| /** | |
| * searches deep into an object recursively... | |
| * @param {Object} obj object to be searched | |
| * @param {any} searchValue the value/key to search for | |
| * @param {Object} [options] | |
| * @param {boolean} options.[searchKeys] whether to search object keys as well as values. Defaults to `true` if `serchValue` is a string, `false` otherwise. | |
| * @param {number} options.[maxDepth=20] maximum recursion depth (to avoid "Maximum call stack size exceeded") | |
| * @returns {string[]} Paths on the object to the matching results | |
| */ | |
| const findPaths = ( |
These are my notes on FireEye's yara rules for it's red team's tools.
These are the public projects that I could identify to be directly associated with a tool:
| Project | Source |
|---|---|
| AndrewSpecial | https://github.com/hoangprod/AndrewSpecial |
| BloodHound | https://github.com/BloodHoundAD/BloodHound |
| @Echo Off | |
| Call :Color A "######" \n E "" C " 21 " E "!" \n B "######" \n | |
| Pause >Nul | |
| Exit /B | |
| :Color | |
| :: v21 | |
| :: Arguments: hexColor text [\n] ... | |
| :: \n -> newline ... -> repeat | |
| :: Supported in windows XP, 7, 8. |
| CMD processes redirection from left to right. You want to first redirect 2 (stderr) to &1 (stdout), then redirect 1 (stdout) to something else. At this point stderr will still be redirected to the previous definition of stdout. The pipe will still work with the old definition of stdout (which now contains stderr). | |
| If you don't care about stdout then you can redirect to nul | |
| program.exe 2>&1 1>nul | find " " | |
| If you want to capture stdout to a file then redirect to a file | |
| program.exe 2>&1 1>yourFile | find " " |
| @echo off | |
| setlocal EnableExtensions EnableDelayedExpansion | |
| :: Setup | |
| set "ResultsFolder=results" | |
| set "ExportFile=output.txt" | |
| :: Verify that the Results folder exists | |
| if not exist "%ResultsFolder%\*" md "%ResultsFolder%" | |
| set "OutputFile=%ResultsFolder%\%ExportFile%" |
| @echo off | |
| setlocal EnableDelayedExpansion | |
| if "%~1"==":::" goto :spinnerThread | |
| :menuLoop | |
| <nul set /p menu=Select menu[1 or 2]= | |
| call :GetKey | |
| echo( | |
| echo Pressed '!key!' | |
| if !key!==1 call :menu1 |
| @echo off | |
| setlocal EnableExtensions | |
| for %%A in (*.url) do ( | |
| for /f "usebackq tokens=1,* delims==" %%X in ("%%~fA") do ( | |
| if /i "%%X"=="Url" ( | |
| echo(%%~nA = %%Y>>list.txt | |
| echo(%%Y | |
| ) | |
| ) | |
| ) |
| @echo off | |
| setlocal EnableExtensions DisableDelayedExpansion | |
| :: Find and Replace [Works with Special Characters] | |
| :: by David Ruhmann | |
| :: About | |
| :: This is a proof of concept to illustrate the difficulty and limitations in | |
| :: regards to the batch string replacement functionality. Delayed Expansion was | |
| :: not used as an exercise in showing the most common usage of batch. |
| @echo off | |
| setlocal EnableDelayedExpansion | |
| call :createSub | |
| call :echoWithoutLinefeed "=hello" | |
| call :echoWithoutLinefeed " world" | |
| exit /b | |
| :echoWithoutLinefeed | |
| > txt.tmp (echo(%~1!sub!) | |
| copy txt.tmp /a txt2.tmp /b > nul |
