CVE-2014-0282

👋🏼 About my Sponsor Program

Hi 👋🏼 It's nice to have you here and thanks for sponsoring! Your sponsorships are meaning a lot to me as them support me focusing on maintaining my projects and dreaming up new ideas instead of worrying much about money In this GitHub Sponsor Program, I have several private working-in-progress projects that sponsors reaching certain tiers can have early access to t

Web application security project to deliver Javascript exploits in steganographically encoded JPG and PNG files

python-stegosploit How Stegosploit Works The exploit code is inserted within the pixels of the image so that the image contains the exploit code IMAJS then creates a polyglot image that will be read as an image and contains a decoder that will extract and run the javascript exploit The exploit that we will use is an Internet Explorer Use-after-free exploit (CVE-2014-0282) W

PoC - Exploit Delivery via Steganography and Polyglots, CVE-2014-0282

PyStegosploit - Exploit Delivery via Steganography and Polyglots [video1] | [video2] | [page] by Charmve - yidazhang1 [at] gmail[dot]com, @Charmve @therealsaumil @amichael May 2021 Stegosploit creates a new way to encode "drive-by" browser exploits and deliver them through image files These payloads are undetectable using current means This paper discusses two br

Python port of stegosploit toolkit

python-stegosploit How Stegosploit Works The exploit code is inserted within the pixels of the image so that the image contains the exploit code IMAJS then creates a polyglot image that will be read as an image and contains a decoder that will extract and run the javascript exploit The exploit that we will use is an Internet Explorer Use-after-free exploit (CVE-2014-0282) W