Cookie-Monster - BOF To Steal Browser Cookies & Credentials

Steal browser cookies for edge, chrome and firefox through a BOF or exe! Cookie-Monster will extract the WebKit master key, locate a browser process with a handle to the Cookies and Login Data files, copy the handles and then filelessly download the target. Once the Cookies/Login Data files are...

CVE-2022-22750

By generally accepting and passing resource handles across processes, a compromised content process might have confused higher privileged processes to interact with handles that the unprivileged process should not have access to.This bug only affects Firefox for Windows and MacOS. Other operating...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a security vulnerability that arises from software that commonly accepts and passes resource handles between processes, whereby a compromised content process may confuse a...

FindObjects-BOF - A Cobalt Strike Beacon Object File (BOF) Project Which Uses Direct System Calls To Enumerate Processes For Specific Loaded Modules Or Process Handles

A Cobalt Strike Beacon Object File BOF project which uses direct system calls to enumerate processes for specific modules or process handles. What is this repository for? Use direct systems calls within Beacon Object files to enumerate processes for specific loaded modules e.g. winhttp.dll,...

Symantec Endpoint Protection 11.x, 12.x - Kernel Pool Overflow Exploit

Exploit for windows platform in category local exploits from ctypes import from ctypes.wintypes import import struct, sys, os, time ntdll = windll.ntdll kernel32 = windll.kernel32 TH32CSSNAPPROCESS = 0x02 PROCESSALLACCESS = 0x1fffff FORMATMESSAGEFROMSYSTEM = 0x00001000 NULL = 0x0 MEMCOMMIT =...

Bakbone Netvault privilege escalation

Hidden windows of local system process handles user's messages...