- RomCom exploits Firefox and Windows zero days in the wild
- CVE-2024-29943
- CVE-2024-8381
- CVE-2022-26381: Gone by others! Triggering a UAF in Firefox
- Firefox在野0day分析
- CVE-2020-6820: Firefox use-after-free in Cache
- CVE-2019-9810 Exploit for Firefox on Windows
- Exploiting CVE-2019-17026 - A Firefox JIT Bug
- [CVE-2019-17026: Firefox Type Confusion in IonMonkey](https://googleprojectzero.github.io/0days-in-the-
Jacob Soo jacobsoo
jacobsoo
/ Firefox-Articles.md
Last active
June 11, 2025 13:15
jacobsoo
/ Opinion on Metaverse & NFT
Created
October 21, 2022 04:31
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| I am a boomer and still not a fan of Metaverse or NFT. | |
| These are just my personal views and don't represent my company's views. | |
| Is Metaverse something new? Judging by most of the things that I see right now? It's nothing new. It's basically a re-branding of Second Life and other similar VR games. | |
| Are you planning on buying an island in Metaverse? Nissan already did that in Second Life back in 2006. In Second Life, a company like Nissan or its advertising agency could buy an "island" for a one-time fee of $1,250 and a monthly rate of $195. Visitors to Nissan's Island "are coming away with an awareness that there's a new car by Nissan. Visitors can check out its styling and features." It could be used for good and bad. | |
| Staging of "faux" attacks? Someone already did that in Second life back in 2009. You can read about that here. https://foreignpolicy.com/2009/10/09/terrorists-in-second-life/ | |
| Money laundering through games (or via NFT or Metaverse)? It's nothing new too. The key factor that makes money launde |
jacobsoo
/ pyExtractOLEfromMHTML.py
Last active
July 30, 2022 15:48
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ''' | |
| OLE Extraction from MHTML | |
| by Jacob Soo | |
| Hashes for samples: | |
| e2f45f24ecbb65db5b6e26389bb55e8919706a0c6a087c8fa7afe532be9b8dfd | |
| 4ffc062316fe2e6187d23ac32e3987b3443c623b0686124d22010a42b60f9a8a | |
| 4f16b83bbaf9b7b77966591e59e07a7d9c61f5fe1de82bcfc521294cc0711727 | |
| 8f55abf50281603ad0af7f450e4eabc048e8763a56f1f7851dd874776628cd64 | |
| c111a7dbe059c72f55d06f662154caa0483721577cd19e9e9e6362a5c44fd02f |
jacobsoo
/ gist:5f58df8023604b9c715aac1e4f29800d
Created
September 7, 2020 02:18
Similar samples for #TransparentTribe based on https://twitter.com/ShadowChasing1/status/1302782100660080642
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 35ebfbca67e011b7e898e2ca19a8d3b05210fca57bc4ae735b457b46ed718c4c | |
| a24c37f638141a9fbf8d0b2a2408f4bca792fde5569c7d7381458bf0e0509450 | |
| 4d67694e2473e7643395c279a7bb1490b751280845baf8b24f007ad1e2c513e4 | |
| 49c0911104e2c41b8764d9a55e23d1323a3618f5072d0d34fdbd334831550185 | |
| 57e071cc21c332ee976770612f51071cc19c92e76125a4c9e2dc1ccce2ff854e | |
| 72aa69be5cd46220e1509c040ceb6e3cbb3c676a6c464a811370d688f45f26ec | |
| 529638a134bd634426f831b3dc5ea35adb7af52738b029b0c18f818e4799fdc7 | |
| 46c3b6971533565e1a18088a789cbb3d433bfafc20157f2839eb69d17b5bdffe | |
| 1f314e67229f02a01c5c26352701bb2841c17ce78d00e72c112dddbea1f43a19 | |
| 15adf8b125bd445a0ad58fc0927a22a1022886173424c6c72cdf6f545f7078ad |
jacobsoo
/ pyDeliveryTimeslots.py
Created
April 18, 2020 06:52
This is just a simple script for Covid-19 to check if there are any delivery timeslots based on your postal code.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os, sys, re | |
| import requests | |
| from requests.packages.urllib3.exceptions import InsecureRequestWarning | |
| requests.packages.urllib3.disable_warnings(InsecureRequestWarning) | |
| def _log(szString): | |
| print(szString) | |
| def main(PostalCode): | |
| ''' |
jacobsoo
/ 20ad6fa72982a6ba0f9499361b2aa3a3f5cca73fd397c2969d08a4c5f2866814
Created
February 12, 2020 15:09
20ad6fa72982a6ba0f9499361b2aa3a3f5cca73fd397c2969d08a4c5f2866814
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|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|
jacobsoo
/ keybase.md
Created
September 28, 2018 07:13
I hereby claim:
- I am jacobsoo on github.
- I am jacobsoo (https://keybase.io/jacobsoo) on keybase.
- I have a public key ASCVYIKyVOSu1myDjEHHmSZfGiHsO5yEh2eyi3QxZ7A1SAo
To claim this, I am signing this object: