├── CTFs ├── asisctf2022finals │ └── pwn_jry ├── bi0s-2022 │ └── pwn_b3typer ├── cyber_apocalypse-2022 │ └── blockchain │ │ ├── navigating_the_unknown │ │ ├── Setup.sol │ │ ├── Unknown.sol │ │ ├── exploit.py │ │ ├── setup_abi.json │ │ └── unknown_abi.json │ │ ├── shooting_101 │ │ ├── Setup.sol │ │ ├── ShootingArea.sol │ │ ├── exploit.py │ │ ├── setup_abi.json │ │ └── shootingArea_abi.json │ │ └── the_art_of_deception │ │ ├── FortifiedPerimeter.sol │ │ ├── Setup.sol │ │ ├── badContract.sol │ │ ├── exploit.py │ │ ├── highSecurityGate_abi.json │ │ └── setup_abi.json ├── google-ctf2023 │ ├── pwn_storygen │ │ └── exploit.py │ ├── pwn_watthewasm │ └── pwn_write-flag-where1,2,3 │ │ ├── README.md │ │ ├── write-flag-where.py │ │ ├── write-flag-where2.py │ │ └── write-flag-where3.py └── rwctf2023 │ └── pwn_NonHeavyFTP │ ├── README.md │ ├── assets │ ├── Dockerfile │ ├── fftp.conf │ └── flag │ └── exploit.py ├── README.md ├── browser ├── README.md ├── asm_to_float.py ├── blink │ └── cve-2024-1283 │ │ ├── README.md │ │ ├── calc.png │ │ ├── exploit.html │ │ ├── overflow.png │ │ └── redirect-flow.png ├── browser_useful.js ├── javascriptcore │ └── b3typer │ │ ├── README.md │ │ ├── debug.patch │ │ ├── exploit.js │ │ └── release.patch ├── jerryscript │ └── jry │ │ ├── README.md │ │ └── exploit.js ├── mojo │ └── fourchain-sandbox │ │ ├── README.md │ │ └── index.html ├── mujs │ ├── js_for_dummies-p1 │ │ ├── README.md │ │ └── js_for_dummies-p1.js │ └── js_for_dummies-p2 │ │ ├── README.md │ │ └── js_for_dummies-p2.js ├── spidermonkey │ ├── midenios │ │ ├── README.md │ │ └── midenios.js │ └── outfoxed │ │ ├── README.md │ │ └── exploit.js ├── v8 │ ├── cve-2021-21220 │ │ ├── README.md │ │ └── pwn.html │ ├── cve-2023-3079 │ │ ├── Makefile │ │ ├── README.md │ │ ├── exploit.js │ │ └── exploit.wat │ ├── hole │ │ ├── README.md │ │ └── hole.js │ ├── modern_typer │ │ ├── README.md │ │ └── modern_typer.js │ ├── rope2 │ │ ├── README.md │ │ └── rope2.js │ ├── turboflan │ │ ├── README.md │ │ └── exploit.js │ ├── v8-sandbox-escape │ │ ├── Makefile │ │ ├── README.md │ │ ├── exploit.js │ │ └── exploit.wat │ ├── v9 │ │ ├── README.md │ │ └── exploit.js │ └── watthewasm │ │ ├── README.md │ │ ├── challenge.patch │ │ └── exploit.wat └── wasm_asm_to_float.py ├── helps ├── README.md └── kernel-sizeof │ ├── Makefile │ ├── README.md │ └── get-offset.c ├── kernel ├── README.md ├── cve-2022-0185 │ ├── Makefile │ ├── README.md │ ├── config │ ├── exploit.c │ ├── initramfs.cpio.gz │ └── run.sh ├── fire-of-salvation │ ├── README.md │ ├── exploit.c │ └── userfaultfd.h ├── kernel-rop │ ├── README.md │ ├── kpti.c │ ├── modprobe_path.c │ ├── ret2usr.c │ ├── smep.c │ └── stack.c ├── knote │ ├── README.md │ └── exploit.c └── wall-of-perdition │ ├── README.md │ ├── exploit.c │ └── userfaultfd.h └── userland ├── 32b_stack.py ├── README.md ├── heap └── df_fastbin_dup.py ├── jop.py ├── pie_bypass.py ├── readable-v2 ├── Dockerfile ├── build-dockerfile.sh ├── deploy.py ├── exploit.c ├── exploit.py └── sources │ ├── readme.c │ ├── run.c │ └── seccomp-bpf.h ├── ret2dlResolve.py ├── ret2libc.py ├── srop.py └── utils_leak_stack.py /CTFs/asisctf2022finals/pwn_jry: -------------------------------------------------------------------------------- 1 | ../../browser/jerryscript/jry -------------------------------------------------------------------------------- /CTFs/bi0s-2022/pwn_b3typer: -------------------------------------------------------------------------------- 1 | ../../browser/javascriptcore/b3typer -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/Setup.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/Setup.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/Unknown.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/Unknown.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/exploit.py -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/setup_abi.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/setup_abi.json -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/unknown_abi.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/navigating_the_unknown/unknown_abi.json -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/shooting_101/Setup.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/shooting_101/Setup.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/shooting_101/ShootingArea.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/shooting_101/ShootingArea.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/shooting_101/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/shooting_101/exploit.py -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/shooting_101/setup_abi.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/shooting_101/setup_abi.json -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/shooting_101/shootingArea_abi.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/shooting_101/shootingArea_abi.json -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/FortifiedPerimeter.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/FortifiedPerimeter.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/Setup.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/Setup.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/badContract.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/badContract.sol -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/exploit.py -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/highSecurityGate_abi.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/highSecurityGate_abi.json -------------------------------------------------------------------------------- /CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/setup_abi.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/cyber_apocalypse-2022/blockchain/the_art_of_deception/setup_abi.json -------------------------------------------------------------------------------- /CTFs/google-ctf2023/pwn_storygen/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/google-ctf2023/pwn_storygen/exploit.py -------------------------------------------------------------------------------- /CTFs/google-ctf2023/pwn_watthewasm: -------------------------------------------------------------------------------- 1 | ../../browser/v8/watthewasm -------------------------------------------------------------------------------- /CTFs/google-ctf2023/pwn_write-flag-where1,2,3/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/google-ctf2023/pwn_write-flag-where1,2,3/README.md -------------------------------------------------------------------------------- /CTFs/google-ctf2023/pwn_write-flag-where1,2,3/write-flag-where.