Mohamed Adel d01a
d01a
/ decoding_guid.idc
Last active
October 30, 2022 21:55
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // to decode uuid and clsid in binaries to GUID form | |
| // idc script | |
| // invoked by typing GUID(uuid_address) or GUID(clsid_address) | |
| // credits to @ale_sp_brazil -> https://exploitreversing.com/ | |
| // script from mas_5 | |
| //-------------------------------------------------------------------- | |
| // sample output | |
| // DC>GUID(0x00000001800B1418) | |
| // {4590F811-1D3A-11D0-891F-00AA004B2E24} | |
| //--------------------------------------------------------------------- |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <windows.h> | |
| #include <tlhelp32.h> | |
| #include <iostream> | |
| #include <string> | |
| using namespace std; | |
| void PSList() { | |
| cout << "\nRunning Processes\n"; | |
| HANDLE hSnapShot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import idautils | |
| import idc | |
| import ida_kernwin | |
| import ida_ua | |
| # get a list of the instructions | |
| heads = idautils.Heads(idc.get_segm_start(idc.get_screen_ea()) , idc.get_segm_end(idc.get_screen_ea()) ) | |
| antiVM = [] |
d01a
/ IDA-gruvbox.css
Created
January 1, 2025 21:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /*modified version of https://github.com/can1357/IdaThemer/tree/master/themes/Gruvbox%20Dark%20Hard*/ | |
| @importtheme "dark"; | |
| CustomIDAMemo { | |
| qproperty-line-fg-default: #ebdbb2; | |
| qproperty-line-fg-regular-comment: #3c3836; | |
| qproperty-line-fg-repeatable-comment: #343332; | |
| qproperty-line-fg-automatic-comment: #2f2f2f; | |
| qproperty-line-fg-insn: #ebdbb2; | |
| qproperty-line-fg-dummy-data-name: #f1e6ca; |