CVE-2020-15368
pwn2own2020
Our great sponsors
CVE-2020-15368 | pwn2own2020 | |
---|---|---|
1 | 1 | |
407 | 396 | |
- | 1.8% | |
0.0 | 0.0 | |
about 2 years ago | about 3 years ago | |
C++ | C++ | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CVE-2020-15368
pwn2own2020
-
Louis Rossmann on YouTube
Yep, MacOS and iOS have lots of vulnerabilities. I think this is a good time to mention: PSA - if your MacOS is older than 10.15.3 Catalina you are vulnerable to a full WebKit >> kernel privilege (root + kernel) exploit chain which can infect your computer through a website. Keep your devices up to date.
What are some alternatives?
ds3-nrssr-rce - Documentation and proof of concept code for CVE-2022-24125 and CVE-2022-24126.
GarHal_CSGO - A project that demonstrates how to screw with CSGO from Kernel Space. (CSGO Kernel Cheat/Hack) All cleaned up, and with updated offsets.
Karabiner-Elements - Karabiner-Elements is a powerful utility for keyboard customization on macOS Sierra (10.12) or later.
evil-mhyprot-cli - A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.
DeauthDetector - Detect deauthentication frames using an ESP8266
NtSymbol - Resolve DOS MZ executable symbols at runtime
Nidhogg - Nidhogg is an all-in-one simple to use rootkit.
herpaderping - Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.