Electronjs Vulnerability + Fix (2018)


#-----------------------------------------------------------------------------------------------#
#                https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000006                #
#-----------------------------------------------------------------------------------------------#
#                                       EXPLOIT-DB:43899                                        #
#                        URL:https://www.exploit-db.com/exploits/43899/                         #
#                                       EXPLOIT-DB:44357                                        #
#                         URL:https://www.exploit-db.com/exploits/44357/                        #
#      MISC:https://medium.com/@Wflki/exploiting-electron-rce-in-exodus-wallet-d9e6db13c374     #
#                    CONFIRM:https://electronjs.org/blog/protocol-handler-fix                   #
#            CONFIRM:https://github.com/electron/electron/releases/tag/v1.8.2-beta.4            #
#                                           BID:102796                                          #
#                          URL:http://www.securityfocus.com/bid/102796                          #
#-----------------------------------------------------------------------------------------------#
#                                  https://electronjs.org/apps                                  #
#-----------------------------------------------------------------------------------------------#

Electron, a popular web application writing platform underlying some extremely widespread software including Skype and Slack, is vulnerable to a critical remote code execution vulnerability.

Apps are only vulnerable if they run on Microsoft Windows and register themselves as the default handler for a protocol like myapp://. MacOS and Linux apps are not vulnerable. Referred to as a “Protocol Handler Vulnerability,” the problem has been assigned the number CVE-2018-1000006.

Protocols like slack:// make it so that users can click links from other software like a web browser and directly go to, for instance, the Slack app.

Several widely used apps are built on Electron, including Windows desktop apps for the encrypted messaging app Signal, the audio chat app Discord and the content management system WordPress. However, most of these apps don’t register themselves as the default handler for a protocol like myapp:// so they are not vulnerable. You can find a full list of Electron apps here to better understand the popularity of Electron, but it’s not a definitive list of apps impacted by this vulnerability.

The recently released Slack versions 3.0.3+ for Windows addresses the vulnerability, according to a Slack spokesperson who urged all users to upgrade immediately.

A Microsoft spokesperson confirmed the newest version of Skype mitigated the vulnerability.

Electron’s appeal is that developers can easily write an app using web technology like HTML, CSS and JavaScript instead of rewriting it multiple times in different languages for multiple platforms.

Electron published new versions of their software to fix the vulnerability on Tuesday. All developers are urged to upgrade immediately.

#----------------------------------------------------------------------------------------------------------------------#
List of apps:

Sharp-Tune
Lightweight Cross-platform music player.

Voice Notifies
Desktop app compatible with Google Voice

octopi-init
A Node.js & Electron application for easily configuring your freshly-imaged OctoPi microSD adapter

Reversee
Reverse Proxy Web Debugger

Notion
A new editor that blends notes, tasks, wikis in one app.

Nighthawk
Stealthy, simple, unobtrusive music player that stays out of your way.

RedP
A simple cross-platform music player

Cells
An Implementation of Conways Game of Life

Waqt
View current Islamic prayer times

Pullp
Dashboard for monitoring pull requests and reviews across your Github repos.

Abstract
A platform for modern design teams to work together.

Mindmapp
Draw effective mind maps in a few minutes.

ScreenAware Time Tracker
Automatically relate the time you spend in front of the computer to your projects or clients.

winds.yml
An open-source podcast & RSS desktop app

music-player
Open-Source Audio Player that supports a variety of formats

Sunder
A user-friendly graphical interface for Shamir's Secret Sharing.

MMRCalculator
A Minimalistic Rank Calculator For Rainbow Six: Siege

Standup Picker
A desktop application which can be used in Scrum teams to initiate the daily Scrum meeting.

Yosoro
Beautiful Cloud Drive Markdown NoteBook Desktop App.

PokerClock
Poker time & blind tracker.

Cleaver
Server provisioning and deployments made easy for you

c-ip
View your WLAN/Public IP without using a command line.

Taskade
Team task lists & notes.

Weatherapp
Cute, minimal weather app

ZNEON
Table Downloader for use with SAP® R/3®.

Z11&2
GPU Rapid Role Development system for use with SAP® R/3®.

ZLILITH
GPU Access Risk Analyzer for use with SAP® R/3®.

e-tools
A toolbox for developers. Color picker, code formatter, and more.

Punycode Converter
Convert non-ascii to Punycode and vice versa..

Course Hunt
Download free courses from coursehunters.net easily

ProSecrec
A secure vault for your important information

ThunderDocs
Unofficial Google Docs Desktop App

Wallpaper Viewer
Download wallpapers and set them as your desktop background.

ueli
This is a keystroke launcher for Windows and macOS.

Ride Receipts
Simple automation desktop app to download and organize your tax invoices from Uber.

