Microsoft Edge Extensions Host-Permission Bypass (Cve-2019-0678) - Payatu

Browser Extensions A browser extension is a plug-in that extends the functionality of a web browser. Extensions are capable of managing cookies, bookmarks, storage, and passwords, among others. Some of the most common browser extensions used are: AdBlock Plus EditThisCookie FoxyProxy Wappalyzer Permissions Every browser extension is installed with specific permissions, defined under the manifest.json […]

payatu

Self-host Microsoft Edge extensions

RDP Stands for “Really DO Patch!” – Understanding the Wormable RDP Vulnerability CVE-2019-0708

Protect yourself against CVE-2019–0708 aka #BlueKeep using Azure Sentinel and Microsoft Defender ATP, by Maarten Goet

CVE-2019-0708] BlueKeep, RDP Remote Code Execution PoC

BlueKeep Vulnerability (CVE-2019–0708), by UMESHA ELLEWALA

GitHub - alphaSeclab/windows-security: Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.

payatu

Can I ForceInstall a Edge extension without using GPO? - Microsoft Q&A

Exploitation of Windows RDP Vulnerability CVE-2019-0708 (BlueKeep)

Use group policies to manage Microsoft Edge extensions

Exploit Development: Browser Exploitation on Windows - CVE-2019-0567, A Microsoft Edge Type Confusion Vulnerability (Part 3)

GitHub - NetW0rK1le3r/PENTESTING-BIBLE

TrustedSec Detecting CVE-2020-0688 Remote Code Execution…