CVE-2014-0282

PoC - Exploit Delivery via Steganography and Polyglots, CVE-2014-0282

PyStegosploit - Exploit Delivery via Steganography and Polyglots [video1] | [video2] | [page] by Charmve - yidazhang1 [at] gmail[dot]com, @Charmve @therealsaumil @amichael May 2021 Stegosploit creates a new way to encode "drive-by" browser exploits and deliver them through image files These payloads are undetectable using current means This paper discusses two br

Web application security project to deliver Javascript exploits in steganographically encoded JPG and PNG files

python-stegosploit How Stegosploit Works The exploit code is inserted within the pixels of the image so that the image contains the exploit code IMAJS then creates a polyglot image that will be read as an image and contains a decoder that will extract and run the javascript exploit The exploit that we will use is an Internet Explorer Use-after-free exploit (CVE-2014-0282) W

👋🏼 About my Sponsor Program

Hi 👋🏼 It's nice to have you here and thanks for sponsoring! Your sponsorships are meaning a lot to me as them support me focusing on maintaining my projects and dreaming up new ideas instead of worrying much about money In this GitHub Sponsor Program, I have several private working-in-progress projects that sponsors reaching certain tiers can have early access to t

Python port of stegosploit toolkit

python-stegosploit How Stegosploit Works The exploit code is inserted within the pixels of the image so that the image contains the exploit code IMAJS then creates a polyglot image that will be read as an image and contains a decoder that will extract and run the javascript exploit The exploit that we will use is an Internet Explorer Use-after-free exploit (CVE-2014-0282) W