Skip to content

Instantly share code, notes, and snippets.

View cmartinbaughman's full-sized avatar

Chris Baughman cmartinbaughman

33 followers · 18 following
  • TE Connectivity
  • USA
View GitHub Profile
@cmartinbaughman
cmartinbaughman / winnt-sec2008
Created October 22, 2012 16:57
Windows Security (New ways to crack the Win Password Hashes!
Password hashes are stored in the registry, in the key HKLM\Security\Sam. Normally you must have administrator privileges to access it. Even you are the local admin – you still have to assign manually full control permission for this subkey to yourself.
The juicy stuff physically is stored in two files:
C:\windows\system32\config\sam
and
C:\windows\system32\config\system
http://www.codeproject.com/KB/files/FDump.aspx is a tool that can dump file sectors directly from disk using logical offsets.
C:\windows\system32\config\sam and C:\windows\system32\config\system in target system (the second one is needed because of the “boot key” is stored there) so then we may process it somewhere else with Cain & Abel.
@cmartinbaughman
cmartinbaughman / Creating MIUI OTA patches
Created October 19, 2012 18:30
Creating MIUI OTA patches
(转)creating binary patch files (.p files) with bsdiff
I was looking through a .602 update.zip and noticed the .p files; I opened one up in notepad++ and saw that the file begins with "bsdiff" so did a search and found this tool:
http://www.daemonology.net/bsdiff/
bsdiff takes an original file and a modified file as input and creates a binary patch file.
bspatch takes an original file and a patch file as input and creates a modified file.
usage (windows):
@cmartinbaughman
cmartinbaughman / pegasusq.sh
Created August 10, 2012 18:57
PegasusQ Kernel Governor
#!/system/bin/sh
echo "98" > /sys/devices/system/cpu/cpufreq/pegasusq/up_threshold
echo "80" > /sys/devices/system/cpu/cpufreq/pegasusq/up_threshold_at_min_freq
echo "30000" > /sys/devices/system/cpu/cpufreq/pegasusq/sampling_rate
echo "1" > /sys/devices/system/cpu/cpufreq/pegasusq/sampling_down_factor
echo "5" > /sys/devices/system/cpu/cpufreq/pegasusq/down_differential
echo "4" > /sys/devices/system/cpu/cpufreq/pegasusq/freq_step
echo "384000" > /sys/devices/system/cpu/cpufreq/pegasusq/freq_for_responsiveness
echo "15" > /sys/devices/system/cpu/cpufreq/pegasusq/cpu_up_rate
@cmartinbaughman
cmartinbaughman / gist:2007597
Created March 9, 2012 17:13
HTC Evo 3D Dialer Codes (EPST)
Tested/Working:
##775# - EPST/PRL - PRL Settings
##786# - EPST - Status Menu
##3282# - EPST - Data Programming Menu (User Name, Advanced, Restore, Enable HFA, DSA Server, MMSC URL)
##33284# - Debug - Debug Menu – (Debug Screen, Test Calls, RC Data, HDR/1X Selection, Voice Privacy, DTMF Set, Korea Mode Set)
##3424# - Diagnostic - Connect to phone in diag mode
##2539# - EPST/A-Key - Data A key menu
##7738# - EPST/P_Rev - Protocol Revision
##8626337# - EPST/Vocoder - Unsure
##4772579# - Reset the GPS
@cmartinbaughman
cmartinbaughman / Evo3D_Root_OTA.md
Created February 12, 2012 15:53
HTC Evo 3D Un-Root Get & Install OTA & Re-Root!

####Un-Root Accept HTC OTA, then Re-Root Again, In 15 Minutes

Download: http://goo-inside.me/shooter/ruu/2.08.651.2

Rename the file to PG86IMG.zip then mount phone as drive and copy zip file to /sdcard/

Then open cmd prompt (Win32) or terminal (Linux/OSX) and carefully type:

  1. adb reboot bootloader
@cmartinbaughman
cmartinbaughman / handy_commands
Created October 25, 2011 20:38
Commands to remember...
#Cracking an FTP server (use whatever service you want THC Hydra supports lots!
hydra -L wordlist.txt -P passlist.txt 192.168.1.1 ftp
#Other handy THC Hydra commands~!
#Log in to ftp service with -l user and -p password:
./hydra -l john -p doe 192.168.0.1 ftp
#Log in to IMAP service using user wordlist with -L user.txt and the password -p secret:
./hydra -L user.txt -p secret 192.168.0.1 imap PLAIN