Framework to test robustness of browser and AV?
Some time ago (maybe more than 1 year) I remember I seen two nice projects, however (yes, I'm dumb sometimes :) I never had put it into my bookmark.
One of this projects / tools was a framework for client side "browser" attacks. Where they had implemented a common evil web page which detects technology the client use (java, flash, etc) and the browser itself (IE, FF) and try different vectors of exploits which match.
Someone know this project? Or someone related?
Please, no metasploit stuff. :)
The other, is somethings similar, but to test AntiVirus gateways, it was a framework contain dozen of different evil payloads for different antivirus. So we could test if we could compromise a AV gateway. Anyone aware of the link of the project?