Skip to content

Instantly share code, notes, and snippets.

Avatar
🚫
no cooperation with ICE

0xabad1dea 0xabad1dea

🚫
no cooperation with ICE
View GitHub Profile
@0xabad1dea
0xabad1dea / dnparsefail.c
Created Aug 30, 2013
dropping mad 0day in super-relevant XINU
View dnparsefail.c
#include <stdio.h>
#include <string.h>
/*~ demonstration of unbounded conditions and integer wrap
bugs in a real networking stack by 0xabad1dea
dnparse() is taken from the XINU operating system
http://www.cs.purdue.edu/homes/dec/xlicense.html
slightly tweaked to compile as a unix userland thing ~*/
@0xabad1dea
0xabad1dea / rtlsdr-osx.txt
Created Jun 13, 2013
Build RTL-SDR on OSX with no tears
View rtlsdr-osx.txt
rtl-sdr build notes for OSX
using macports http://www.macports.org/
see http://sdr.osmocom.org/trac/wiki/rtl-sdr
sudo port install cmake
sudo port install libusb
sudo port install pkgconfig
sudo port install sox # for easy audio
git clone git://git.osmocom.org/rtl-sdr.git
cd rtl-sdr/
@0xabad1dea
0xabad1dea / tricksy.c
Last active Dec 17, 2015
A deceitful C program
View tricksy.c
// hello clever programmers, would you like to play a game?
// where's the bug?
// by 0xabad1dea :)
#include <stdio.h>
#include <string.h>
int main() {
char input[16] = "stringstring!!!";
char output[8];
@0xabad1dea
0xabad1dea / phppasswordfunctions.txt
Last active Dec 14, 2015
List of PHP functions that take password or key arguments
View phppasswordfunctions.txt
Here is a huge list of functions listed in the PHP manual which take an argument
which contains sensitive data, either directly or as an array element. Use it to
"audit" for statically embedded passwords in "your" codebase. Some of these are
very obscure/deprecated/whatever. The ones with "construct" in the name are
classes called in source like new foo("password");...
http://php.net/manual/en/function.hash-hmac.php
http://www.php.net/manual/en/function.curl-setopt.php
@0xabad1dea
0xabad1dea / vibespy.rb
Created Jul 4, 2012
Trivial skeleton script for seeing Vibe messages outside of your range
View vibespy.rb
#!/usr/bin/ruby
# trivial skeleton script for seeing Vibe messages that have a location and range that excludes you
# tested july 3rd, 2012
require 'rubygems'
require 'rest_client'
url = "https://v.zami.com/vibe_getsayings16-W4czD.php"
# new york city
lat = 40.664167
long = -73.938611
@0xabad1dea
0xabad1dea / crisscross.txt
Created Apr 26, 2012
Studio Mintaka's CrissCross Cable
View crisscross.txt
_ _
(_) _ | |
____ _ ____ _| |_ _____| | _ _____
| \| | _ (_ _|____ | |_/ |____ | *
| | | | | | | || |_/ ___ | _ (/ ___ | *
|_|_|_|_|_| |_| \__)_____|_| \_)_____| *
STUDIO MINTAKA : MANUFACTURER ID 0xABAD1DEA
___ ____ ____ ___ ___ ___ ____ _____ ___ ___
/ __)( _ \(_ _)/ __)/ __)\ / / __)( _ \( _ )/ __)/ __)
@0xabad1dea
0xabad1dea / ABI
Created Apr 5, 2012
0x10c Programming Notes
View ABI
On April 5 2012, #0x10c-dev agreed to the following standard ABI:
- Registers A, B, C are clobberable across calls
- Registers I, J, X, Y, Z are preserved across calls
- Return in A
- J is used for base stack pointer (preserving the value of SP before allocating
data for locals)