182

CVE-2017-12617 CVE-2017-12617 critical Remote Code Execution (RCE) vulnerability discovered in Apache Tomcat affect systems with HTTP PUTs enabled (via setting the "read-only" initialization parameter of the Default servlet to "fal...

168

Linux kASLR (Intel TSX/RTM) bypass static library Uses Intel TSX/RTM (Restricted Transactional Memory) cache side-channel to get the kernel offset. Usage Link libkaslr.a to your exploit and call get_kaslr_of...

125

On most unrooted, stock, Android phones, enabling tethering will run a "Provisioning Check" with your wireless provider to ensure that your data plan allows tethering. This post documents Tethr, a way to bypass the provisioning...

43

I wrote a Python script ( JSgen.py ) to generate javascript code to be injected in case you find a Server Side Javascript Injection (SSJI). It supp...

61

I think i find a way to bypass datawipe after oem unlocking on may security patch. I followed these steps: 1.Enable OEM unlocking in developer option 2. R…

40

For my new startup - Kickback - we decided to launch a static landing page as a precursor to the full product (which will be ready in...

122

README.md Bypass_Disable_functions_Shell 一个各种方式突破Disable_functions达到命令执行的shell 防御 dl,exec,system,passthru,popen,proc_o...

56

by Morten Schenk Windows 10 1809 Kernel ASLR Bypass Evolution When it is well-implemented, Kernel Address Space Layout Randomization (KASLR) makes Windows kernel exploitation extremely d...