squarectf
CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
Our great sponsors
| squarectf | CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera | |
|---|---|---|
| 1 | 7 | |
| 11 | 321 | |
| - | - | |
| 5.6 | 0.0 | |
| 4 months ago | over 1 year ago | |
| HTML | HTML | |
| - | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
squarectf
-
WebGoat is a deliberately insecure application
Squareβs past CTFs puzzles are all available as Docker images. I believe all the puzzles have published solutions.
Start here: https://squarectf.com/
If you want to submit fixes to the above site ping me or open a PR here: https://github.com/square/squarectf
CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
- CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera: π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
- GitHub - Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera: π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
- π© π€π» [P1-Reward:$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
What are some alternatives?
writeups - CTF writeups from The Flat Network Society
cve - Gather and update all available and newest CVEs with their PoC.
magpieCTF-2021 - Challenges and other resources for magpieCTF 2021.
black-hat-rust - Applied offensive security with Rust - https://kerkour.com/black-hat-rust
WebGoat - WebGoat is a deliberately insecure application
DumpsterFire - "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
cervantes - Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
THC-Archive - All releases of the security research group (a.k.a. hackers) The Hacker's Choice
awesome-list-of-secrets-in-environment-variables - π¦π Awesome list of secrets in environment variables π₯οΈ
CVE-2021-44228-PoC-log4j-bypass-words - π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
KITT-Lite - Python-Based Pentesting CLI Tool
maxos - Pentest focused NixOS config