├── .gitignore ├── LICENSE ├── README.md ├── docs ├── demo.mp4 ├── features.md └── third-party.md ├── index.html ├── main.js ├── requirements.txt ├── rwx ├── helpers │ ├── cages-getrwx.js │ ├── chrome-cages.js │ ├── partitionalloc-chrome.js │ ├── rwx-chrome.js │ └── trusted-rwx.js ├── memory.js ├── shellcodes.js └── src │ ├── call_native_function.asm │ ├── get_base_addr.asm │ ├── get_base_addr_compact.asm │ ├── get_export_addr.asm │ └── stage0.asm ├── sbx ├── fingerprint.js └── mojo.js ├── server.py ├── static ├── .gitkeep └── CVE-2024-11114 │ ├── calc.cpp │ ├── putty.exe │ └── winspool.drv ├── tools ├── build.py ├── copy_mojo.py ├── download.py └── symbols.py ├── utils ├── symbols.js ├── utils.js └── wasm-module-builder.js ├── v8 ├── cage.js └── helpers.js └── vulns ├── memcor ├── CVE-2024-7971.js ├── CVE-2025-0291.js ├── CVE-2025-2135.js └── CVE-2025-5419.js ├── sbx └── CVE-2024-11114.js └── v8sbx ├── 352689356.js ├── 379140430.js ├── 395659804.js └── 421403261.js /.gitignore: -------------------------------------------------------------------------------- 1 | private -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/README.md -------------------------------------------------------------------------------- /docs/demo.mp4: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/docs/demo.mp4 -------------------------------------------------------------------------------- /docs/features.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/docs/features.md -------------------------------------------------------------------------------- /docs/third-party.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/docs/third-party.md -------------------------------------------------------------------------------- /index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/index.html -------------------------------------------------------------------------------- /main.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/main.js -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/requirements.txt -------------------------------------------------------------------------------- /rwx/helpers/cages-getrwx.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/helpers/cages-getrwx.js -------------------------------------------------------------------------------- /rwx/helpers/chrome-cages.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/helpers/chrome-cages.js -------------------------------------------------------------------------------- /rwx/helpers/partitionalloc-chrome.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/helpers/partitionalloc-chrome.js -------------------------------------------------------------------------------- /rwx/helpers/rwx-chrome.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/helpers/rwx-chrome.js -------------------------------------------------------------------------------- /rwx/helpers/trusted-rwx.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/helpers/trusted-rwx.js -------------------------------------------------------------------------------- /rwx/memory.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/memory.js -------------------------------------------------------------------------------- /rwx/shellcodes.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/shellcodes.js -------------------------------------------------------------------------------- /rwx/src/call_native_function.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/src/call_native_function.asm -------------------------------------------------------------------------------- /rwx/src/get_base_addr.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/src/get_base_addr.asm -------------------------------------------------------------------------------- /rwx/src/get_base_addr_compact.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/src/get_base_addr_compact.asm -------------------------------------------------------------------------------- /rwx/src/get_export_addr.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/src/get_export_addr.asm -------------------------------------------------------------------------------- /rwx/src/stage0.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/rwx/src/stage0.asm -------------------------------------------------------------------------------- /sbx/fingerprint.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/sbx/fingerprint.js -------------------------------------------------------------------------------- /sbx/mojo.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/sbx/mojo.js -------------------------------------------------------------------------------- /server.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/server.py -------------------------------------------------------------------------------- /static/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /static/CVE-2024-11114/calc.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/static/CVE-2024-11114/calc.cpp -------------------------------------------------------------------------------- /static/CVE-2024-11114/putty.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/static/CVE-2024-11114/putty.exe -------------------------------------------------------------------------------- /static/CVE-2024-11114/winspool.drv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/static/CVE-2024-11114/winspool.drv -------------------------------------------------------------------------------- /tools/build.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/tools/build.py -------------------------------------------------------------------------------- /tools/copy_mojo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/tools/copy_mojo.py -------------------------------------------------------------------------------- /tools/download.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/tools/download.py -------------------------------------------------------------------------------- /tools/symbols.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/tools/symbols.py -------------------------------------------------------------------------------- /utils/symbols.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/utils/symbols.js -------------------------------------------------------------------------------- /utils/utils.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/utils/utils.js -------------------------------------------------------------------------------- /utils/wasm-module-builder.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/utils/wasm-module-builder.js -------------------------------------------------------------------------------- /v8/cage.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/v8/cage.js -------------------------------------------------------------------------------- /v8/helpers.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/v8/helpers.js -------------------------------------------------------------------------------- /vulns/memcor/CVE-2024-7971.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/memcor/CVE-2024-7971.js -------------------------------------------------------------------------------- /vulns/memcor/CVE-2025-0291.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/memcor/CVE-2025-0291.js -------------------------------------------------------------------------------- /vulns/memcor/CVE-2025-2135.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/memcor/CVE-2025-2135.js -------------------------------------------------------------------------------- /vulns/memcor/CVE-2025-5419.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/memcor/CVE-2025-5419.js -------------------------------------------------------------------------------- /vulns/sbx/CVE-2024-11114.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/sbx/CVE-2024-11114.js -------------------------------------------------------------------------------- /vulns/v8sbx/352689356.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/v8sbx/352689356.js -------------------------------------------------------------------------------- /vulns/v8sbx/379140430.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/v8sbx/379140430.js -------------------------------------------------------------------------------- /vulns/v8sbx/395659804.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/v8sbx/395659804.js -------------------------------------------------------------------------------- /vulns/v8sbx/421403261.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Petitoto/chromium-exploit-dev/HEAD/vulns/v8sbx/421403261.js --------------------------------------------------------------------------------