Awesome Open Source

Programming Languages

Search results for javascript exploitation

30 search results found

The Browser Exploitation Framework Project

Nuclei Templates ⭐ 7,614

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Tplmap ⭐ 3,537

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

Computer Science Resources ⭐ 2,227

A list of resources in different fields of Computer Science

Reverse Shell ⭐ 1,600

Reverse Shell as a Service

Damn Vulnerable Graphql Application ⭐ 1,387

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Toxssin ⭐ 1,105

An XSS exploitation command-line interface and payload generator.

Singularity ⭐ 937

A DNS rebinding attack framework.

Pegaswitch ⭐ 921

PegaSwitch is an exploit toolkit for the Nintendo Switch

Dynamic code analysis tool - Exploit, record and analyze running JavaScript

As Exploits ⭐ 830

中国蚁剑后渗透框架

Hack Tools ⭐ 764

A Javascript library for browser exploitation

Nginx Lua Anti Ddos ⭐ 649

A Anti-DDoS script to protect Nginx web servers using Lua with a HTML Javascript based authentication puzzle inspired by Cloudflare I am under attack mode an Anti-DDoS authentication page protect yourself from every attack type All Layer 7 Attacks Mitigating Historic Attacks DoS DoS Implications DDoS All Brute Force Attacks Zero day exploits Social Engineering Rainbow Tables Password Cracking Tools Password Lists Dictionary Attacks Time Delay Any Hosting Provider Any CMS or Custom Website Unlimi

Ps4 5.05 Kernel Exploit ⭐ 591

A fully implemented kernel exploit for the PS4 on 5.05FW

Cve 2019 11708 ⭐ 569

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

Hyperpwn ⭐ 531

A hyper plugin to provide a flexible GDB GUI frontend with the help of GEF, pwndbg or peda

Ps4 4.05 Kernel Exploit ⭐ 515

A fully implemented kernel exploit for the PS4 on 4.05FW

Discord Console Hacks ⭐ 504

A collection of JavaScript Codes I've made to enhance the User Experience of Discord and some other Discord related stuff

Sonar.js ⭐ 502

A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration combined with WebSockets and external resource fingerprinting.

Xsschef ⭐ 486

Chrome extension Exploitation Framework

Asiagaming ⭐ 420

My Chrome and Safari exploit code + write-up repo

Commodity Injection Signatures ⭐ 364

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Jsshell ⭐ 356

An interactive multi-user web JS shell

Ext Remover ⭐ 309

A collection of ChromeOS exploits free for the public

Cve 2023 21608 ⭐ 260

Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit

Bluebox Ng ⭐ 254

Pentesting framework using Node.js powers, focused in VoIP.

All about DDoS attacks, exploits, botnets and some proxies =)

Cve 2019 1003000 Jenkins Rce Poc ⭐ 254

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

Ps4 4.55 Kernel Exploit ⭐ 247

A fully implemented kernel exploit for the PS4 on 4.55FW

Zerodiscord ⭐ 235

A collection of Discord hacks, exploits & tools that is completely made using NodeJS.

Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.

Ps4 Playground ⭐ 208

A set of PS4 experiments using the WebKit exploit

Shadow Workers ⭐ 196

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

Ps4 6.20 Webkit Code Execution Exploit ⭐ 196

A WebKit exploit using CVE-2018-4441 to obtain RCE on PS4 6.20.

Cve 2019 9810 ⭐ 192

Exploit for CVE-2019-9810 Firefox on Windows 64-bit.

More Stable Offline Exploit version of PS4 6.72 Jailbreak.

Csgo_bugs ⭐ 181

Random CSGO stuff

Ironsquirrel ⭐ 176

Encrypted exploit delivery for the masses

Ps4 5.01 Webkit Exploit Poc ⭐ 153

PS4 5.01 WebKit Exploit PoC

Cve 2018 4233 ⭐ 151

Exploit for CVE-2018-4233, a WebKit JIT optimization bug used during Pwn2Own 2018

Owasp Mth3l3m3nt Framework ⭐ 139

OWASP Mth3l3m3nt Framework is a penetration testing aiding tool and exploitation framework. It fosters a principle of attack the web using the web as well as pentest on the go through its responsive interface.

Vue单页面应用脚手架Gaea 4.0

Blazefox ⭐ 128

Blazefox exploits for Windows 10 RS5 64-bit.

Just Rop ⭐ 123

JavaScript ROP framework

Ps4 Ipv6 Uaf ⭐ 121

Vuln_javascript ⭐ 120

模拟一个存在漏洞的JavaScript 运行环境,用来学习浏览器漏洞原理和练习如何编写Shellcode (a JavaScript Execute Envirment which study browser vuln and how to write Shellcode ) ..

Nuclei Ai Extension ⭐ 115

Nuclei AI - Browser Extension for Rapid Nuclei Template Generation

Cve 2022 28672 ⭐ 115

Foxit PDF Reader Remote Code Execution Exploit

Doublestar ⭐ 98

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

Exploit_playground ⭐ 98

All Discord Exploits ⭐ 98

This is a list of Discord console scripts, bugs and exploits.

