Skip to content

README.md

Latest commit

 

History

History
23 lines (21 loc) · 2.17 KB

README.md

File metadata and controls

23 lines (21 loc) · 2.17 KB

Exploits

Repository of exploits for 0day/Nday vulnerabilties I have either researched or discovered

Vulnerabilities

CVE Credit Exploit type Bug info Target
CVE-2023-32402 @ulexec OOB An out-of-bounds read was addressed with improved input validation WebKit
CVE-2023-32423 @ulexec OOB A buffer overflow issue was addressed with improved memory handling WebKit
CVE-2021-40444 @ShadowChasing1 (ITW samples) RCE MSHTML RCE via arbitrary ActiveX Control Installation Trident
CVE-2020-6418 @HawaiiFive0day RCE TurboFan type-confusion side-effect V8
CVE-2020-6418 - RCE TurboFan type-confusion side-effect (pointer compression enabled) V8
CVE-2020-6383 - RCE TurboFan incorrect type-inference V8
CVE-2019-9791 @5aelo RCE IonMonkey incorrect type-inference SpiderMonkey

CTF

Organization Name Learning task Bug class Exploit type Target
*CTF 2019 oob-v8 type-confusion OOB RCE V8
DownUnderCTF2020 is-this-pwn-or-web pointer compression + type-confusion OOB RCE V8
BlazeCTF2019 blazefox abusing typed-arrays + control-flow-hijacking OOB RCE SpiderMonkey
0CTF2020 Chrome RCE v8 standalone uses glibc malloc + Intro to Chrome fullchain UAF RCE V8
HTBFinals2020 pwn_baby_beta_driver kernel exploitation basics (SMEP+SMAP+KASLR) Stack Overflow LPE Linux
HTB2020 ModernTyper Intro to TurboFan and Typer bugs OOB RCE V8