一款Chrome插件
漏洞+案例介绍 -> https://shahjerry33.medium.com/exif-data-exposure-9bdd6c2c4f2a
对图片右键检测,存在和不存在都会弹窗
原理 -> 加载图像的二进制数据,然后检查前几个字节以查看是否存在Exif标识符
一般检测Exif漏洞 国内SRC不收 hackerone不收 Bugcrowd 50~100刀一个
forked from yuLinnnn/ExifScan
-
Notifications
You must be signed in to change notification settings - Fork 0
x3t2con/ExifScan
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
右键检测图片是否存在Exif漏洞
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published
Languages
- JavaScript 100.0%