2023-4357-Chrome-XXE
Users that are interested in CVE-2023-4357-Chrome-XXE are comparing it to the libraries listed below
Sorting:
- Chrome-RCE-Poc☆84Updated 9 months ago
- WPS-Office 1-Click RCE exp 202308091546☆140Updated last year
- ebpf WebShell/内核马,一种新型内核马/WebShell技术☆332Updated last year
- RDL的堆溢出导致的RCE☆216Updated 9 months ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆373Updated last month
- WPS Office RCE On 2023-08-10☆250Updated last year
- CVE-2023-0386 analysis and Exp☆117Updated 2 years ago
- IoT_Vulnerability_Wiki IoT漏洞知识库☆197Updated 5 months ago
- CVE-2022-2639 Linux kernel openvswitch local privilege escalation☆108Updated 2 years ago
- Here is Hacking-Group-0872-Slide☆32Updated last year
- [漏洞复现] 全球首款利用PHP默认环境(XAMPP)的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP。☆148Updated 10 months ago
- Java Js Engine Payloads All in one☆271Updated last year
- 入侵痕迹清理/Cleaning up traces of intrusion☆209Updated 7 months ago
- 容器安全漏洞的分析与复现☆158Updated last year
- nginx WebShell/内存马,更优雅的nignx backdoor☆307Updated last year
- 一个雏形,一个基于Volatility进行可视化、自动化内存镜像分析的工具☆114Updated last year
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆462Updated 2 months ago
- CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞,可覆盖重写任意可读文件中的数据,从而可将普通权限的用户提升到特权 root。 CVE-2…☆280Updated 2 years ago
- 让"WAF绕过"变得简单☆376Updated 4 months ago
- 愿我的努力与付出,能成为你向上攀登的基石。要是10年前有人告诉我这些就好了。☆243Updated this week
- ☆148Updated last year
- IDA Pro每周小技巧☆276Updated 2 years ago
- dotnet 反序列化学习笔记☆457Updated last year
- Automatically converts Python source code to Pickle opcode☆145Updated 5 months ago
- 一款基于污点分析的PHP扫描工具,能快速匹配从常见Source点如$_POST、$GET到Sink点system等的路径,同时支持单独对函数的扫描。☆121Updated last month
- Docker容器逃逸工具(Docker Escape Tools)☆274Updated 2 years ago
- Java web路由内存分析工具☆432Updated 2 weeks ago
- 统计路由器CVE,便于漏洞挖掘☆71Updated last year
- awd/awdp 小工具,使用 javassist 对 jar 包进行 patch☆29Updated last year
- 2023白帽补天大会部分代码☆124Updated last year