• Purpose
• Usage and Example
• Internet Explorer
• Adobe Reader and Acrobat
• Safari
• Opera
• Payload
• Further Reading
• Disclaimer

Collection of proof-of-concept exploits written in Python that target vulnerabilities in Internet Explorer, Adobe Reader and Acrobat, Safari, and Opera. The exploits demonstrate known vulnerabilities in outdated software and are provided for educational and research purposes.

Clone the python-exploits repository:

git clone https://github.com/ahmedobied/python-exploits.git

Navigate to the python-exploits folder and run any of the exploits:

cd python-exploits
python3 exploits/ie/ie_aurora.py 31337

For browser exploits, open the web address from a vulnerable browser. For other exploits, open the generated file with the targeted software.

Run the ie_aurora exploits:

python3 exploits/ie/ie_aurora.py 31337

You will see the following output:

[-] Web server is running at http://127.0.0.1:31337/

When you try accessing the web address using curl:

curl http://127.0.0.1:31337/

You will get a webpage that includes the exploit:

        <html>
        <head>
            <script>
            
            var obj, event_obj;
            
            function spray_heap()
            ...

When you access the web address from a web browser, you will get the following:

[-] Incoming connection from 127.0.0.1
[-] Sending exploit to 127.0.0.1 ...
[-] Exploit sent to 127.0.0.1

When you access the web address from a vulnerable browser, the exploit spawns the calculator.

• ie_aurora: Exploits a vulnerability (CVE-2010-0249) in Internet Explorer.
• ie_owc: Exploits a vulnerability (CVE-2009-1136) in an ActiveX control (Microsoft Office Web Components) used by Internet Explorer.
• ie_delobject: Exploits a vulnerability (CVE-2009-0075) in Internet Explorer.
• ie_mpeg2tunerequest: Exploits a vulnerability (CVE-2008-0015) in an ActiveX control (Microsoft MPEG2TuneRequest) used by Internet Explorer.

For more details, see Internet Explorer’s README.

• adobe_newplayer: Exploits a vulnerability (CVE-2009-4324) in Adobe Reader and Acrobat. The code generates a PDF that includes the exploit.
• adobe_collab_geticon: Exploits a vulnerability (CVE-2009-0927) in Adobe Reader via any web browser.

For more details, see Adobe’s README.

• safari_xml_crash: Targets a vulnerability (CVE-2009-1233) in the Apple Safari browser.

For more details, see Safari’s README.

• opera_xml_crash: Targets a vulnerability (CVE-2009-1234) in the Opera browser.

For more details, see Opera’s README.

All exploits use the same payload that spawns the calculator upon successful exploitation. The payload is used as proof-of-concept to demonstrate the ability to execute arbitrary code.

For more information about web-based exploits and their use in the real-world, see the following study:

Ahmed Obied. Collection and Analysis of Web-based Exploits and Malware. M.Sc. Thesis. Department of Computer Science, University of Calgary, 2008.

Please read the disclaimer before downloading or using any code in this repository.

verb. To write in a hurried or careless way.

Scrawl is designed to be the lowest friction markdown file based single user blogging solution for Laravel

For the full documentation, visit the Scrawl home page.

You can install the package via composer:

composer require projektgopher/scrawl

You can publish the config file with:

php artisan vendor:publish --provider="Projektgopher\Scrawl\BlogServiceProvider" --tag="scrawl-config"

This is the contents of the published config file:

return [

    /**
     * These folders are located in the resources directory. We suggest
     * storing them in a directory named md (markdown) to follow
     * with the conventions of the resources directory.
     */
    "unpublished_directory" => "md/scrawl/unpublished",
    "published_directory" => "md/scrawl/published",
    "blog_directory" => "md/scrawl",

    "author_bio" => "",
    "author_name" => "",
    "author_link" => "",
    "author_photo" => "",
    "author_photo_alt" => "",

    "route_group" => "blog",

    "view" => [
        /**
         * Read the list of driver options below, and
         * choose the option that best suits you.
         */
        "driver" => "standalone",

        /**
         * Use "none" if you'd like to return the data as JSON.
         * Particularly useful for Vue or React based blogs.
         */
        "none" => "",

        /**
         * Use "custom" if you don't have a main layout file
         * but also don't want to use the one provided.
         */
        "custom" => "",

        /**
         * Use "standalone" if you don't have a main layout
         * file. Great for just getting started quickly.
         * You can alawys move to a layout based
         * setup later on.
         */
        "standalone" => "",

        /**
         * Use "x-component" if your views include a blade
         * layout component such as <x-layouts.app />
         */
        "x-component" => [
            "component" => "layouts.app",
        ],

        /**
         * Use "blade-layout" if your views extend a
         * base layout using the @extends method.
         */
        "blade-layout" => [
            "extends" => "layouts.app",
            "section" => "body",
        ],
    ],

];

Scrawl is desgined to be used on the CLI. It will automatically register the blog routes, and requires no database as this package is file based, and meant to have your content comitted to the project. Only posts saved in the ‘published’ directory will be publicly accessible.

php artisan blog:make 'long title that should be sluggified'

This command will ensure that the unpublished directory exists, copy the .md blog post stub into the ‘unpublished’ directory with a sluggified title.