Csgo Crash Exploit ⭐ 92

Allows you to crash any Windows user

Chrome_v8_exploit ⭐ 91

A collection of 1days and solutions to challenges related to v8/chrome I developed

Angular Expressions ⭐ 91

Angular expressions as standalone module

Tcp_exploit ⭐ 89

Off-Path TCP Exploit: How Wireless Routers Can Jeopardize Your Secret

Apachecn Sec Zh ⭐ 80

ApacheCN 网络安全译文集

Evalyzer ⭐ 79

Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection

Continuous Integration and Development ExploiteR

Web_exploit_detector ⭐ 79

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

Cve 2019 0808 ⭐ 76

Win32k Exploit by Grant Willcox

Exploits ⭐ 75

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

Goatcasino ⭐ 70

This is an intentionally vulnerable smart contract truffle deployment aimed at allowing those interested in smart contract security to exploit a wide variety of issues in a safe environment.

Webapp Exploit Payloads ⭐ 66

a collection of payloads for common webapps

Khanacademy_bot ⭐ 61

An answer revealer userscript for Khan Academy

Fruityc2 Client ⭐ 59

FruityC2 is a post-exploitation (and open source) framework based on the deployment of agents on compromised machines. Agents are managed from a web interface under the control of an operator.

Ps4 4.0x Code Execution Poc ⭐ 59

My edit of qwertyoruiopz 4.0x exploit PoC from http://rce.party/ps4

Jailbreakme Unified ⭐ 56

Framework for iOS browser exploitation to kernel privileges and rootfs remount

Turbofan Exploit For Issue 762874 ⭐ 49

Exploit for a bug in TurboFan's typing of JSCall nodes for builtins kStringLastIndexOf and kStringIndexOf

Cve 2019 12476 ⭐ 44

Exploit Cve 2016 6515 ⭐ 44

OpenSSH remote DOS exploit and vulnerable container

Stegosploit ⭐ 43

IMAJS meet <img>

Browser Exploitation ⭐ 43

A collection of curated resources and CVEs I use for research.

Pwn Just In Time Exploit ⭐ 42

Exploit for the [pwn] just-in-time challenge from google ctf 2018's finals (TurboFan bug)

Cve 2016 1764 ⭐ 41

Extraction of iMessage Data via XSS

Unshift Racy ⭐ 39

Webkit JavascriptCore Array unshift function had a race condition, it leads to RCE.

Feuerfuchs ⭐ 37

Files for the "feuerfuchs" challenge of 33C3 CTF. See the greeting message in server.py for more information about the challenge

Vaya Ciego Nen ⭐ 36

Detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

WAMpage - A WebOS root LPE exploit chain (CVE-2022-23731)

v3 HAN Tools: A Collection of Tools Targetting 3000/4000 Series Slim/Superslim To Allow OFW Package Manager and More

Webkitties ⭐ 34

PS Vita Webkit Exploit / Mini SDK and Testing Framework

White_lightning ⭐ 33

Platform for Browser Exploitation

Magellan_poc ⭐ 31

Greyscript ⭐ 31

Stuff for grey hack

Hardenedpaste ⭐ 30

[Retired] Hardened Paste is a browser extension that prevents the “pastejacking” exploit.

Vulnerabilities ⭐ 29

Some of the vulnerabilities that were found by Cybellum platform

Proof-of-concept CORS exploitation tool.

Longtime Sunshine ⭐ 28

Nashorn Post Exploitation

Ps4 4.0x 4.05 Code Execution Poc ⭐ 28

4.05 added support

Docker Npmrc Security ⭐ 27

.npmrc files are often used insecurely in Docker images. Use multi-stage builds or Docker build secrets to protect your .nrpmc files.

Xss Shell Payloads ⭐ 27

XSSing Your Way to Shell

Qoffeesip ⭐ 26

QoffeeSIP is a complete Javascript SIP stack that can be used in a website to exploit all the multimedia capabilities of WebRTC technology. Instead of using pure Javascript, QoffeeSIP has been coded with CoffeeScript so you can easily modify it to suit your needs.

Crossdomain ⭐ 25

Exploit insecure crossdomain.xml files.

Carilana ⭐ 25

Scripts developed for the LiquidBounce script api.

Honeypot Exploration ⭐ 22

Safely explore a known honeypot contract using a forked network

Cypherpunks Ctf ⭐ 22

Cypherpunks CTF 智能合約漏洞攻擊

Exploits ⭐ 21

This repository contains multiple exploits I have written for various CVEs and CTFs

Xss Botnet ⭐ 21

A proof-of-concept for a browser-based XSS-deliverable botnet which does not exploit browser vulnerabilities but instead sticks to the standards.

Skypedestroyer ⭐ 19

TamperMonkey/GreaseMonkey addon for Skype. Exploits headers and the Skype protocol.

Related Searches

Javascript Reactjs (121,118)

Javascript Html (48,022)

Javascript Css (46,402)

Javascript Deployment (32,768)

Javascript Express (27,853)

Javascript Command Line (22,145)

Javascript Testing (21,652)

Javascript Redux (21,545)

Javascript Vue (19,769)

Javascript Mongodb (18,598)

1-30 of 30 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.