numirias/security

Stars
864
Rank 52,774 (Top 2 %)
Language
Created over 5 years ago
Updated over 5 years ago

numirias/security

numirias

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

security

This repository will contain security-related stuff I'm doing. (Also, @rawsec on Twitter)

Recent:

2019-06-04 Vim/Neovim Arbitrary Code Execution via Modelines (CVE-2019-12735)

More to come...

CTF write-ups:

My answers on Security.SE (many trivial, but also a few interestinig ones).

Some older bugs:

2017-01-25 Google Chrome: Address spoofing in Omnibox (CVE-2017-5015)
2017-01-24 Mozilla Firefox: Location bar spoofing with unicode characters (CVE-2017-5383)
2016-06-07 Mozilla Firefox: Partial SOP violation via forged location.host (CVE-2016-2825)
2015-05-19 Google Chrome: Cross-origin bypass in Editing (CVE-2015-1254)
2015-04-03 Mozilla Firefox: Privileged URLs processed by about:reader (CVE-2015-0798)
2015-03-31 Mozilla Firefox: Addon permissions exposed to man-in-the-middle attacks (CVE-2015-0812)
2015-02-24 Mozilla Firefox: Local files or privileged URLs in pages can be opened into new tabs (CVE-2015-0821)
2015-02-24 Mozilla Firefox: Arbitrary File Read Vulnerability via Form Autocomplete (CVE-2015-0822)

semshi

🌈 Semantic Highlighting for Python in Neovim

paxmod

🕊️ Firefox add-on for multi-row tabs and site-dependent tab colors

pytest-json-report

🗒️ A pytest plugin to report test results as JSON

qtile-plasma

🔮 A flexible, tree-based layout for Qtile

firefed

🕵️ A tool for Firefox profile analysis, data extraction, forensics and hardening

vim-pytest

WIP: A plugin to run and control pytest from inside Vim

ctf

nvfm

A colorful, hackable file manager based on Neovim

firefox-theme-tweak

A Firefox add-on to tweak the current theme