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/google-ctf2023/pwn_write-flag-where1,2,3/write-flag-where.py -------------------------------------------------------------------------------- /CTFs/google-ctf2023/pwn_write-flag-where1,2,3/write-flag-where2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/google-ctf2023/pwn_write-flag-where1,2,3/write-flag-where2.py -------------------------------------------------------------------------------- /CTFs/google-ctf2023/pwn_write-flag-where1,2,3/write-flag-where3.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/google-ctf2023/pwn_write-flag-where1,2,3/write-flag-where3.py -------------------------------------------------------------------------------- /CTFs/rwctf2023/pwn_NonHeavyFTP/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/rwctf2023/pwn_NonHeavyFTP/README.md -------------------------------------------------------------------------------- /CTFs/rwctf2023/pwn_NonHeavyFTP/assets/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/rwctf2023/pwn_NonHeavyFTP/assets/Dockerfile -------------------------------------------------------------------------------- /CTFs/rwctf2023/pwn_NonHeavyFTP/assets/fftp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/rwctf2023/pwn_NonHeavyFTP/assets/fftp.conf -------------------------------------------------------------------------------- /CTFs/rwctf2023/pwn_NonHeavyFTP/assets/flag: -------------------------------------------------------------------------------- 1 | rwctf{race-c0nd1tion-1s-real1y_ha4d_pr0blem!!!} 2 | -------------------------------------------------------------------------------- /CTFs/rwctf2023/pwn_NonHeavyFTP/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/CTFs/rwctf2023/pwn_NonHeavyFTP/exploit.py -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/README.md -------------------------------------------------------------------------------- /browser/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/README.md -------------------------------------------------------------------------------- /browser/asm_to_float.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/asm_to_float.py -------------------------------------------------------------------------------- /browser/blink/cve-2024-1283/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/blink/cve-2024-1283/README.md -------------------------------------------------------------------------------- /browser/blink/cve-2024-1283/calc.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/blink/cve-2024-1283/calc.png -------------------------------------------------------------------------------- /browser/blink/cve-2024-1283/exploit.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/blink/cve-2024-1283/exploit.html -------------------------------------------------------------------------------- /browser/blink/cve-2024-1283/overflow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/blink/cve-2024-1283/overflow.png -------------------------------------------------------------------------------- /browser/blink/cve-2024-1283/redirect-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/blink/cve-2024-1283/redirect-flow.png -------------------------------------------------------------------------------- /browser/browser_useful.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/browser_useful.js -------------------------------------------------------------------------------- /browser/javascriptcore/b3typer/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/javascriptcore/b3typer/README.md -------------------------------------------------------------------------------- /browser/javascriptcore/b3typer/debug.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/javascriptcore/b3typer/debug.patch -------------------------------------------------------------------------------- /browser/javascriptcore/b3typer/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/javascriptcore/b3typer/exploit.js -------------------------------------------------------------------------------- /browser/javascriptcore/b3typer/release.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/javascriptcore/b3typer/release.patch -------------------------------------------------------------------------------- /browser/jerryscript/jry/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/jerryscript/jry/README.md -------------------------------------------------------------------------------- /browser/jerryscript/jry/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/jerryscript/jry/exploit.js -------------------------------------------------------------------------------- /browser/mojo/fourchain-sandbox/README.md: -------------------------------------------------------------------------------- 1 | # Hitcon CTF 2022 - Fourchain - Sandbox -------------------------------------------------------------------------------- /browser/mojo/fourchain-sandbox/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/mojo/fourchain-sandbox/index.html -------------------------------------------------------------------------------- /browser/mujs/js_for_dummies-p1/README.md: -------------------------------------------------------------------------------- 1 | # Zh3r0 CTF V2 - Javascript for Dummies Part 1 -------------------------------------------------------------------------------- /browser/mujs/js_for_dummies-p1/js_for_dummies-p1.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/mujs/js_for_dummies-p1/js_for_dummies-p1.js -------------------------------------------------------------------------------- /browser/mujs/js_for_dummies-p2/README.md: -------------------------------------------------------------------------------- 1 | # Zh3r0 CTF V2 - Javascript for Dummies Part 2 -------------------------------------------------------------------------------- /browser/mujs/js_for_dummies-p2/js_for_dummies-p2.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/mujs/js_for_dummies-p2/js_for_dummies-p2.js -------------------------------------------------------------------------------- /browser/spidermonkey/midenios/README.md: -------------------------------------------------------------------------------- 1 | # HackTheBox Business-CTF - Midenios 2 | -------------------------------------------------------------------------------- /browser/spidermonkey/midenios/midenios.