Skip to content
This repository has been archived by the owner on Jun 30, 2021. It is now read-only.

Latest commit

 

History

History
42 lines (39 loc) · 747 Bytes

browsers.md

File metadata and controls

42 lines (39 loc) · 747 Bytes
Raw

Browser Exploitation

A list of topics to get into browser exploitation

  • Browsers
    • Browser Architecturre
    • Javascript
    • Interfacing with DOM
    • JS + DOM
  • Javascript
    • JS internals
    • V8 Objects
    • JSC Objects
    • Garbage Collection
    • Vulnerabilities
  • JS JIT compiler
    • JIT Debugging
    • JIT optimizations and typing
    • Inline Caching/Speculative Typing
    • Speculative optimizations
  • JS Exploitation
    • Layering Exploit Primitives
    • Achieving Arbitrary Memory Read/Write
    • JIT overwrite and arbitrary code execution
    • Browser Mitigations

Browsers

  • Browser Architecture
  • Web Standards
    • W3C
    • WHATWG
    • ECMA
    • WebIDL
  • Safari
    • SVN
    • Webcore
    • JSCore
  • Chrome
    • V8
  • OmahaProxy
  • DepotTools
  • WebKit