0vercl0k / Blazefox
Licence: mit
Blazefox exploits for Windows 10 RS5 64-bit.
Stars: ✭ 134
Labels
Projects that are alternatives of or similar to Blazefox
Cve 2019 9810
Exploit for CVE-2019-9810 Firefox on Windows 64-bit.
Stars: ✭ 200 (+49.25%)
Mutual labels: exploitation, firefox
Cve 2019 11708
Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.
Stars: ✭ 581 (+333.58%)
Mutual labels: exploitation, firefox
Kdeconnect Chrome Extension
A browser extension to send pages and content from your browser to connected KDE Connect devices.
Stars: ✭ 124 (-7.46%)
Mutual labels: firefox
Awesome Arm Exploitation
A collection of awesome videos, articles, books and resources about ARM exploitation.
Stars: ✭ 125 (-6.72%)
Mutual labels: exploitation
Web Ext Types
TypeScript type definitions for Firefox WebExtensions
Stars: ✭ 127 (-5.22%)
Mutual labels: firefox
Multi Account Containers
Firefox Multi-Account Containers lets you keep parts of your online life separated into color-coded tabs that preserve your privacy. Cookies are separated by container, allowing you to use the web with multiple identities or accounts simultaneously.
Stars: ✭ 1,893 (+1312.69%)
Mutual labels: firefox
Isoalloc
A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good performance
Stars: ✭ 130 (-2.99%)
Mutual labels: exploitation
Blocker Database
A global domain based database for NoScript, uBlock, uMatrix & ScriptSafe
Stars: ✭ 127 (-5.22%)
Mutual labels: firefox
Swift Selection Search
Swift Selection Search (SSS) is a simple Firefox add-on that lets you quickly search for some text in a page using your favorite search engines.
Stars: ✭ 125 (-6.72%)
Mutual labels: firefox
Poc T
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Stars: ✭ 1,722 (+1185.07%)
Mutual labels: exploitation
Pakuri
Penetration test Achieve Knowledge Unite Rapid Interface
Stars: ✭ 125 (-6.72%)
Mutual labels: exploitation
Lockbox Extension
Experimental Firefox extension for login management experiences, not being actively developed
Stars: ✭ 130 (-2.99%)
Mutual labels: firefox
Windows Ad Environment Related
This Repository contains the stuff related to windows Active directory environment exploitation
Stars: ✭ 123 (-8.21%)
Mutual labels: exploitation
Browser Media Keys
Lets you control many web players using the media keys on your keyboard.
Stars: ✭ 125 (-6.72%)
Mutual labels: firefox
Awesome Rss
Puts an RSS/Atom subscribe button back in URL bar
Stars: ✭ 125 (-6.72%)
Mutual labels: firefox
Blazefox exploits for Windows 10 RS5 64-bit
This the repository associated with the article Introduction to SpiderMonkey exploitation.
Overview
Blazefox is an exploitation challenge written by itszn for Blaze CTF 2018. The author added a blaze method to JavaScript Arrays that sets the size of the backing buffer to 420. This gives the attacker an out-of-bounds memory primitive.
Organization
- Three exploits are documented and available in exploits,
- A WindDbg JavaScript extension that allows to dump
js::ValueandJSObjectobjects in sm, - Various scripts built during the research in scripts,
- An x64 debug build of the JavaScript shell (along private symbol information) in js-asserts, and an x64 release build in js-release,
- The sources matching js-release private symbol information in src/js,
- Last but not least, 7z archives of the Firefox binaries (along with
xul.dllprivate symbol information) I compiled for Windows 64-bit in ff-bin.7z.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].