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/spidermonkey/midenios/midenios.js -------------------------------------------------------------------------------- /browser/spidermonkey/outfoxed/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/spidermonkey/outfoxed/README.md -------------------------------------------------------------------------------- /browser/spidermonkey/outfoxed/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/spidermonkey/outfoxed/exploit.js -------------------------------------------------------------------------------- /browser/v8/cve-2021-21220/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/cve-2021-21220/README.md -------------------------------------------------------------------------------- /browser/v8/cve-2021-21220/pwn.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/cve-2021-21220/pwn.html -------------------------------------------------------------------------------- /browser/v8/cve-2023-3079/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/cve-2023-3079/Makefile -------------------------------------------------------------------------------- /browser/v8/cve-2023-3079/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/cve-2023-3079/README.md -------------------------------------------------------------------------------- /browser/v8/cve-2023-3079/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/cve-2023-3079/exploit.js -------------------------------------------------------------------------------- /browser/v8/cve-2023-3079/exploit.wat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/cve-2023-3079/exploit.wat -------------------------------------------------------------------------------- /browser/v8/hole/README.md: -------------------------------------------------------------------------------- 1 | # Hitcon CTF 2022 - Fourchain - Hole -------------------------------------------------------------------------------- /browser/v8/hole/hole.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/hole/hole.js -------------------------------------------------------------------------------- /browser/v8/modern_typer/README.md: -------------------------------------------------------------------------------- 1 | # Modern Typer - HackTheBox Challenge 2 | -------------------------------------------------------------------------------- /browser/v8/modern_typer/modern_typer.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/modern_typer/modern_typer.js -------------------------------------------------------------------------------- /browser/v8/rope2/README.md: -------------------------------------------------------------------------------- 1 | # Rope2 v8 exploit - HackTheBox Machine 2 | -------------------------------------------------------------------------------- /browser/v8/rope2/rope2.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/rope2/rope2.js -------------------------------------------------------------------------------- /browser/v8/turboflan/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/turboflan/README.md -------------------------------------------------------------------------------- /browser/v8/turboflan/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/turboflan/exploit.js -------------------------------------------------------------------------------- /browser/v8/v8-sandbox-escape/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/v8-sandbox-escape/Makefile -------------------------------------------------------------------------------- /browser/v8/v8-sandbox-escape/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/v8-sandbox-escape/README.md -------------------------------------------------------------------------------- /browser/v8/v8-sandbox-escape/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/v8-sandbox-escape/exploit.js -------------------------------------------------------------------------------- /browser/v8/v8-sandbox-escape/exploit.wat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/v8-sandbox-escape/exploit.wat -------------------------------------------------------------------------------- /browser/v8/v9/README.md: -------------------------------------------------------------------------------- 1 | # 34C3 CTF - v9 -------------------------------------------------------------------------------- /browser/v8/v9/exploit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/v9/exploit.js -------------------------------------------------------------------------------- /browser/v8/watthewasm/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/watthewasm/README.md -------------------------------------------------------------------------------- /browser/v8/watthewasm/challenge.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/watthewasm/challenge.patch -------------------------------------------------------------------------------- /browser/v8/watthewasm/exploit.wat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/v8/watthewasm/exploit.wat -------------------------------------------------------------------------------- /browser/wasm_asm_to_float.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/browser/wasm_asm_to_float.py -------------------------------------------------------------------------------- /helps/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/helps/README.md -------------------------------------------------------------------------------- /helps/kernel-sizeof/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/helps/kernel-sizeof/Makefile -------------------------------------------------------------------------------- /helps/kernel-sizeof/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/helps/kernel-sizeof/README.md -------------------------------------------------------------------------------- /helps/kernel-sizeof/get-offset.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/helps/kernel-sizeof/get-offset.c -------------------------------------------------------------------------------- /kernel/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/README.md -------------------------------------------------------------------------------- /kernel/cve-2022-0185/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/cve-2022-0185/Makefile -------------------------------------------------------------------------------- /kernel/cve-2022-0185/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/cve-2022-0185/README.md -------------------------------------------------------------------------------- /kernel/cve-2022-0185/config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/cve-2022-0185/config -------------------------------------------------------------------------------- /kernel/cve-2022-0185/exploit.