Pinned Repositories
10.13.5-sip-bypass
2FAssassin
Bypass Two-Factor-Authentication
CVE-2017-2370
on Mac 10.12.2
cve-2018-4233
Exploit for CVE-2018-4233, a WebKit JIT optimization bug used during Pwn2Own 2018
Exploits
kernelSymbolFinder
Get kernel symbols on device. No jailbreak required (note: unslid addresses)
keychaindump
A proof-of-concept tool for reading OS X keychain passwords
linux_exploit_development
Linux Exploit Development Techniques
macOS-iOS-system-security
macos/ios exploit writeup
PoCs-1
Some Public vulnerabilities i found and exploits
dothanthitiendiettiende's Repositories
dothanthitiendiettiende/untether
wip untether for p0laris
dothanthitiendiettiende/Chrome-Android-and-Windows-0day-RCE-SBX
Chrome Android and Windows 0day RCE+SBX.. DPRK
dothanthitiendiettiende/CTF-Write-ups
Some CTF Write-ups
dothanthitiendiettiende/CVE-2018-17463
Working Proof of Concept Exploit for CVE-2018-17463
dothanthitiendiettiende/CVE-2022-22639
Exploitation of CVE-2022-22639
dothanthitiendiettiende/CVE-2022-25636
CVE-2022-25636
dothanthitiendiettiende/CVE-2022-26717-Safari-WebGL-Exploit
dothanthitiendiettiende/CVE-2022-39197-patch
CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.
dothanthitiendiettiende/desc_race
iOS 15.1 kernel exploit POC for CVE-2021-30955
dothanthitiendiettiende/desc_race_A15
CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
dothanthitiendiettiende/dyld-1
dothanthitiendiettiende/global-inject-demo
A global injection and hooking example
dothanthitiendiettiende/HintInject
A PoC project for embedding shellcode to Hint/Name Table
dothanthitiendiettiende/ios-kernel-heap-profiler
iOS kernel heap memory profiler for sprayers
dothanthitiendiettiende/jscythe
Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.
dothanthitiendiettiende/ktool
fully cross-platform toolkit (and library!) for MachO+Obj-C editing/analysis. Includes a cli kit, a curses GUI, ObjC header dumping, and much more.
dothanthitiendiettiende/lz4dec
Tiny arm64 LZ4 decompressor
dothanthitiendiettiende/MHDDoS
Best DDoS Attack Script Python3, Cyber Attack With 40 Methods
dothanthitiendiettiende/ntqueueapcthreadex-ntdll-gadget-injection
This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.
dothanthitiendiettiende/ocrit
Simple command-line utility for performing OCR using Apple's Vision framework
dothanthitiendiettiende/One-Click-Demo
One-Click to Completely Take Over A macOS Device
dothanthitiendiettiende/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
dothanthitiendiettiende/protobuf-finder
IDA Pro plugin for reconstructing original .proto files from binary.
dothanthitiendiettiende/PS-TrustedDocuments
PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
dothanthitiendiettiende/securitylab
Resources related to GitHub Security Lab
dothanthitiendiettiende/SpoolFool
Exploit for CVE-2022–22718 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)
dothanthitiendiettiende/SysWhispers2
AV/EDR evasion via direct system calls.
dothanthitiendiettiende/TCC-ClickJacking
A proof of concept for a clickjacking attack on macOS.
dothanthitiendiettiende/weightBufs
ANE kernel r/w exploit for iOS 15 and macOS 12
dothanthitiendiettiende/xcnotary
the missing macOS app notarization helper, built with Rust