Fooling the Sandbox - A Chrome-atic Escape
STAR Labs
Fooling the Sandbox - A Chrome-atic Escape
0:44
Breaking Out of Restricted Mode: XSS to RCE in Visual Studio Code
STAR Labs
Breaking Out of Restricted Mode: XSS to RCE in Visual Studio Code
0:32
CVE-2024-26230 Exploit Demo
STAR Labs
CVE-2024-26230 Exploit Demo
1:07
CVE-2024-30085 Exploit demo
STAR Labs
CVE-2024-30085 Exploit demo
0:30
A new method for container escape using file based DirtyCred
STAR Labs
A new method for container escape using file based DirtyCred
1:35
Demo for nftables Adventures Bug Hunting and N-day Exploitation (CVE-2023-31248)
STAR Labs
Demo for nftables Adventures Bug Hunting and N-day Exploitation (CVE-2023-31248)
0:14
Pwn2Own Microsoft SharePoint Pre-Auth Code Injection
STAR Labs
Pwn2Own Microsoft SharePoint Pre-Auth Code Injection
1:15
Demo on Razer EoP Exploits - CVE-2023-3513 & CVE-2023-3514
STAR Labs
Demo on Razer EoP Exploits - CVE-2023-3513 & CVE-2023-3514
5:15
Pwn2Own Toronto 2022 - Samsung S22
STAR Labs
Pwn2Own Toronto 2022 - Samsung S22
0:43
Microsoft Exchange Remote Powershell RCE (CVE-2023-21707)
STAR Labs
Microsoft Exchange Remote Powershell RCE (CVE-2023-21707)
0:17
Demo of CVE-2021-38003
STAR Labs
Demo of CVE-2021-38003
0:32
03 PMG Priv Esc
STAR Labs
03 PMG Priv Esc
0:43
02 PVE PMG Client side DoS
STAR Labs
02 PVE PMG Client side DoS
0:51
01 PVE XSS RCE masked
STAR Labs
01 PVE XSS RCE masked
0:16
Step-by-Step Walkthrough of CVE-2022-32792 - WebKit B3ReduceStrength Out-of-Bounds Write
STAR Labs
Step-by-Step Walkthrough of CVE-2022-32792 - WebKit B3ReduceStrength Out-of-Bounds Write
0:36
Exploiting WebKit JSPropertyNameEnumerator Out-of-Bounds Read (CVE-2021-1789)
STAR Labs
Exploiting WebKit JSPropertyNameEnumerator Out-of-Bounds Read (CVE-2021-1789)
0:31
Gitlab Project Import RCE CVE-2022-2185
STAR Labs
Gitlab Project Import RCE CVE-2022-2185
0:24
CVE-2021-41073: Linux kernel v5.14.6 LPE
STAR Labs
CVE-2021-41073: Linux kernel v5.14.6 LPE
0:26
Zer0Con smbfs POC
STAR Labs
Zer0Con smbfs POC
0:31
Microsoft SharePoint Post-Auth Deserialization RCE (CVE-2022-29108)
STAR Labs
Microsoft SharePoint Post-Auth Deserialization RCE (CVE-2022-29108)
1:45
Demo of Oracle VirtualBox VHWA Use-After-Free Privilege Escalation Vulnerability
STAR Labs
Demo of Oracle VirtualBox VHWA Use-After-Free Privilege Escalation Vulnerability
0:11
Demo of CVE-2021-30632 & CVE-2021-30633
STAR Labs
Demo of CVE-2021-30632 & CVE-2021-30633
0:46
KernelCache Decryption
STAR Labs
KernelCache Decryption
0:37
Vue CLI UI Cross-site WebSocket Hijacking to RCE
STAR Labs
Vue CLI UI Cross-site WebSocket Hijacking to RCE
0:14
Firefox 91 Alert Blocks Navigation
STAR Labs
Firefox 91 Alert Blocks Navigation
0:23
Taint Analysis Tool Demo
STAR Labs
Taint Analysis Tool Demo
4:48
geckodriver windows RCE
STAR Labs
geckodriver windows RCE
1:09
geckodriver linux RCE
STAR Labs
geckodriver linux RCE
1:26
chromedriver windows RCE
STAR Labs
chromedriver windows RCE
2:10
chromedriver linux RCE
STAR Labs
chromedriver linux RCE
1:37
Demo of CVE-2020-25221
STAR Labs
Demo of CVE-2020-25221
0:34
Demo 2 of CVE-2020-6418
STAR Labs
Demo 2 of CVE-2020-6418
0:30
Demo of CVE-2020-15999
STAR Labs
Demo of CVE-2020-15999
1:14
TianFu Cup 2019 Adobe Reader Exploitation (CVE-2019-16452) - Faking JSObject's element buffer
STAR Labs
TianFu Cup 2019 Adobe Reader Exploitation (CVE-2019-16452) - Faking JSObject's element buffer
0:16
Demo of CVE-2020-6418
STAR Labs
Demo of CVE-2020-6418
0:24