aus aus
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <Windows.h> | |
| #include <intrin.h> | |
| #include <string> | |
| #include <TlHelp32.h> | |
| #include <psapi.h> | |
| BOOL PatchTheRet(HMODULE realModule) { | |
| // Get primary module info |
0xhexmex
/ Get-KerberosKeytab.ps1
Created
February 14, 2019 21:50
— forked from raandree/Get-KerberosKeytab.ps1
Parses Kerberos Keytab files
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| param( | |
| [Parameter(Mandatory)] | |
| [string]$Path | |
| ) | |
| #Created by [email protected] | |
| # | |
| #Got keytab structure from http://www.ioplex.com/utilities/keytab.txt | |
| # | |
| # keytab { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $dotnetpath = "/usr/local/share/dotnet/dotnet"; | |
| $sharpgenpath = "/Users/dtmsecurity/Tools/SharpGen/bin/Debug/netcoreapp2.1/SharpGen.dll"; | |
| $temppath = "/tmp/"; | |
| beacon_command_register("sharpgen", "Compile and execute C-Sharp","Synopsis: sharpgen [code]\n"); | |
| alias sharpgen{ | |
| $executionId = "sharpgen_" . int(rand() * 100000); | |
| $temporaryCsharp = $temppath . $executionId . ".cs"; | |
| $executableFilename = $temppath . $executionId . ".exe"; |
curi0usJack
/ msbuild_ghostpack_seatbelt.txt
Created
October 25, 2018 10:21
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003"> | |
| <Target Name="NotSubTee"> | |
| <BusinessTime /> | |
| </Target> | |
| <UsingTask | |
| TaskName="BusinessTime" | |
| TaskFactory="CodeTaskFactory" | |
| AssemblyFile="C:\Windows\Microsoft.Net\Framework\v4.0.30319\Microsoft.Build.Tasks.v4.0.dll" > | |
| <ParameterGroup/> | |
| <Task> |
esoterix
/ callback.c
Last active
April 30, 2025 02:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| void InstrumentationCallback(CONTEXT *context) | |
| { | |
| TEB *teb = NtCurrentTeb(); | |
| context->Rip = teb->InstrumentationCallbackPreviousPc; | |
| context->Rsp = teb->InstrumentationCallbackPreviousSp; | |
| context->Rcx = context->R10; | |
| // Prevent recursion | |
| if (!teb->InstrumentationCallbackDisabled) { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Not secure by any means, just a PoC for XOR'ing data using powershell | |
| # Credit to http://stackoverflow.com/questions/3478954/code-golf-xor-encryption | |
| $enc = [System.Text.Encoding]::UTF8 | |
| function xor { | |
| param($string, $method) | |
| $xorkey = $enc.GetBytes("secretkey") | |
| if ($method -eq "decrypt"){ |
bfg100k
/ snapRAID_helper.sh
Last active
February 23, 2025 19:56
Bash helper script to help with the automation of routine snapRAID tasks. Add it as a cron job to automate the routine tasks of running sync and scrub. Script will optionally send you email of status and issues encountered during the run.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ####################################################################### | |
| # This is a helper script that keeps snapraid parity info in sync with | |
| # your data and optionally verifies the parity info. Here's how it works: | |
| # 1) It first calls diff to figure out if the parity info is out of sync. | |
| # 2) If parity info is out of sync, AND the number of deleted files exceed | |
| # X (configurable), it triggers an alert email and stops. (In case of | |
| # accidental deletions, you have the opportunity to recover them from | |
| # the existing parity info) | |
| # 3) If partiy info is out of sync, AND the number of deleted files exceed X |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # fair-queue based settings for EdgeRouter Lite traffic shaping | |
| # | |
| # download is typically 30 and change. everything can burst to 100% | |
| # of bandwidth, priority rules keep the garbage in check | |
| set traffic-policy shaper download | |
| set traffic-policy shaper download bandwidth 30Mbit |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include "stdafx.h" | |
| #define DB(_val_) __asm __emit (_val_) | |
| #define INVALID_SYSCALL (DWORD)(-1) | |
| // code selectors | |
| #define CS_32 0x23 | |
| #define CS_64 0x33 |
zenoamaro
/ hst.py
Last active
May 16, 2017 13:14
— forked from takeshixx/hb-test.py
Testing tool for analysis of Heartbleed vulnerability (CVE-2014-0160).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # Heart-shaped tool | |
| # ================= | |
| # Testing tool in demonstration of CVE-2014-0160. | |
| # Heavily derived from code by Jared Stafford ([email protected]). | |
| # This version by: @zenoamaro, <zenoamaro at gmail dot com> | |
| # Hits the Heartbleed vulnerability on a hostname. |
NewerOlder