├── .gitattributes ├── FuzzingBase ├── CFuzz.sdf ├── CFuzz.sln ├── CFuzz.v12.suo ├── CFuzz │ ├── BeaEngine.h │ ├── CCrash.cpp │ ├── CCrash.h │ ├── CDebugEventHandler.cpp │ ├── CDebugEventHandler.h │ ├── CDebugger.cpp │ ├── CDebugger.h │ ├── CDisassembler.cpp │ ├── CDisassembler.h │ ├── CFuzz.cpp │ ├── CFuzz.h │ ├── CFuzz.vcxproj │ ├── CFuzz.vcxproj.filters │ ├── CSymbols.cpp │ ├── CSymbols.h │ ├── Debug │ │ ├── CCrash.obj │ │ ├── CDebugEventHandler.obj │ │ ├── CDebugger.obj │ │ ├── CDisassembler.obj │ │ ├── CFuzz.log │ │ ├── CFuzz.obj │ │ ├── CFuzz.pch │ │ ├── CFuzz.tlog │ │ │ ├── CFuzz.lastbuildstate │ │ │ ├── CL.read.1.tlog │ │ │ ├── CL.write.1.tlog │ │ │ ├── cl.command.1.tlog │ │ │ ├── link.command.1.tlog │ │ │ ├── link.read.1.tlog │ │ │ └── link.write.1.tlog │ │ ├── CSymbols.obj │ │ ├── pugixml.obj │ │ ├── stdafx.obj │ │ ├── vc120.idb │ │ └── vc120.pdb │ ├── Includes │ │ ├── basic_types.h │ │ └── export.h │ ├── cscope.files │ ├── cscope.out │ ├── pugiconfig.hpp │ ├── pugixml.cpp │ ├── pugixml.hpp │ ├── stdafx.cpp │ ├── stdafx.h │ ├── tags │ └── targetver.h ├── Debug │ ├── BeaEngine_x64.dll │ ├── BeaEngine_x86.dll │ ├── CFuzz.exe │ ├── CFuzz.ilk │ ├── CFuzz.pdb │ └── config.xml ├── beaengine │ ├── BeaEngine.h │ └── Includes │ │ ├── basic_types.h │ │ └── export.h └── ipch │ └── cfuzz-932322b4 │ └── cfuzz-87fa781e.ipch ├── Google Acknowledgments.txt ├── Google Chrome ├── ChromeExpLib.js ├── FixedArray Spray.html ├── Google Chrome JIT Exploit Windows 7 Demo.wmv ├── Google Chrome JIT Exploit Windows 8.1 Demo.wmv ├── Google Chrome UXSS Ifr Exploit Demo.wmv ├── Google Chrome UXSS Ifr XFO Exploit Demo.wmv ├── Google Chrome UXSS Win Exploit Demo.wmv ├── Windows Heap Test.cpp └── cmExpLibExample.html ├── Internet Explorer ├── IE 11 UAF 0day Exploit Windows 7 │ ├── IE 11 UAF 0day Exploit Windows 7 Demo.jpg │ ├── IE 11 UAF 0day Exploit Windows 7 Demo.wmv │ ├── IE 11 UAF 0day@Exp Calc.html │ └── demiWin.html ├── Internet Explorer 11 Exploit Cheat Sheets │ ├── Array Spray.html │ ├── ElemPropStr Spray.html │ ├── Internet Explorer 11 Exploit Cheat Sheets.pdf │ └── VarArr & TypedArr Spray.html └── TypedArrExpLib │ ├── IE 11 Exploit Windows 8.1 Demo.wmv │ ├── TypedArrExpLib.js │ ├── calc.js │ └── tExpLibExample.html ├── Microsoft Acknowledgments.txt ├── README.md ├── Smashing The Browser - From Vulnerability Discovery To Exploit@slides.pdf ├── Smashing The Browser - From Vulnerability Discovery To Exploit@wp.pdf └── StateFuzzer ├── Plan to publish within one year └── PoC Simplify.py /.gitattributes: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/.gitattributes -------------------------------------------------------------------------------- /FuzzingBase/CFuzz.sdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz.sdf -------------------------------------------------------------------------------- /FuzzingBase/CFuzz.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz.sln -------------------------------------------------------------------------------- /FuzzingBase/CFuzz.v12.suo: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz.v12.suo -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/BeaEngine.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/BeaEngine.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CCrash.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CCrash.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CCrash.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CCrash.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CDebugEventHandler.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CDebugEventHandler.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CDebugEventHandler.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CDebugEventHandler.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CDebugger.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CDebugger.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CDebugger.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CDebugger.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CDisassembler.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CDisassembler.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CDisassembler.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CDisassembler.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CFuzz.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CFuzz.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CFuzz.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CFuzz.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CFuzz.vcxproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CFuzz.vcxproj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CFuzz.vcxproj.filters: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CFuzz.vcxproj.filters -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CSymbols.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CSymbols.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/CSymbols.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/CSymbols.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CCrash.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CCrash.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CDebugEventHandler.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CDebugEventHandler.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CDebugger.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CDebugger.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CDisassembler.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CDisassembler.