Vue Calc
A Simple VueJS Calculator built with ElectronJS

amanote
Note-taking for lectures and presentations

Blockbench
A modern 3D model editor for cube-based models

Wharf
Tray app for viewing and killing local processes

Wildlink
The easiest way to earn some extra cash from links you already share. Wildlink is a tray utility that monitors your clipboard for eligible links to products and stores, then converts those links to shorter, profitable versions. When someone clicks through your links and makes a purchase, you earn a percentage of the purchase.

ProtegoPDF
A simple application to password-protect your PDF Documents

Lectrote
player for interactive fiction, or text adventure games.

gSubs
Desktop app that finds you the perfect subtitle match for your videos.

Joplin
A note taking and to-do application with synchronization capabilities. Also available on mobile and terminal.

Dotgrid
A simple vector illustration tool, that works by adding control points and drawing different line-types between them.

Left
A distractionless writing tool with auto-complete, a synonyms dictionary, writing statistics, markup-based navigation and a speed-reader.

Deplify
An intuitive deploy helper for macOS and Windows

BunqDesktop
A desktop implementation for the bunq API.

Pretzel
A menubar app that shows keyboard shortcuts based on your current app.

Diffuse
A music player which connects to your cloud/distributed storage

Container PS
This little app help you to manage your Docker containers

Crypto-Bot
Encrypt and decrypt your messages

Iperius Console
Monitor and Backup your pc remotely

Neko
A video player which translates Japanese subtitles

Playlist
A player for video lists and sharing with Chromecast.

Smallpdf
We make PDF easy.

Wakefy
Turn your Mac into a Spotify alarm clock.

Pile
Organize your piled work in one place.

Markdown-Explorer
Easily explore, view and edit markdown documentation of a file tree

Paymo Time Tracker
Manage and track your work time

MyLottery
a lottery software based on Electron and Angular

Checksum
Verify the integrity of your downloaded files.

Monerite
CPU Miner for Monero

Phreshistant
Simple cross-platform project manager and todo app.

Symphony
The secure, cloud-based communications platform that connects markets and individuals.

Buckets
Beautiful, private budgeting.

GramTools
collection of dev tools.

FreeMAN
Free, extensible, cross-platform file manager for power users.

Putler
Meaningful e-commerce analytics for online businesses

Keyfant Offline Password Manager
Cross-Platform Offline Password Manager

zuzu
Zawgyi <=> Unicode Converter that lives in your menu bar.

Video Hub App
Browse, search, and preview your videos

Vzl
Minimal Visualization Editor

Deckboard
Custom shortcut for your PC on your phone.

amipwned
Desktop app that utilizes the haveibeenpwned API.

MonteNote
Note taking application with a rich set of editing and management features.

MarkText
A realtime preview MarkDown Editor

ServPane
Manage Homebrew services from the menu bar

Janus Workspace
Organize all of your sites into one window.

StudyMD
Flashcards from Markdown.

Picpipe
Build screenshot-heavy annotated documentation, guides, user manuals and tutorials.

Final-Countdown
Generates a running clock counting down to the second of one's death.

MyPSN
unofficial desktop app for the My Playstation service

Instatron
Share your photos on Instagram like on your mobile phone

InfiniTex
LaTeX and WYSIWYG editor with productivity hacks.

Multiple File Manager
modify all of your files in a specified folder

PiQture
Screenshot tool

PopSQL
Modern, collaborative SQL editor for your team

Vocare HelpDesk
Vocare I.T. Support HelpDesk

Laravel Kit
Easy Laravel application management

ImageShrinker
Minify your images and graphics with just one drop. Autorenamed in the same place where it comes from.

Streamlabs OBS
Simple, powerful, and efficient live streaming software.

Musify
Simple, yet fast, music player for macOS.

Mercury
The budget planner of the 21st century.

Checksum Validator
Generate and validate checksums with ease.

Mobirise
Website Builder

Glass Browser
A floating transparent browser for Windows

Pomotroid
Simple and visually-pleasing Pomodoro timer.

Kinesis CI
Automated Testing and Continuous Integration for Tableau

Petal
Douban.FM Client With Extra - - -

Wexond
Extensible, fast and innovative web browser with Material UI

WriteBar
Distraction-free text editor, that displays focus text line right over the keyboard (on the Macbook Pro TouchBar).

Postbird
PostgreSQL GUI client

PhreshPlayer
Media player.

Ray
HTML-powered text editor for creating and organizing personal notes

AudioNodes
Modular audio production suite with multi-track audio mixing, audio effects, parameter automation, MIDI editing, synthesis, cloud production, and more.

WhatsApp
Free IM, voice & video calls

andCards
Coworking and event management software.

