{"id":21991594,"url":"https://github.com/mykhis/slient-url-exploit","last_synced_at":"2025-07-22T12:33:36.809Z","repository":{"id":263113456,"uuid":"889383771","full_name":"Mykhis/Slient-URL-Exploit","owner":"Mykhis","description":"URL Contamination Exploit Muted Java Drive-By downloads can transpire during the act of perusing a website, inaugurating an electronic mail communication.","archived":false,"fork":false,"pushed_at":"2025-01-26T04:10:48.000Z","size":1881,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-01-26T04:19:39.354Z","etag":null,"topics":["cve","cve-2021-44228","cve-scanning","exploit","exploit-code","exploit-database","exploit-development","exploit-exercises","exploit-kit","exploitation","exploitation-framework","slient-doc-exploit","slient-exploit","slient-exploit-builder","slient-hta-exploit","slient-jpg-exploit","slient-pdf-exploit","slient-png-exploit","slient-url-exploit"],"latest_commit_sha":null,"homepage":null,"language":"C#","has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Mykhis.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"custom":null}},"created_at":"2024-11-16T08:28:51.000Z","updated_at":"2025-01-26T04:10:52.000Z","dependencies_parsed_at":"2024-12-14T22:22:34.416Z","dependency_job_id":"5de1912d-8889-4e9c-b792-d5dc73a63684","html_url":"https://github.com/Mykhis/Slient-URL-Exploit","commit_stats":null,"previous_names":["mykhis/slient-url-exploit"],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Mykhis%2FSlient-URL-Exploit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Mykhis%2FSlient-URL-Exploit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Mykhis%2FSlient-URL-Exploit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Mykhis%2FSlient-URL-Exploit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Mykhis","download_url":"https://codeload.github.com/Mykhis/Slient-URL-Exploit/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245052623,"owners_count":20553161,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cve","cve-2021-44228","cve-scanning","exploit","exploit-code","exploit-database","exploit-development","exploit-exercises","exploit-kit","exploitation","exploitation-framework","slient-doc-exploit","slient-exploit","slient-exploit-builder","slient-hta-exploit","slient-jpg-exploit","slient-pdf-exploit","slient-png-exploit","slient-url-exploit"],"created_at":"2024-11-29T20:10:07.247Z","updated_at":"2025-03-23T03:29:06.022Z","avatar_url":"https://github.com/Mykhis.png","language":"C#","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cdiv align=\"center\"\u003e\n\n# URL Exploit Hidden Downloader\n\nURL contamination and muted Java drive-by downloads can occur during various online activities such as browsing websites, opening emails, or interacting with malicious pop-up windows disguised as system error messages.\n\n- Key Points:\n  User Consent Illusion: Users may appear to have given \"consent\" for the download, but they are often unaware that malicious software is being downloaded.\n  Drive-By Downloads: While browsing a compromised website, users can fall victim to drive-by downloads, where malicious code is executed without their knowledge, exploiting browser or plugin vulnerabilities.\n  Execution of Malicious Code: The downloaded material can execute harmful code without the user's awareness, leveraging weaknesses in the browser or its plugins.\n  Drive-By Installation: Similar to drive-by downloads, this involves the setup and execution of malicious content by the attacker.\n- Attack Process:\n  Configuration: The attacker configures malicious material to execute the assault.\n  Hosting: The attacker hosts the malicious content on a personal server or compromises a legitimate website to distribute the content.\n  Client Interaction: When the content loads, the attacker analyzes the client's trace to craft code that exploits specific vulnerabilities.\n  Exploitation: The attacker uses these vulnerabilities to initiate the drive-by download attack.\n- Techniques Used:\n  API Exploitation: Exploiting API calls intended for plugins.\n  Shell Code Injection: Writing shell code into memory and using browser or plugin vulnerabilities to execute it, allowing further malicious actions like data exfiltration or malware deployment.\n\n## How to Use\n\n- Download the project to your computer as zip\n- Extract Project to Folder.\n- Make Sure You Have Visual Studio Installed on Your Computer\n- [Click if Visual Studio is Not Installed](https://visualstudio.microsoft.com/en/thank-you-downloading-visual-studio/?sku=Community\u0026channel=Release\u0026version=VS2022\u0026source=VSLandingPage\u0026passive=false\u0026cid=2030)\n\n### Visual Studio :\n\n1. Open the solution file (.sln).\n2. Select **Build Solution** from the **Build** menu or press `Ctrl+Shift+B` to compile the project.\n3. When the build is complete, select **Start Without Debugging** from the **Debug** menu or press `Ctrl+F5` to run the project.\n\n- URL Exploit Builder Now Available\n\n## Features\n\n- URL Contamination (Subtle Java Drive By)\n- Universally Adaptable across Web Browsers\n- Universally Compatible with Java Variants\n- Seamlessly Propagates via Social Media Channels: Facebook, Gmail, Yahoo, Hotmail, and more.\n- URL Contamination is furnished with pre-embedded payloads and an array of shellcode presets, affording you the freedom to select according to your discerning palate.\n- Universally Compatible with Web Servers such as Apache, Xampp, Nginx, IIS, and their ilk.\n- Synchronizes harmoniously with Metasploit and its complete spectrum of post modules.\n\n## Photo\n\n![image](https://user-images.githubusercontent.com/106811566/171876892-04ae3235-c034-4815-b2f0-483a56c5782a.png)\n\n## Disclaimer\n\nThis source code is for educational purposes only.\n\n## License\n\nThis project is licensed under the MIT. For more information, see the [License](LICENSE).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmykhis%2Fslient-url-exploit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmykhis%2Fslient-url-exploit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmykhis%2Fslient-url-exploit/lists"}