ChiChou/sploits ChiChou/sploits

  • Stars
    star
    211
  • Rank 185,818 (Top 4 %)
  • Language
    Objective-C
  • Created over 5 years ago
  • Updated over 3 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ChiChou/sploits
github

ChiChou

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

PoC

sploits

  • CVE-2018-4310 MediaRemote: An access issue was addressed with additional sandbox restrictions

  • CVE-2018-4991 Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper certificate validation vulnerability. Successful exploitation could lead to a security bypass

  • CVE-2018-8412 An elevation of privilege vulnerability exists when the Microsoft AutoUpdate (MAU) application for Mac improperly validates updates before executing them, aka "Microsoft (MAU) Office Elevation of Privilege Vulnerability." This affects Microsoft Office

  • CVE-2019-8513 TimeMachine: A local user may be able to execute arbitrary shell commands

  • CVE-2019-8530 XPC: A malicious application may be able to overwrite arbitrary files

  • CVE-2019-8521 Feedback Assistant: A malicious application may be able to overwrite arbitrary files

  • CVE-2019-8565 Feedback Assistant: A malicious application may be able to gain root privileges

  • ModJack Root to kernel privilege escalation on macOS 10.13.x. No CVE assigned.

  • CVE-2020-9979 Assets: An attacker may be able to misuse a trust relationship to download malicious content

More Repositories

1

bagbak

Yet another frida based iOS dumpdecrypted. Also decrypts app extensions
JavaScript
1,011
star
2

grapefruit

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit
TypeScript
779
star
3

vscode-frida

Unofficial frida extension for VSCode
TypeScript
447
star
4

GlobalWebInspect

Enable WebView remote inspector for every app
Logos
232
star
5

gossip-summer-school-2018

Source code repo for Let's GOSSIP summer school 2018
C
155
star
6

IDA-ObjCExplorer

Objective C classdump for IDA Pro
Python
137
star
7

fruity-frida

Utilities to deploy frida on rootless iOS and more
TypeScript
90
star
8

novacane

Some frida scripts
JavaScript
55
star
9

icloud-token-leak-poc

trick or treat
Objective-C
47
star
10

grab.js

fast TCP banner grabbing with node.js
Shell
47
star
11

entdb

Host your own *OS Entitlement Database
Python
44
star
12

slides

41
star
13

urlschemes

Objective-C
34
star
14

glskybox

Faster skysphere to skybox convertion using OpenGL
Python
27
star
15

DezhouInstrumenz

Source code of "Dezhou Instrumentz" challenge from RealWorldCTF 2019 quals
Python
22
star
16

mistune-patch-backport

Backporting CVE-2021-1748 patch for iOS <=14.3
Makefile
22
star
17

TuttiFrutti

Some random fruity tool
Objective-C
19
star
18

dscfix72

C
12
star
19

mistune

HTML
10
star
20

BadTokenizerPoc

Abusing fts3_tokenizer
PHP
10
star
21

zhparser-docker

Postgresql with zhparser
9
star
22

dsc

IDA Pro the crazy way
Python
9
star
23

koa-sqlite3-session

sqlite3 adaption for koa-generic-session
JavaScript
9
star
24

bctf2016-jukebox

https://blog.chichou.me/bctf-2016-jukebox-%E5%87%BA%E9%A2%98%E7%AC%94%E8%AE%B0-961d625ddb59
C
2
star
25

am

JavaScript
1
star
26

pl

Makefile
1
star