James Proxy
Web Debugging Proxy Application

Code Notes
A simple code snippet manager for developers built with Electron & Vue.js

PaperCubes
An App which converts your minecraft .schematic files into blueprints for papercraft

Dict
A simple dictionary application which can export history.

Inboxer
Unofficial, free and open-source Inbox by Gmail Desktop App

Zettlr
A supercharged markdown editor

hedgehog-cloud-browser
privacy browser in the cloud.

CUBA Studio
Specialized tool for rapid application development

DupFinder
Duplicate file finder and cleaner

Transee
Simple and useful tool for quick translation

Mocker
HTTP/HTTPS mock tool, support for Browser and local server

Pomotron
Pomodoro Timer in the App Tray.

Somiibo
Social media bot and automation tool.

Calcy
A simple and basic calculator app.

TodoKit
A project and issue tracking software.

Web Net
Chromium Web Browser

Updrive
upyun file manager

Wayward
Explore, build, and most importantly survive in these unforgiving lands. Wayward is a challenging turn-based, top-down, wilderness survival roguelike.

XMind ZEN
A whole new amazing mind mapping tool.

Netron
Viewer for neural network models

Alva
Design interactive products based on the same components your engineers are using.

Storaji
The Light/Responsive Inventory Management System.

Seton
tool for tracking Github issue across repositories

Zefenify
Ethiopian. Music.

Lifeboat
An easy way to launch Docker Compose projects with a graphical user interface

Manta
Painless invoicing with customizable templates

Jumble Password
Create a unique id or a password easily.

Panda 2
HTML5 Game Development Platform

Fenêtre
Picture in picture for your Mac.

Vade Mecum Shelf
Collection of utilities wrapped into one single app.

RateMyMovie
Search for info about movies and TV shows

MakerSCAD
Block based parametric 3D modeling

VivifyScrum
Scrum and Kanban Tool.

Syng
Chinese-to-English dictionary app and study toolset.

Chronos-timetracker
Desktop client for JIRA

WorkPuls
Employee monitoring and time tracking.

Keeper
Encrypts and decrypts your files with the password you specify

Poddycast
Podcast client to listen to all you favorite podcasts.

Kobiton
A powerful platform that lets you create the perfect test cloud to meet the demands of your mobile teams.

DigiExam
Digital assessments platform.

Turn Off App
Shutdown your computer at selected hour or after specifed time period available on Windows platform.

Free Chess Club
Play Online Chess on the Free Internet Chess Server!

DIPP
A simple image diff tool

SparkChess
Play chess against the computer or challenge your friends in multiplayer

Thomas
Simple pomodoro timer

Udeler
A cross platform application for downloading Udemy Courses

WWII Stats Viewer
View your Playstation, Xbox and Steam Stats

Time Zone Converter and World Clock
Calculate exact time anywhere in the world across time zones. Available as macOS app, Windows app, iOS app, Android app, Web app.

Skype
Free IM & video calls

Cromberg
Personal finance management application.

Synap
Intelligent platform for studying more effectively

Chronobreak
Extra faithful replication of the original Pomodoro technique.

Everdo
Task management (to-do) app for Linux, Windows and Mac. Privacy-focused, powerful, free.

Buttercup
Easy-to-use Password Manager

Signal
Private Messenger

luna
npm management through a modern UI

QBox
A tool for managing your Qiniu buckets.

minimalist
Bring only what you need.

YouTube To MP3
Convert and download YouTube videos as MP3s.

elcalc
Cross-platform calculator

Tropy
Research photo management

thrifty
Find freedom via fiscal responsibility.

Hueify
A controller for your Philip Hue lights

nfov
ASCII / ANSI art viewer for macOS powered by Electron

Particl
A Decentralized Privacy Platform with a suite of tools to enhance your online privacy

themebuilder
Bootstrap theme builder.

FontBase
Lightning fast, beautiful and free font manager for designers

GraphQL Playground
GraphQL IDE for better development workflows

TasksQ
Simple and easy Task management with co-workers, employees, friends or anyone else.

Dat
Peer to peer data sharing app built for humans

GraphiQL
A GUI for editing and testing GraphQL queries and mutations

ieaseMusic
Elegant NeteaseMusic desktop app, Rock with NeteaseMusic 🤘

CemUI
Powerful all-in-one frontend UI for the WiiU emulator, Cemu

WebCatalog
Run Thousands of Web Apps Like Real Apps

Widgetoko
Twitter stream client: built in C# with Bridge.NET

Serina
GUI for create translation files for i18next

TODU
Awesome, hackable to-do list.

Mailspring
Fast, efficient mail client for Mac, Windows, and Linux.

Translatium
Translate like a Pro

Patchwork
A decentralized messaging and sharing app built on top of Secure Scuttlebutt (SSB)

Punk
Alternative cross-platform Steam client for desktop

Mist Ethereum
Mist. Browse and use Ðapps on the Ethereum network.

