xcanwin / CVE-2023-4357-Chrome-XXE
[漏洞复现] 全球首款单文件利用 CVE-2023-4357 Chrome XXE 漏洞 EXP, 实现对访客者本地文件窃取. Chrome XXE vulnerability EXP, allowing attackers to obtain local files of visitors.
☆200Updated last year
Related projects ⓘ
Alternatives and complementary repositories for CVE-2023-4357-Chrome-XXE
- Chrome-RCE-Poc☆76Updated 3 months ago
- WPS-Office 1-Click RCE exp 202308091546☆141Updated last year
- [漏洞复现] 全球首款利用PHP默认环境(XAMPP)的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP。☆120Updated 4 months ago
- RDL的堆溢出导致的RCE☆208Updated 3 months ago
- WPS Office RCE On 2023-08-10☆250Updated last year
- Java Js Engine Payloads All in one☆269Updated last year
- ebpf WebShell/内核马,一种新型内核马/WebShell技术☆315Updated 10 months ago
- 容器安全漏洞的分析与复现☆152Updated 7 months ago
- 利用oss实现http转发/cobalt strike上线☆342Updated last year
- CVE-2023-0386 analysis and Exp☆117Updated last year
- IDA Pro每周小技巧☆274Updated 2 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆396Updated 8 months ago
- AntiAV shellcode loader☆297Updated last year
- awd/awdp 小工具,使用 javassist 对 jar 包进行 patch☆27Updated last year
- 入侵痕迹清理/Cleaning up traces of intrusion☆167Updated 2 weeks ago
- dotnet 反序列化学习笔记☆437Updated last year
- CVE-2022-2639 Linux kernel openvswitch local privilege escalation☆108Updated 2 years ago
- ☆52Updated 3 months ago
- 不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。☆120Updated last year
- nginx WebShell/内存马,更优雅的nignx backdoor☆287Updated 10 months ago
- JNDI 注入利用工具, 支持 RMI, LDAP 和 LDAPS 协议, 包含多种高版本 JDK 绕过方式 | A JNDI injection exploit tool that supports RMI, LDAP and LDAPS protocols, inclu…☆338Updated last month
- 自动反编译闭源应用,创建codeql数据库☆297Updated 2 years ago
- Java web路由内存分析工具☆424Updated last week
- A VSCode Workspace based hacking environment utils. Starting your Note-Driven Hacking experience. Checkout the following link to sample o…☆57Updated last month
- Debug pwn using docker image☆113Updated 3 weeks ago
- EDR绕过demo☆286Updated 10 months ago
- CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞,可覆盖重写任意可读文件中的数据,从而可将普通权限的用户提升到特权 root。 CVE-2…☆276Updated last year
- JavaWeb漏洞审计工具,构建方法调用链并模拟栈帧进行分析☆324Updated last year