xsscx/Commodity-Injection-Signatures

Stars
372
Rank 111,300 (Top 3 %)
Language
HTML
License
GNU General Publi...
Created over 9 years ago
Updated 3 months ago

xsscx/Commodity-Injection-Signatures

xsscx

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

XSS.Cx Public Repo

Last Update: 4 APR 2023

Added CVE-2022-26730 ICC Color Profile Sample PoC's
Added CVE-2022-26730 Graphics Samples known to Crash many OS
https://srd.cx/cve-2022-26730/

About

Commodity Injection Signatures
Scraped Fresh from the Internet since 2015

Suggested Use

Include with Burp Intruder or Custom Scripts
Manual Injection Testing with Well-Known Signatures
Automated Fuzzing with a Wide-Range with Malicious Inputs
Abusing XNU, Windows or Linux

Recent Additions

regex files to aid with apple security research device log analysis
RBL focused on AD CDN's
RBL focused on App Titles
XNU Crash Helpers a la Apple SRD circa 2023

Pull Requests Welcome

Happy Hunting!!

srd

Welcome to Hoyt's SRD Repo for the Apple Security Research Device. Contribute Code or Open an Issue or Discussion.

macos-research

Welcome to Hoyt's macOS Fuzzing & Code Repo. Contribute Code or Open an Issue or Discussion.

xnuimagefuzzer

XNU Image Fuzzer - iOS App for Fuzzing with Objective-C Code covering 12 CGCreateBitmap & CGColorSpace Functions working with Raw Data and String Injection.

cve-2017-5638

Example PoC Code for CVE-2017-5638 | Apache Struts Exploit

ios-arm-research

UPDATED: All the action is at https://github.com/xsscx/srd

Various-Scripts

Tools, Scripts, Code, Snippets, Paste, Things

windows

Welcome to Hoyt's Windows Fuzzing Repo

ios-arm-binaries

UPDATED: All the action is at https://github.com/xsscx/srd

CoreTextUnicodeBug

CoreText Unicode Bug on OSX 10.13.3 using LLDB, BackTrace, Registers