NATTT
Not Another Time Tracking Tool

Ao
Elegant Microsoft To-Do desktop app

Node-RED
Flow-based programming for the Internet of Things

FotoJet
Free online designer and image editing tool.

Mockoon
Mock REST APIs in seconds

GitHoard
Hoard git repositories with ease

NodeJs Package Manager
An organizer of your npm & bower packages

Twitch
Fast and free communication for gamers

adminScheduler
Scheduling application for client/admin relationships

Autobeat Player
SoundCloud, YouTube and your local music united in one app.

jamovi
powerful statistical spreadsheet powered by R

Unofficial Zalo
The unofficial Zalo messaging app

TeamSQL
Multi-platform SQL Client - Extensible, Simple and Effortless

JumpFm
A file manager with Superpowers

Extraterm
Swiss army chainsaw of terminal emulators

weweChat
Unofficial WeChat client built with React, MobX and Electron.

PaintSupreme3D
Digital Painting. Editing. Animation. In 3D.

WAIL
Collection Based Personal Web Archiving

Auryo
Unofficial multiplatform SoundCloud® app for your desktop

Backlog
Simple desktop app for storing lists of items (todo, tasks, backlog items)

Tusk
Refined Evernote desktop app

Browserosaurus
Browser prompter for macOS.

TIM
manage issues with order

Shopify
Desktop App for Shopify ecommerce platform

Tunlookup
Translate selected text with a keystroke

Storm
Synchronizes files between computers, never gets tired. Oh, and no data limits either.

Reach Podcast Player
Simple RSS feed based podcast player

Messenger Demo Viewer
Demo Facebook Messenger bots without showing personal chats

Intu-Mind
Explore a galaxy of ideas

Source Me
A web development toolkit containing web packages, fonts, colors etc.

Xuanxuan IM
An open source IM resolution.

Tidy-up
Clean HTML/JS/CSS

Snake
Old Classic Snake Game

NubiDo
Powerful Task Management For Your Personal Productivity

devRantron
An unofficial open source client for devRant.io

Ripplectron
Desktop wallet for Ripple blockchain coins

pepefe
Unofficial desktop notification for free ebook from Packtpub

Appium Desktop
A cross-platform app which gives you the power of the Appium automation server in a beautiful and flexible UI.

Muno
Music app that combines Soundcloud & Youtube into one native Mac app

primitive.nextgen
Tool to redraw images using shapes (triangles, rectangles ...)

Imagine
Image optimizer

Clipboard Anywhere
Clipboard synchronizer app for macOS, Windows and Linux.

Oversetter
Translate text directly from your menubar.

ZenFocus
Time Management Tool Based Off the Pomodoro Technique

Themer
Generate editor themes, terminal themes, and matching desktop wallpaper from your set of colors.

cliptext
A simple clipboard manager for macOS.

ScienceFair
Search, collect, read and analyse scientific papers.

ProDoctor Medicamentos
Look up medicines, read their information leaflets and find alternatives.

Hoster
Hosts configuration tools

sloth
Clipboard manager that understands what you copy

perlotto
Minimalistic wrapper around Google Music and YouTube music services

poi
A browser for web-based game kantai-collection

Akiee
A Markdown-based task manager for hackers and people who build stuff.

jqi
The almighty jq processor wrapped in a graphical UI

DomTerm
Multi-pane terminal emulator.

Elements
Displays the periodic table

CashNotify
Monitor your Stripe accounts from your menu bar.

Visual Comic Reader
Modern Comic Reader for all platforms

autoEdit
Fast text based video editing

Street View Download 360
App for downloading 360° Street View images

Data Pixels Playground
Create Pixel Art Programmatically

Composercat
Graphical User Interface for the Composer package manager (PHP)

canSnippet
The missing snippet management tool for macOS.

Wanna
Implementation of a 21st century to-do list app.

Standard Notes
A simple and private notes app. Encrypted, open-source, and extensible.

SpotSpot
Spotify mini-player for macOS.

ODrive
Unofficial Google Drive app.

EasyTongue
Simple Translation App

P3X OneNote
Note-taking tool for Linux.

mStream
Music Streaming Server

WoWCrypt
World of Warcraft Database Browser

Circuit
Make your teamwork better

Code Story
Code documentation, redefined.

GitHub Desktop
Simple collaboration from your desktop

AstroPrint Desktop
Manage your 3D Printer offline and via the Cloud.

Media Mate
Media server/player/downloader - in one

Sandman
Smart sleep notifications

DockStation
Developer-centric application for manage projects based on Docker.

todometer
A meter-based to-do list.

Rebaslight
Easy to use video special effects editor

Figma
The collaborative interface design tool.