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/cve-2022-0185/exploit.c -------------------------------------------------------------------------------- /kernel/cve-2022-0185/initramfs.cpio.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/cve-2022-0185/initramfs.cpio.gz -------------------------------------------------------------------------------- /kernel/cve-2022-0185/run.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/cve-2022-0185/run.sh -------------------------------------------------------------------------------- /kernel/fire-of-salvation/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/fire-of-salvation/README.md -------------------------------------------------------------------------------- /kernel/fire-of-salvation/exploit.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/fire-of-salvation/exploit.c -------------------------------------------------------------------------------- /kernel/fire-of-salvation/userfaultfd.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/fire-of-salvation/userfaultfd.h -------------------------------------------------------------------------------- /kernel/kernel-rop/README.md: -------------------------------------------------------------------------------- 1 | # hxpCTF 2020 - kernel-rop 2 | -------------------------------------------------------------------------------- /kernel/kernel-rop/kpti.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/kernel-rop/kpti.c -------------------------------------------------------------------------------- /kernel/kernel-rop/modprobe_path.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/kernel-rop/modprobe_path.c -------------------------------------------------------------------------------- /kernel/kernel-rop/ret2usr.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/kernel-rop/ret2usr.c -------------------------------------------------------------------------------- /kernel/kernel-rop/smep.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/kernel-rop/smep.c -------------------------------------------------------------------------------- /kernel/kernel-rop/stack.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/kernel-rop/stack.c -------------------------------------------------------------------------------- /kernel/knote/README.md: -------------------------------------------------------------------------------- 1 | # HackTheBox Challenge - knote 2 | -------------------------------------------------------------------------------- /kernel/knote/exploit.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/knote/exploit.c -------------------------------------------------------------------------------- /kernel/wall-of-perdition/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/wall-of-perdition/README.md -------------------------------------------------------------------------------- /kernel/wall-of-perdition/exploit.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/wall-of-perdition/exploit.c -------------------------------------------------------------------------------- /kernel/wall-of-perdition/userfaultfd.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/kernel/wall-of-perdition/userfaultfd.h -------------------------------------------------------------------------------- /userland/32b_stack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/32b_stack.py -------------------------------------------------------------------------------- /userland/README.md: -------------------------------------------------------------------------------- 1 | # Userland 2 | 3 | Collection of generic exploits and some heap stuff -------------------------------------------------------------------------------- /userland/heap/df_fastbin_dup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/heap/df_fastbin_dup.py -------------------------------------------------------------------------------- /userland/jop.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/jop.py -------------------------------------------------------------------------------- /userland/pie_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/pie_bypass.py -------------------------------------------------------------------------------- /userland/readable-v2/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/Dockerfile -------------------------------------------------------------------------------- /userland/readable-v2/build-dockerfile.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/build-dockerfile.sh -------------------------------------------------------------------------------- /userland/readable-v2/deploy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/deploy.py -------------------------------------------------------------------------------- /userland/readable-v2/exploit.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/exploit.c -------------------------------------------------------------------------------- /userland/readable-v2/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/exploit.py -------------------------------------------------------------------------------- /userland/readable-v2/sources/readme.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/sources/readme.c -------------------------------------------------------------------------------- /userland/readable-v2/sources/run.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/sources/run.c -------------------------------------------------------------------------------- /userland/readable-v2/sources/seccomp-bpf.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/readable-v2/sources/seccomp-bpf.h -------------------------------------------------------------------------------- /userland/ret2dlResolve.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/ret2dlResolve.py -------------------------------------------------------------------------------- /userland/ret2libc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/ret2libc.py -------------------------------------------------------------------------------- /userland/srop.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/srop.py -------------------------------------------------------------------------------- /userland/utils_leak_stack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/R3tr074/exploits/HEAD/userland/utils_leak_stack.py --------------------------------------------------------------------------------