I hereby claim:
- I am seemirra on github.
- I am chrismirra (https://keybase.io/chrismirra) on keybase.
- I have a public key ASA7M6_OIvhCg_tUp4_WHjjdgx886wytH-l7EgXICsCvKgo
To claim this, I am signing this object:
SeeMirra
/ bpf.c
Created
February 21, 2018 05:57
— forked from msantos/bpf.c
Example of using bpf to capture packets
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <string.h> | |
| #include <fcntl.h> | |
| #include <err.h> | |
| #include <unistd.h> | |
| #include <sys/types.h> | |
| #include <sys/socket.h> |
SeeMirra
/ keybase.md
Created
November 23, 2017 09:01
SeeMirra
/ Get-ClrReflection.ps1
Created
September 25, 2017 03:43
— forked from dezhub/Get-ClrReflection.ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-ClrReflection | |
| { | |
| <# | |
| .SYNOPSIS | |
| Detects memory-only CLR (.NET) modules | |
| Author: Joe Desimone (@dez_) | |
| License: BSD 3-Clause | |
SeeMirra
/ replay_attack.py
Created
May 20, 2017 15:49
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import socket | |
| import time | |
| import ast | |
| def main(): | |
| backlog = open("eternalblue.replay").read().split("\n\n") | |
| backlog = [ast.literal_eval(i) for i in backlog] | |
| connections = [] | |
| start = time.monotonic() | |
| for i in backlog: |
SeeMirra
/ linux.sh
Created
January 12, 2017 22:16
— forked from marcan/linux.sh
Linux kernel initialization, translated to bash
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/boot/bzImage | |
| # Linux kernel userspace initialization code, translated to bash | |
| # (Minus floppy disk handling, because seriously, it's 2017.) | |
| # Not 100% accurate, but gives you a good idea of how kernel init works | |
| # GPLv2, Copyright 2017 Hector Martin <marcan@marcan.st> | |
| # Based on Linux 4.10-rc2. | |
| # Note: pretend chroot is a builtin and affects the current process | |
| # Note: kernel actually uses major/minor device numbers instead of device name |
SeeMirra
/ hint_calls.py
Created
January 8, 2017 18:35
— forked from williballenthin/hint_calls.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ''' | |
| IDA plugin to display the calls and strings referenced by a function as hints. | |
| Installation: put this file in your %IDADIR%/plugins/ directory. | |
| Author: Willi Ballenthin <william.ballenthin@fireeye.com> | |
| Licence: Apache 2.0 | |
| ''' | |
| import idc | |
| import idaapi | |
| import idautils |