Phiewer
The standard media viewer for Mac

TEA Ebook
Application TEA Ebook pour Mac / Windows / Linux

Headset
Discover, collect and listen to music from YouTube

Tournamenter Manager
Manage your Tournament event and show Live views to public.

Justmd
a markdown editor

Testrec
Record, playback and export protractor tests in seconds

Wavebox
Previously WMail. Gmail, Google Inbox, Outlook, Office 365, Slack, Trello & more

Matrix Writer
Modern cross platform blog editor

MineTime
A universal calendar app with smart scheduling and time analytics features. Organize your Google, Exchange and Outlook.com calendars in one place.

System Designer
IDE for designing JavaScript applications driven by the model

Ansel
Digital image organizer powered by the web

PrexView
Convert data from XML or JSON to high quality documents in PDF, HTML or Image.

Alchemy
A drag-and-drop file converter for your menubar.

Surf
Organize your ideas and inspirations with ease

Gaucho
Configurable task launcher

PlayCode
Desktop client for Playcode Online Javascript Editor

Keeper Password Manager & Digital Vault
Protect and manage your passwords, private documents and other confidential information.

Buka
EBook Management

Markdown Office
Office for teams using Google Drive

Pomolectron
A Pomodoro app in your menubar/tray.

Short.cm
An app for making short links and screenshots on your custom domain

MeisterTask
A Kanban board based task manager for single persons and teams.

Fudget
The budget planner you can actually use

NeutrinoMetrics
Analytics for apps made with electron

Boostnote
Simple note-taking app for programmers

Sejda PDF Desktop
Pleasant and productive PDF software that you'll love to use

MarkSearch
Desktop bookmarking app.

Caption
Find the right subtitles. Easy.

Eagle
Organizing Ideas Has Never Been Easier

Gravit Designer
A vector based design tool similar to sketch or figma.

BrowserDispatcher
Sends link to the right browser depending on a set of predefined rules

Katana
Open-source screenshot utility that lives in your menubar

Epictask
An Open Source + Extensible Github Issue Management App

gitmoji
An emoji guide for your commit messages

nuclear
Multiplatform music player that streams from multiple sources

Soundkeys
Souncloud delivered in a wrapper with a mini player

devdocs-app
A full-featured desktop app for DevDocs.io.

Voltra
A modern, hi-def, distraction-free music player

Socket.io tester
Test your socket.io server, while developing

Bdash
Simple business intelligence application.

AiTing
A simple and beautiful music and book player.

Missive
The one app for team email and chat.

Lepton
Open-source snippet manager powered by GitHub Gist.

Whatever
Unofficial Evernote client for Linux desktop

appear.in
Unofficial desktop client for appear.in

Fog
Unofficial overcast.fm podcast app.

Tèsèvè
A simple static webserver, in an app.

Wantedly Chat
Business chat tool that will boost productivity for your team

ColorPicker
A mininal but complete colorpicker desktop app

Jukeboks
Fast viewer

Headlines
View the latest news headlines with categories

CryptoSeed
Secure your bitcoin recovery seed.

Zector
Vector Graphics tools suite.

SwitchHosts
Manage and switch your hosts files.

Coypu
Text-editor-like weekly planner

Opale Messenger
Facebook Messenger wrapper with an android-like bubble

Lionshare
Simple cryptocurrency price and portfolio monitor for macOS

Cerebro
Productivity booster with a brain

Illyriad
4X Grand Strategy MMO Game

ReqView
Simple yet powerful software and system requirements management tool.

GitBook
Editor for a modern publishing toolchain based on Git

Batcave
A dark-themed chat app

healthi
Your mac's battery doctor

Papyrus
Unofficial Dropbox Paper app

Shapespark
Create WebGL virtual tours from 3D models.

CovePDF
Free PDF reader with password protection.

Youtube-mp3
Convert a youtube video to mp3 and download it

Zazu App
A fully extensible and open source launcher for hackers, creators and dabblers.

Shift
Switch between multiple Gmail, Calendar and Drive accounts with ease.

Skrifa
A simple word processor build with web technologies.

Deckard AI
Software team assistant that makes code talk

MongoDB Compass
The MongoDB GUI

Proposales
Create, deliver and monitor business proposals online

Inpad
A Polished Notes App with Github Flavored Markdown

Hawk Eye
A useful app for GitHub Notifications

Destroyer
Open-Source Lossless Audio Player

Cumulus
A SoundCloud player that lives in your menubar

Minta
Generate regular expressions

Deepnest
Automatic vector nesting for laser cutters

i5sing
A simple music client for 5sing.kugou.com

Remind
Send quick, simple messages to any device—for free.

