A simple hexdump module for Python.
The preferred installation method is:
pip install simple-hexdump
Alex A. NeatMonster
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| @file patmake.py | |
| @brief Creates a pattern file from a database | |
| @author neat | |
| """ | |
| import os | |
| import idautils | |
| import ida_bytes | |
| import ida_funcs |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package fr.aumgn.motd; | |
| import java.util.ArrayList; | |
| import java.util.List; | |
| import java.util.Random; | |
| import org.bukkit.Bukkit; | |
| import org.bukkit.event.EventHandler; | |
| import org.bukkit.event.Listener; | |
| import org.bukkit.event.server.ServerListPingEvent; |
NeatMonster
/ fdupes.py
Created
September 2, 2022 08:47
Simple and fast utility to find duplicated files
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import collections | |
| import os | |
| import sys | |
| import hashlib | |
| paths = [] | |
| for root, dirs, files in os.walk(sys.argv[1]): | |
| for file in files: | |
| paths.append(os.path.join(root, file)) |
NeatMonster
/ anonymize_idb.py
Created
March 12, 2019 11:08
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import ida_netnode | |
| """ | |
| You can also switch the shell into IDC mode and enter del_user_info(). | |
| You can also edit your `~/ida-x/cfg/ida.cfg` and set `STORE_USER_INFO` to `NO`. | |
| """ | |
| # This will replace the original user blob with the evaluation version blob. | |
| ORIGINAL_USER = \ |
NeatMonster
/ preloaded_data.txt
Last active
January 24, 2021 22:56
Unpacking Chromium's preloaded_data.pb (from https://github.com/chromium/chromium/blob/master/chrome/browser/resources/media/mei_preload/preloaded_data.pb)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 7plus.com.au,0 | |
| 720p-izle.com,0 | |
| 1plus1tv.ru,1 | |
| 18av.mm-cg.com,1 | |
| 123movies.net,1 | |
| 159i.com,1 | |
| 1000mg.jp,1 | |
| 101.ru,1 | |
| 10.16.100.244,1 | |
| khoai.tv,0 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Decoding. | |
| bytes_t crypt = {120, 156, 251, 255, 127, 100, 3, 0, 8, 0, 255, 1}; | |
| bytes_t plain(196864); | |
| z_stream stream; | |
| inflateInit(&stream); | |
| stream.next_in = crypt.data(); | |
| stream.avail_in = crypt.size(); | |
| stream.next_out = plain.data(); | |
| stream.avail_out = plain.size(); | |
| int ret = inflate(&stream, Z_FINISH); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import frida, sys | |
| images = {} | |
| def on_message(message, data): | |
| global image | |
| if message['type'] == 'send': | |
| if message['payload'].startswith('['): | |
| message = message['payload'] | |
| save = message[message.index(']')+1:] |
NeatMonster
/ copy_stuff.py
Created
March 12, 2020 10:12
Contextual menu to enable copying as UUID/bytes list/hex string
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import uuid | |
| import ida_bytes | |
| import ida_hexrays | |
| import ida_idaapi | |
| import ida_kernwin | |
| from PyQt5.Qt import QApplication | |
| class Plugin(ida_idaapi.plugin_t): |
NeatMonster
/ extract_kernel.py
Last active
November 15, 2019 08:52
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| import sys | |
| from construct import * | |
| BOOT_IMG_HDR = Struct( | |
| "magic" / Const(b"ANDROID!"), | |
| "kernel_size" / Int32ul, | |
| "kernel_addr" / Int32ul, | |
| "ramdisk_size" / Int32ul, |
NewerOlder