GitHub - niklasb/3dpwn: VirtualBox 3D exploits & PoCs
source link: https://github.com/niklasb/3dpwn
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.md
VirtualBox 3D PoCs & exploits
Author: @_niklasb
Exploits
See the subdirectories other than lib.
Debug build
For Arch Linux, you can use the provided PKGBUILD in archpkg to get a debug version of
5.2.18, with the 3D security fixes from July 2018 reverted.
Library
lib/hgcm.py and lib/chromium.py provide high-level access to the HGCM interface and
to the VBoxSharedCrOpenGL service, via VBoxGuest IOCTLs.
chromium.py can be used to very easily experiment with Chromium from Python
inside the guest. I used it to build a very simple, completely dumb fuzzer that
found multiple trivial crashes in minutes.
Recommend
-
180
windows-kernel-exploits windows-kernel-exploits #Security Bulletin #KB #Description #Operating System CVE-2021-33739 [...
-
165
linux-kernel-exploits linux-kernel-exploits #CVE #Description #Kernels CVE–2018–18955...
-
128
Files Permalink Latest commit message...
-
130
CVE-2017-11882 CVE-2017-11882: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11882 MITRE...
-
77
README.md exploits
-
77
README.md VirtualBox CVE-2018-2860
-
81
-
13
-
16
Three PoCs from CPUjul201219-Jul-2012: Three PoCs from CPUjul2012 These PoCs (proof-of-concept) I made while discovering Oracle NA (network authorization) packet structure... CVE-2012-1745 and CVE-2012-1746 are just DoSs (de...
-
6
Datadog Security Labs Research and Proof of Concept Code This repository contains information, exploits, and scripts from Datadog Security Labs. This repository aims at providing proof of concept exploits and technical demos...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK