GitHub - OpenSecurityResearch/FSExploitMe: Purposely vulnerable ActiveX Control to teach about exploitation in a browser-based environment.

OpenSecurityResearch / FSExploitMe Public

Notifications You must be signed in to change notification settings
Fork 10
Star 69

Purposely vulnerable ActiveX Control to teach about exploitation in a browser-based environment.

69 stars 10 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
css		css
img		img
js		js
FSExploitMe.html		FSExploitMe.html
FSExploitMe.ocx		FSExploitMe.ocx
FSExploitMe.pdb		FSExploitMe.pdb
Readme.txt		Readme.txt

Repository files navigation

FSExploitMe -
By Brad.Antoniewicz@foundstone.com (@brad_anton)
		
A purposely vulnerable ActiveX control for learning exploitation. Everything
is browser based to guide the student towards browser exploitation however
these vulnerabilities are really in the ActiveX Control, not the browser itself. 

There are some limitations. For instance, L3HeapSpray() only works on IE8. You'll
need a newer heapsray function to complete Lesson 3 on newer browsers. 

Answers are specifically blank in this release. If you'd like to access them, 
please contact me and I'll send them to you, assuming you're not one of my
students :)

FSExploitMe.html -
	Interface to invoke the various vulns.	

FSExploitMe.ocx - 	
	Main ActiveX Control.  
	From an elevated command prompt, run:
		regsvr32 /i FSExploitMe.ocx
		And copy to c:\windows\downloaded program files
					
js/css - 
	To make things pretty - using Foundation. http://foundation.zurb.com/
img - 
	Supporting Images
	
Notes:
		The Debug and Release versions available with Visual Studio will 
		alter the resulting binary, which will change any hardcoded answers 
		in the labs. 


Shoutz:
	This was based off an idea by Dan Guido and those Trail of Bits rock stars :)
	http://pentest.cryptocity.net/exploitation/