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.log -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.pch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.pch -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/CFuzz.lastbuildstate: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/CFuzz.lastbuildstate -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/CL.read.1.tlog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/CL.read.1.tlog -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/CL.write.1.tlog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/CL.write.1.tlog -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/cl.command.1.tlog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/cl.command.1.tlog -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/link.command.1.tlog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/link.command.1.tlog -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/link.read.1.tlog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/link.read.1.tlog -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CFuzz.tlog/link.write.1.tlog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CFuzz.tlog/link.write.1.tlog -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/CSymbols.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/CSymbols.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/pugixml.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/pugixml.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/stdafx.obj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/stdafx.obj -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/vc120.idb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/vc120.idb -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Debug/vc120.pdb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Debug/vc120.pdb -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Includes/basic_types.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Includes/basic_types.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/Includes/export.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/Includes/export.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/cscope.files: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/cscope.files -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/cscope.out: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/cscope.out -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/pugiconfig.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/pugiconfig.hpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/pugixml.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/pugixml.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/pugixml.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/pugixml.hpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/stdafx.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/stdafx.cpp -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/stdafx.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/stdafx.h -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/tags: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/tags -------------------------------------------------------------------------------- /FuzzingBase/CFuzz/targetver.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/CFuzz/targetver.h -------------------------------------------------------------------------------- /FuzzingBase/Debug/BeaEngine_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/Debug/BeaEngine_x64.dll -------------------------------------------------------------------------------- /FuzzingBase/Debug/BeaEngine_x86.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/Debug/BeaEngine_x86.dll -------------------------------------------------------------------------------- /FuzzingBase/Debug/CFuzz.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/Debug/CFuzz.exe -------------------------------------------------------------------------------- /FuzzingBase/Debug/CFuzz.ilk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/Debug/CFuzz.ilk -------------------------------------------------------------------------------- /FuzzingBase/Debug/CFuzz.pdb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/Debug/CFuzz.pdb -------------------------------------------------------------------------------- /FuzzingBase/Debug/config.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/Debug/config.xml -------------------------------------------------------------------------------- /FuzzingBase/beaengine/BeaEngine.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/beaengine/BeaEngine.h -------------------------------------------------------------------------------- /FuzzingBase/beaengine/Includes/basic_types.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/beaengine/Includes/basic_types.h -------------------------------------------------------------------------------- /FuzzingBase/beaengine/Includes/export.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/beaengine/Includes/export.h -------------------------------------------------------------------------------- /FuzzingBase/ipch/cfuzz-932322b4/cfuzz-87fa781e.ipch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/FuzzingBase/ipch/cfuzz-932322b4/cfuzz-87fa781e.ipch -------------------------------------------------------------------------------- /Google Acknowledgments.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Acknowledgments.txt -------------------------------------------------------------------------------- /Google Chrome/ChromeExpLib.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/ChromeExpLib.js -------------------------------------------------------------------------------- /Google Chrome/FixedArray Spray.