Now you can just get into writing your post in github flavored markdown without worrying about all the details.

php artisan blog:publish 'name of blog you would like to move to the published directory'

php artisan blog:unpublish 'name of the blog you should not have published yet'

vendor/bin/phpunit --testdox

We invest a lot of resources into creating best in class open source packages. You can support us by buying one of our paid products.

We highly appreciate you sending us a postcard from your hometown, mentioning which of our package(s) you are using. You’ll find our address on our contact page. We publish all received postcards on our virtual postcard wall.

Please see CHANGELOG for more information on what has changed recently.

Please see CONTRIBUTING for details.

Please review our security policy on how to report security vulnerabilities.

• Len Woodward
• All Contributors

The MIT License (MIT). Please see License File for more information.

verb. To write in a hurried or careless way.

Scrawl is designed to be the lowest friction markdown file based single user blogging solution for Laravel

For the full documentation, visit the Scrawl home page.

You can install the package via composer:

composer require projektgopher/scrawl

You can publish the config file with:

php artisan vendor:publish --provider="Projektgopher\Scrawl\BlogServiceProvider" --tag="scrawl-config"

This is the contents of the published config file:

return [

    /**
     * These folders are located in the resources directory. We suggest
     * storing them in a directory named md (markdown) to follow
     * with the conventions of the resources directory.
     */
    "unpublished_directory" => "md/scrawl/unpublished",
    "published_directory" => "md/scrawl/published",
    "blog_directory" => "md/scrawl",

    "author_bio" => "",
    "author_name" => "",
    "author_link" => "",
    "author_photo" => "",
    "author_photo_alt" => "",

    "route_group" => "blog",

    "view" => [
        /**
         * Read the list of driver options below, and
         * choose the option that best suits you.
         */
        "driver" => "standalone",

        /**
         * Use "none" if you'd like to return the data as JSON.
         * Particularly useful for Vue or React based blogs.
         */
        "none" => "",

        /**
         * Use "custom" if you don't have a main layout file
         * but also don't want to use the one provided.
         */
        "custom" => "",

        /**
         * Use "standalone" if you don't have a main layout
         * file. Great for just getting started quickly.
         * You can alawys move to a layout based
         * setup later on.
         */
        "standalone" => "",

        /**
         * Use "x-component" if your views include a blade
         * layout component such as <x-layouts.app />
         */
        "x-component" => [
            "component" => "layouts.app",
        ],

        /**
         * Use "blade-layout" if your views extend a
         * base layout using the @extends method.
         */
        "blade-layout" => [
            "extends" => "layouts.app",
            "section" => "body",
        ],
    ],

];

Scrawl is desgined to be used on the CLI. It will automatically register the blog routes, and requires no database as this package is file based, and meant to have your content comitted to the project. Only posts saved in the ‘published’ directory will be publicly accessible.

php artisan blog:make 'long title that should be sluggified'

This command will ensure that the unpublished directory exists, copy the .md blog post stub into the ‘unpublished’ directory with a sluggified title.

Now you can just get into writing your post in github flavored markdown without worrying about all the details.

php artisan blog:publish 'name of blog you would like to move to the published directory'

php artisan blog:unpublish 'name of the blog you should not have published yet'

vendor/bin/phpunit --testdox

We invest a lot of resources into creating best in class open source packages. You can support us by buying one of our paid products.

We highly appreciate you sending us a postcard from your hometown, mentioning which of our package(s) you are using. You’ll find our address on our contact page. We publish all received postcards on our virtual postcard wall.

Please see CHANGELOG for more information on what has changed recently.

Please see CONTRIBUTING for details.

Please review our security policy on how to report security vulnerabilities.

• Len Woodward
• All Contributors

The MIT License (MIT). Please see License File for more information.

