Kasimir123
Kasimir123
/ patch.py
Last active
July 25, 2023 16:34
Skeleton of the patch that is being applied to projects vulnerable to CVE-2007-4559. Based off of code from pip's unpacking.py.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| def is_within_directory(directory, target): | |
| abs_directory = os.path.abspath(directory) | |
| abs_target = os.path.abspath(target) | |
| prefix = os.path.commonprefix([abs_directory, abs_target]) | |
| return prefix == abs_directory |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from z3 import * | |
| # instantiate solver | |
| s = Solver() | |
| # flag length | |
| FLAG_LEN = 40 | |
| # create arguments | |
| args = [BitVec(f'args[{i}]', 32) for i in range(0,FLAG_LEN)] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Kasimir "Abraxus" Schulz 5/27/2022 | |
| #include "backend.h" | |
| #include "targets.h" | |
| namespace fs = std::filesystem; | |
| namespace fuzztest { | |
| bool InsertTestcase(const uint8_t *Buffer, const size_t BufferSize) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdlib.h> | |
| void print_char(char x) | |
| { | |
| if (x == 't') | |
| { | |
| exit(-1); | |
| } | |
| else if (x == 'c') |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import re | |
| print ("Welcome to Hangman, please enter a word which you would like to use for the game, and then enter how many failed guesses you wish to give to the players.") | |
| word = input("What is the word?") | |
| guesses = [] | |
| counter = int(input("How many missed guesses do you want to give the players?")) | |
| reveal = [] | |
| i = 30 | |
| for each in word: | |
| reveal.append("_") | |
| while i > 0: |