Riot
A glossy Matrix collaboration client for the web

xcel
An Ultimate EXCEL Data Filter

cloudtag
Sharing files, easier.

fangyuanjian
a collaboration and messaging app for small-to-medium sized businesses.

Manageyum
One desktop app to manage Trello, Slack, Whatsapp, Zendesk and more...

GIFBar
A system tray icon that helps you find the perfect GIF

WoW Stat
World of Warcraft server uptime monitor

ffftp
A minimal FTP client for casual users

ndm
npm desktop manager

Galeri
A perpetual artwork streaming app

Electro
Open Source DJ App

Gitscout
A beautiful and optimized GitHub Issues experience for macOS

Whale
Unofficial Trello app

Quail
Unofficial esa.io app

VK Messenger
Simple and Easy App for Messaging on VK

Medley
Programming note taking redefined

Cloud Commander
Orthodox web file manager with console and editor

Hardinfo
Collect and share information about your computer's hardware

TIDAL
Music streaming service

WhereDat
Search your business apps simultaneously

sheepChat
Multi-chat for streamers

Open Stage Control
Libre and modular OSC / MIDI control surface

OpenBazaar
Decentralized p2p marketplace for Bitcoin

Flow
Simple Project Management Software For Teams

GrabCAD Print
Professional 3D printing made easy and accessible

Colibri
Modern browser without tabs

itch
The best way to play your itch.io games

Alduin
An RSS, Atom and JSON feed reader

Dext
JavaScript launcher

Treevea
Your PowerPoint® assistant - easily search and reuse all your contents

LosslessCut
GUI tool for lossless trimming / cutting of videos using ffmpeg

Wonder Reader
A digital comic book reader

nteract
Interactive literate coding notebook

englishextra-app
English Grammar for Russian Speakers

Airtame
Wireless HDMI

Beaker Browser
An experimental P2P browser

ChatWork
Group chat for global teams

--shots
Cross-platform application for creating screenshots.

TagFlow
Cross-platform file manager with clever tags

Mongoclient
Featured mongodb management tool

Zeplin
Collaboration app for designers and developers

Donut
Dead-simple cross-platform cryptocurrency tracker!

Vagrant Manager
Menu bar app for managing your vagrant machines.

Sencha Themer
Theming tool to rapidly style Ext JS applications by creating custom themes using graphical tools – without writing code.

Sencha Inspector
Debugging tool for troubleshooting and improving performance of Ext JS and Sencha Touch applications.

Sencha Architect
The Ext JS visual app builder for developing cross-platform HTML5 applications on desktop and mobile devices.

Elite Journal
Browse the Elite: Dangerous journal easily.

DBGlass
Simple cross-platform PostgreSQL client

Hyper
HTML/JS/CSS Terminal

Kap
An open-source screen recorder built with web technology

Now Desktop
Deploy your web app or API right from the tray menu

Inkdrop
Notebook app for Markdown lovers

Hive
Home for busy teams

Wallapatta
Markdown like editor with a layout inspired by Edward Tufte

Flex Browser
Hackable and modular web browser!

Shortexts
Shortcuts for texts you copy frequently, folders and emojis

Forestpin Analytics
Financial data analytics tool for businesses

Ling
REST Client

(Un)colored
Next generation desktop rich content editor that saves documents with themes. HTML & Markdown compatible. For Windows, OS X & Linux.

quickcalc
Menubar Calculator

Amium
A work collaboration product that brings conversation to your files.

Soube
Simple music player.

Temps
A simple but smart menubar weather app.

ANote
A Simple Friendly Markdown Note.

Netbeast
An Internet of Things javascript development platform that empowers developers to easily create and deploy IoT apps

Firebase Admin
A Firebase data management tool.

Mixmax
See every action on your emails in real-time. Compose anywhere.

Strawberry
Win Diners for Life. Know and serve them better with the all-in-one restaurant software suite.

Foco
Stay focused and boost productivity with Foco.

Cycligent Git Tool
Straightforward, graphic GUI for your Git projects.

Infinity
An easy way to make presentation.

uPhone
WebRTC Desktop Phone

SealTalk
Instant-messaging App powered by RongCloud IM Cloud Service and IM SDK.

Harmony
Music player compatible with Spotify, Soundcloud, Play Music and your local files

Timestamp
A better macOS menu bar clock with a customizable date/time display and a calendar.

Pexels
Search for completely free photos and copy them into your clipboard

Theme Juice
Local WordPress development made easy

Translation Editor
Translation files editor for INTL ICU messages (see formatjs.io)

KongDash
Desktop client for Kong Admin API

5EClient
5EPlay CSGO Client

Correo
A menubar/taskbar Gmail App for Windows, macOS and Linux.

Insomnia
REST API Client

Ramme
Unofficial Instagram Desktop App.

QMUI Web
Manage projects based on QMUI Web Framework.