• AndroidStudio是Google官方推出的基于 IntelliJ IDEA的Android开发IDE.
• Android Studio 2.0是为Android平台打造高品质，高性能的应用程序的最快方式，包括手机、平板电脑，Android Auto，Android Wear和Android TV。作为谷歌官方的IDE，Android Studio包括你需要建立的任何应用程序，其中包括代码编辑器，代码分析工具，模拟器等等。这个新的、稳定的Android Studio版本具有快速构建速度和支持最新Android版的快速的仿真器以及谷歌播放服务。

• 此汉化基于AndroidStudio V2.0（v2.0.0.20-20160408）最新V2.0稳定版本
• 使用前请下载并安装 AndroidStudio_2.0.0.20-bundle-143.2739321-windows.exe

• 基于AndroidStudio V2.3.1/v2.4（v2.3.1.0.20-20170404/v2.4）最新V2.3.1稳定版本
• 使用前请下载并安装 AndroidStudio-v2.3.1或更高版本

AndroidStudio-ChineseLanguagePackage/
├─AndroidStudio-Lang-Pkg-Translate/                                  //V2.0.0.20版语言包 基于谷歌翻译网页版的机器批量翻译程序源码 
│   ├─ .idea/
│   ├─ src/
│   └─ README.md
├─AndroidStudio_v2.0.0.20_zh-cn/                                     //V2.0.0.20版翻译项目目录
│   ├─resources_cn/
│   └─README.md
├─AndroidStudio_v2.0.0.20_en/                                        //V2.0.0.20版英语语言解压包
│   ├─resources_en
│   └─README.md
├─Release/ 
│	│─AndriodStudio-v2.0.0.20_resources_cn-v0.1-20160405/
│	│─AndroidStudio_v2.0.0.20_resources_cn-v0.2-20170414/
│	│─AndriodStudio-v2.0.0.20_resources_cn-v0.1-20160405.jar
│	│─AndroidStudio_v2.0.0.20_resources_cn-v0.2-20170414.jar
│	└─README.md 
├─Doc/
├─.gitignore     
├─LICENSE
└─README.md

• 汉化资源下载链接汇总
• AndroidStudio中文社区汉化包下载

• 此汉化包仅适用于AndroidStudiov2.0.0.20版本，其它版本未验证，请慎用，替换前请做好相关文件的备份。
• 英文语言包位于 安装目录/lib/resource_en.jar

• [1] .下载本项目根目录/Release/ 下的对应的已发布的jar汉化包文件(其它下载源请查阅 汉化资源下载链接汇总 );
• [2] .将[1]中下载的jar包重命名为“resource_en.jar”，并保存;
• [3] .备份 “AndroidStudio安装目录/lib/resource_en.jar” 文件(非常重要);
• [4] .将[2]中的resource_en.jar文件移动到 AndroidStudio安装目录/lib/目录 替换原版的英语语言包文件resource_en.jar
• [5] .执行[4]后会弹出对话框，选择同意替换；
• [6] .关闭窗口，正常打开AndroidStudio IDE，汉化完成，汉化后效果如上预览图所示。

• 如何汉化
• AndroidStudio-ChineseLanguagePackage讨论交流
• AndroidStudio2.0.x讨论交流
• 汉化交流

• AndroidStudio汉化更新日志
• AndroidStudio更新日志

汉化翻译中，有参考和使用第三方作者的提供的资源和工具，在此一并致谢：

• Android Studio 中文组
  • wellchang | vichild | zhangwei
• smzy

• Android Studio 中文社区
• AndroidStudioTranslate/Android-Studio-Translate
• Android-Studio-Translate-Tool

eufony/marshaller provides a standard interface for object marshalling libraries.

Marshalling is a similar concept to serialization. Unlike serialization however, marshalling refers to a more general process of preparing the memory representation of an object into a data format suitable for storage or transmission. eufony/marshaller is a PHP library that aims to improve interoperability between marshalling implementations.

Interested? Here’s how to get started.

eufony/marshaller is released as a Packagist package and can be easily installed via Composer with:

composer require "eufony/marshaller:v1.x-dev"

Warning: This package does not have any stable releases yet (not even a v0.x pre-release) and is currently unstable. Expect frequent breaking changes and instability!

For a more detailed documentation, see here.

Found a bug or a missing feature? You can report it over at the issue tracker.

This program is free software: you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.

You should have received a copy of the GNU Lesser General Public License along with this program. If not, see https://www.gnu.org/licenses/.

eufony/marshaller provides a standard interface for object marshalling libraries.

Marshalling is a similar concept to serialization. Unlike serialization however, marshalling refers to a more general process of preparing the memory representation of an object into a data format suitable for storage or transmission. eufony/marshaller is a PHP library that aims to improve interoperability between marshalling implementations.

Interested? Here’s how to get started.

eufony/marshaller is released as a Packagist package and can be easily installed via Composer with:

composer require "eufony/marshaller:v1.x-dev"

Warning: This package does not have any stable releases yet (not even a v0.x pre-release) and is currently unstable. Expect frequent breaking changes and instability!

For a more detailed documentation, see here.

Found a bug or a missing feature? You can report it over at the issue tracker.

This program is free software: you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.

You should have received a copy of the GNU Lesser General Public License along with this program. If not, see https://www.gnu.org/licenses/.