Vulnerability Summary: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specifie
Callisthenes Don andmeics
🏠
win3zz
/ CVE-2023-21939.md
Created
August 27, 2023 12:33
CVE-2023-21939 - Code Exec - Proof of Concept
pagxir
/ residence.pac
Last active
June 1, 2024 10:30
proxy auto config for split domain into oversea and big local network.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const _net_count = 15641; | |
| const _net_list = [ | |
| {"net": 0x01000000, "prefix": 24}, {"net": 0x01000400, "prefix": 22}, {"net": 0x01001000, "prefix": 20}, {"net": 0x01004000, "prefix": 18}, | |
| {"net": 0x01008000, "prefix": 17}, {"net": 0x01010100, "prefix": 24}, {"net": 0x01014000, "prefix": 18}, {"net": 0x01018000, "prefix": 17}, | |
| {"net": 0x01020300, "prefix": 24}, {"net": 0x01028000, "prefix": 17}, {"net": 0x01040000, "prefix": 24}, {"net": 0x01048000, "prefix": 17}, | |
| {"net": 0x01050000, "prefix": 16}, {"net": 0x01060000, "prefix": 15}, {"net": 0x01090000, "prefix": 16}, {"net": 0x010a0a00, "prefix": 24}, | |
| {"net": 0x010a8000, "prefix": 17}, {"net": 0x010b0000, "prefix": 16}, {"net": 0x01100000, "prefix": 13}, {"net": 0x01200000, "prefix": 13}, | |
| {"net": 0x01280000, "prefix": 14}, {"net": 0x012c0000, "prefix": 16}, {"net": 0x012e0000, "prefix": 15}, {"net": 0x01340000, "prefix": 14}, | |
| {"net": 0x01400000, "prefix": 14}, {"net": 0x01480000, "prefix": 13}, {"net": 0x016 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #if 0 | |
| Apple A11 (H10) introduces 2 propietary instructions called mul53lo.2d and mul53hi.2d. All of which belongs to Mul53 extensions. | |
| Defintions: | |
| - mul53lo.2d Vd, Vm: Multiplies 2 53-bit doublewords in the Vn vector with 2 53-bit doublewords in Vm vector and store 53 lowest bits in the Vn vector. | |
| - mul53hi.2d Vd, Vm: Multiplies 2 53-bit doublewords in the Vn vector with 2 53-bit doublewords in Vm vector and store the result shifted 53 bits in the Vn vector. | |
| Encodings: | |
| - mul53lo.2d Vd, Vm: 0x00200000 | (m << 5) | (d << 0) | |
| - mul53hi.2d Vd, Vm: 0x00200400 | (m << 5) | (d << 0) |
arbazkiraak
/ Exploit.sol
Last active
June 21, 2023 12:31
Fei fETH-146 Fuse Pool exploit - Reentrancy on doTransferOut() while borrowing.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: UNLICENSED | |
| pragma solidity ^0.8.13; | |
| import "hardhat/console.sol"; | |
| interface IERC20 { | |
| event Approval(address indexed owner, address indexed spender, uint value); | |
| event Transfer(address indexed from, address indexed to, uint value); | |
| function name() external view returns (string memory); |
ishad0w
/ microsoft_edge_uninstaller_21h1_ltsc.bat
Last active
November 14, 2024 15:23
Microsoft Edge Uninstaller [Windows 10 LTSC 2021/21H1 Edition]
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @echo off | |
| @title Microsoft Edge Uninstaller [Windows 10 LTSC 2021/21H1 Edition] | |
| ver | |
| echo+ | |
| goto check_admin_permissions | |
| :check_admin_permissions | |
| echo Script must Run as Administrator! Detecting permissions... | |
| net session >nul 2>&1 | |
| if %errorLevel% == 0 ( |
georgemitenkov
/ byte-types-or-how-to-get-rid-of-i8-abuse-for-chars-in-llvm-ir.md
Last active
June 8, 2024 08:58
Byte types, or how to get rid of i8 abuse for chars in LLVM IR
Authors: George Mitenkov, Nuno Lopes, Juneyoung Lee
Date: 15.10.2021
This May, together with Nuno Lopes and Juneyoung Lee we made a proposal to add a new
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class Helpers { | |
| constructor() { | |
| this.buf = new ArrayBuffer(8); | |
| this.f64 = new Float64Array(this.buf); | |
| this.f32 = new Float32Array(this.buf); | |
| this.u32 = new Uint32Array(this.buf); | |
| this.u64 = new BigUint64Array(this.buf); | |
| this.state = {}; | |
| } |
unrealwill
/ collisionLSH.py
Created
August 8, 2021 10:20
Proof of Concept : generating collisions on a neural perceptual hash
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import tensorflow as tf #We need tensorflow 2.x | |
| import numpy as np | |
| #The hashlength in bits | |
| hashLength = 256 | |
| def buildModel(): | |
| #we can set the seed to simulate the fact that this network is known and doesn't change between runs | |
| #tf.random.set_seed(42) | |
| model = tf.keras.Sequential() |
silence-is-best
/ gist:3dc296449c19dea695fb1a2de663218d
Last active
October 25, 2021 11:10
An Open Letter to CorySecurity regarding CobaltStrike
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Team, | |
| In light of recent understanding in the use of your product, Cobaltstrike, in ransomware engagements I've felt compelled to write this. I'm not going to flower this up, so I'll jump right to it. | |
| What I'm asking for: | |
| For CoreSecurity to evaluate the human cost versus the company profits of CobaltStrike. | |
| For CoreSecurity to at least internally acknowledge that CobaltStrike is now an integral part of the ransomware ecosystem. | |
| For CoreSecurity to provide assistance to incident responders. | |
| For CoreSecurity to implement additional controls and mitigations (suggestions below) on CobaltStirke. | |
NewerOlder