Svgsus
Organize, clean and transform your SVGs

Moeditor
Your all-purpose markdown editor

SeaPig
A converter from markdown to html

GroupMe
Unofficial desktop client for GroupMe

Museeks
A simple, clean and cross-platform music player

Ionic Creator
Build amazing mobile apps, faster.

Gordie
The best app for your card collections!

Rambox
Free and Open Source messaging and emailing app that combines common web applications into one.

BlankUp
Markdown editor witch clarity +1

PamFax
A cross-platform app for sending and receiving faxes

Electorrent
An Electron remote client app for uTorrent server

PhoneGap
The open source framework that gets you building amazing mobile apps using web technology

Demio
A Webinar Platform Built for Inbound Marketing and Sales

UbAuth
App to help developers create access tokens for Uber applications with OAuth 2.0

WordMark
A lightweight blog publishing editor for Markdown writers

Marp
Markdown Presentation Writer

Glyphr Studio
Free font design tool for hobbyists.

BitCrypt
A simple File Encryption application for Windows. Encrypt your bits.

Booker
Text editor with the power or Markdown

Paws for Trello
Unofficial Trello client with native notifications, shortcuts, and more.

Trym
Beautiful small app for macOS to help you view, optimize and convert SVG icons

PhonePresenter
The Smartest Presentation Clicker

Yout
The new way to watch your playlists from YouTube on desktop.

ProtoPie
Code-free prototyping tool for smart devices

Vrap
360 media player

Jasper
A flexible and powerful issue reader for GitHub

GRAP
Business communication service

GaussSense Desktop
Experience the powerful prototyping toolkit instantly.

Socialcast
Enterprise social network platform.

WeFlow
A Web development workflow tool based on tmt-workflow

Freeter
The smartest way to work on your projects

Simplenote
An easy way to keep notes, lists, ideas and more.

Cozy Desktop
File Synchronisation for Cozy Cloud on Desktop and Laptop

Preserver
Notes organizer

HostsDock
Store, manage and switch your hosts easily

Subordination
A desktop app for translating and editing subtitles

Typetalk
A simply fun chat app for teams.

Pencil
A free and open-source tool for making diagrams and GUI prototyping

Deco IDE
React Native IDE with component management

Cypress
Automated test runner for web applications

Tweeten
A better TweetDeck experience

Vectr
Free Design App For Web + Desktop

JANDI
Team Communication for Businesses

Istrolid
Fleet Design Strategy Game

Collectie
Your personal galaxy of inspiration

Min
A smarter web browser

lightgallery
A modern, electron and nodejs based image viewer for Mac, Windows and Linux.

Soundnode
Unofficial desktop client for Soundcloud.

Negative
An app for making visual comparisons

TimeTable
A time table in your menubar!

PupaFM
douban.fm Music Desktop Player

DataProofer
A proofreader for your data

FlexPaper
Enhance, reflow and flip pdf documents into web publications

STAMP
Move tracks and playlists across various streaming services

Etcher
Flash OS images to SD cards & USB drives, safely and easily.

MJML App
Desktop wrapper around mjml language

Markdownify
This is a minimal Markdown Editor desktop app based on Electron.

GitKraken
The downright luxurious Git client for Windows, Mac and Linux

Sencha Test
Testing Ext JS and Sencha Touch apps with Jasmine

GF-Trader
Next generation securities trade application from GF Securities

FromScratch
Autosaving scratchpad.

WP Express
Rapid WordPress installer for local development

ironNode
A Node.js JavaScript Debugger

Cocos Creator
Game development tools

PileMd
Markdown Note App with Beautiful Markdown Editor and Local Syncing

Bitbloq
Help children create programs for a microcontroller or robot

Basecamp 3
A place to work + a way to work

Kaku
A highly integrated music player

PhotoScreenSaver
Windows screen saver that displays a photo slideshow

Plain Email
An app concept for efficient one-touch email processing

The Poker Timer
Best tournament clock

Tiliq
The next generation of professional business email

Criptio
Encrypt and decrypt files.

Sqlectron
A simple and lightweight SQL client desktop with cross database and platform support

Aipo.com
Communication tool to optimize the connection between people

Ghost
A professional publishing platform

Spectrum
Useful logging for developers

Shiba
Rich markdown live preview app with linter

Franz
Messaging app / former emperor of Austria, combining chat and messaging services into one application

DeckHub
TweetDeck style desktop client for GitHub

Crypter
Simple, convenient and secure encryption client

Tofino
Experimental web browser from Mozilla

Cryptocat
Free secure chat software

Datazenit
Modern database administration tool

MockingBot
The Missing Wireframing Tool For Mobile

Explorer
Statistics the easy way

Fastlane
Reserve an Uber from your Mac

BearyChat
Focused team communications

HTTPS Checker
Scan a website for HTTPS mixed content issues

TweakStyle
The next code editor

WebTorrent
The streaming torrent client

MakeAppIcon Desktop
Resizer for mobile app icons

Mattermost
Open source, private cloud Slack-alternative.