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/FixedArray Spray.html -------------------------------------------------------------------------------- /Google Chrome/Google Chrome JIT Exploit Windows 7 Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/Google Chrome JIT Exploit Windows 7 Demo.wmv -------------------------------------------------------------------------------- /Google Chrome/Google Chrome JIT Exploit Windows 8.1 Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/Google Chrome JIT Exploit Windows 8.1 Demo.wmv -------------------------------------------------------------------------------- /Google Chrome/Google Chrome UXSS Ifr Exploit Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/Google Chrome UXSS Ifr Exploit Demo.wmv -------------------------------------------------------------------------------- /Google Chrome/Google Chrome UXSS Ifr XFO Exploit Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/Google Chrome UXSS Ifr XFO Exploit Demo.wmv -------------------------------------------------------------------------------- /Google Chrome/Google Chrome UXSS Win Exploit Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/Google Chrome UXSS Win Exploit Demo.wmv -------------------------------------------------------------------------------- /Google Chrome/Windows Heap Test.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/Windows Heap Test.cpp -------------------------------------------------------------------------------- /Google Chrome/cmExpLibExample.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Google Chrome/cmExpLibExample.html -------------------------------------------------------------------------------- /Internet Explorer/IE 11 UAF 0day Exploit Windows 7/IE 11 UAF 0day Exploit Windows 7 Demo.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/IE 11 UAF 0day Exploit Windows 7/IE 11 UAF 0day Exploit Windows 7 Demo.jpg -------------------------------------------------------------------------------- /Internet Explorer/IE 11 UAF 0day Exploit Windows 7/IE 11 UAF 0day Exploit Windows 7 Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/IE 11 UAF 0day Exploit Windows 7/IE 11 UAF 0day Exploit Windows 7 Demo.wmv -------------------------------------------------------------------------------- /Internet Explorer/IE 11 UAF 0day Exploit Windows 7/IE 11 UAF 0day@Exp Calc.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/IE 11 UAF 0day Exploit Windows 7/IE 11 UAF 0day@Exp Calc.html -------------------------------------------------------------------------------- /Internet Explorer/IE 11 UAF 0day Exploit Windows 7/demiWin.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/IE 11 UAF 0day Exploit Windows 7/demiWin.html -------------------------------------------------------------------------------- /Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/Array Spray.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/Array Spray.html -------------------------------------------------------------------------------- /Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/ElemPropStr Spray.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/ElemPropStr Spray.html -------------------------------------------------------------------------------- /Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/Internet Explorer 11 Exploit Cheat Sheets.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/Internet Explorer 11 Exploit Cheat Sheets.pdf -------------------------------------------------------------------------------- /Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/VarArr & TypedArr Spray.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/Internet Explorer 11 Exploit Cheat Sheets/VarArr & TypedArr Spray.html -------------------------------------------------------------------------------- /Internet Explorer/TypedArrExpLib/IE 11 Exploit Windows 8.1 Demo.wmv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/TypedArrExpLib/IE 11 Exploit Windows 8.1 Demo.wmv -------------------------------------------------------------------------------- /Internet Explorer/TypedArrExpLib/TypedArrExpLib.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/TypedArrExpLib/TypedArrExpLib.js -------------------------------------------------------------------------------- /Internet Explorer/TypedArrExpLib/calc.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/TypedArrExpLib/calc.js -------------------------------------------------------------------------------- /Internet Explorer/TypedArrExpLib/tExpLibExample.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Internet Explorer/TypedArrExpLib/tExpLibExample.html -------------------------------------------------------------------------------- /Microsoft Acknowledgments.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Microsoft Acknowledgments.txt -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/README.md -------------------------------------------------------------------------------- /Smashing The Browser - From Vulnerability Discovery To Exploit@slides.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Smashing The Browser - From Vulnerability Discovery To Exploit@slides.pdf -------------------------------------------------------------------------------- /Smashing The Browser - From Vulnerability Discovery To Exploit@wp.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/Smashing The Browser - From Vulnerability Discovery To Exploit@wp.pdf -------------------------------------------------------------------------------- /StateFuzzer/Plan to publish within one year: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /StateFuzzer/PoC Simplify.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/demi6od/Smashing_The_Browser/HEAD/StateFuzzer/PoC Simplify.py --------------------------------------------------------------------------------