1Clipboard
A universal clipboard managing app that makes it easy to access your clipboard from anywhere on any device

Hain
An 'alt+space' launcher for Windows

World History AP
Help students study for the rigorous AP exam

Google Play Music Desktop Player
A beautiful cross platform Desktop Player for Google Play Music

Brave Browser
Web browser that automatically blocks ads and trackers

CatLight
Desktop build status notifications

Chronocube
Your rubik's cube solves

StopLight
Mock, document, and test your way to API nirvana

Pracontrol
Send awesome gCodes to your machine

TagSpaces
Your Hackable File Organizer

Superpowers — HTML5 2D+3D game maker
2D+3D game making for indies. Free and open source, finally

Argo
An open source trading platform

Postman
Build, test and document your APIs

Presets.io
Easy preset management for Adobe Lightroom

Remember
Business card management

Nimble
A simple but powerful Wolfram|Alpha menubar client for macOS

KeeWeb
Free cross-platform password manager compatible with KeePass

Turbo Download Manager
An open-source multi-threading download manager

Discord
All-in-one voice, text and video chat for gamers

Abricotine
Open-source Markdown editor built for desktop

Mongotron
Cross platform MongoDB management

Gala
A new and easier way of searching images

Hozz
A better way to manage your hosts

WordPress.com
A desktop app for WordPress

MdNote
Markdown notebook

Laverna
Write & organize Markdown

Caret
Markdown editor for Mac / Windows / Linux

Mancy
NodeJS REPLNodeJS REPL

Wire
Modern, private communications

Yhat Rodeo
An IDE for data science

SteelSeries Engine 3
A unified platform that supports nearly all your SteelSeries gear

Light Table
The next generation code editor

Gitify
Github notifications on your menu bar

Zoommy
Helps you find awesome free stock photos for your creative product or inspiration

Spreaker Studio
Create and discover podcasts

Kakapo
Ambient sound mixer to set a nice mood

Microstockr
Microstock photography made easy

Rocket.Chat
The ultimate open source web chat platform

JIBO
The world's first social robot

Mojibar
Emoji searcher menubar app

PopKey
The perfect GIF right at your fingertips

Yeoman
Scaffolding tool for webapps

Particle Dev
A professional IDE for Particle

Friends
Peer to peer chat

Visual Studio Code
Open source code editor developed by Microsoft

Kitematic
Run containers through a simple, yet powerful graphical user interface

Avocode
One workspace open to all designers and developers
Added
3 years ago

Slack
A messaging app for teams

Playback
Experimental video player

ScreenCat
WebRTC screensharing

Atom
A hackable text editor for the 21st Century

Nuclide
A unified developer experience for web and mobile development

#----------------------------------------------------------------------------------------------------------------------#
#                                                          FIX                                                         #
#----------------------------------------------------------------------------------------------------------------------#
#                                   https://electronjs.org/blog/protocol-handler-fix                                   #
#----------------------------------------------------------------------------------------------------------------------#
Protocol Handler Vulnerability Fix
January 22, 2018  zekezeke
A remote code execution vulnerability has been discovered affecting Electron apps that use custom protocol handlers. This vulnerability has been assigned the CVE identifier CVE-2018-1000006.

Affected Platforms
Electron apps designed to run on Windows that register themselves as the default handler for a protocol, like myapp://, are vulnerable.

Such apps can be affected regardless of how the protocol is registered, e.g. using native code, the Windows registry, or Electron's app.setAsDefaultProtocolClient API.

#----------------------------------------------------------------------------------------------------------------------#
#                                  macOS and Linux are not vulnerable to this issue.                                   #
#----------------------------------------------------------------------------------------------------------------------#

Mitigation
We've published new versions of Electron which include fixes for this vulnerability: 1.8.2-beta.5, 1.7.12, and 1.6.17. We urge all Electron developers to update their apps to the latest stable version immediately.

If for some reason you are unable to upgrade your Electron version, you can append -- as the last argument when calling app.setAsDefaultProtocolClient, which prevents Chromium from parsing further options. The double dash -- signifies the end of command options, after which only positional parameters are accepted.

app.setAsDefaultProtocolClient(protocol, process.execPath, [
  '--your-switches-here',
  '--'
])
Copy
See the app.setAsDefaultProtocolClient API for more details.

To learn more about best practices for keeping your Electron apps secure, see our security tutorial.

If you wish to report a vulnerability in Electron, email security@electronjs.org.
#----------------------------------------------------------------------------------------------------------------------#