defuse

# Little program for testing return from interrupt privilege check.
.intel_syntax noprefix

.text
.global main
main:

    # Print the CS
    mov eax, cs
    push eax

defuse

#!/usr/bin/env ruby
# Here's an EXTREMELY abstract environment where oi.js is broken.
# Assumptions:
#   - There are no asynchronous interupts
#   - Each line of javascript code takes 1 unit of time.
#   - The context switching quantum is 10
#   - millis() changes on every context switch.
#   - millis() ONLY changes during a context switch.
#
# Under these assumptions, let Q be the time remaining before the :wmlt loop

defuse

#!/usr/bin/env ruby
#
# There are N boxes numbered 1 to N. There are N balls numbered 1 to N.
# Balls can be put into boxes. How many ways can you put each ball in a box so
# that each ball's number is *different* from the number of the box it's in?
#
# Example for N=3:
#    
# RIGHT:
#

defuse

def factorial(n)
  product = 1
  1.upto(n) do |k|
    product *= k
  end
  return product
end

def choose(n,k)

defuse

<?php

/* Escaping Challenge: Make a PHP script that (Z:) generates JavaScript code
 * that generates an HTML page containing a PHP script that (goto Z) */

/* The purpose of this challenge is to demonstrate how complicated escaping can
 * get when you're trying to combine 4 different languages (PHP, JavaScript,
 * HTML, and string literals). */

function js_string_escape($data)

defuse

<?php
/*
 * This is the decoded version of Ballast Security's shell decoding challenge:
 * http://ballastsec.blogspot.ca/2013/01/first-of-many-encrypted-php-shell.html
 *
 * Original: http://pastebin.com/W92Q0Q9j
 * 
 * Decoding was done by @DefuseSec with a bit of help from @RiptideTempora.
 */
@error_reporting(0);

defuse

lines = [
  "ABCDEFGHIJFG",
  "ABIKLAKGCMAIHDJACKNKCKNMDH",
  "MADHDPACLDHIKH",
  "AILDQIGCRIPACKNGHPACLDSDKLDPD",
  "ALCIHPIQTIDCEAPAHIG"
]

ct = lines.join("")

defuse

str = "D0 1D 00 00 00 02 02 00 30 82 1D BD 06 09 2A 86 48 86 F7 0D 01 07 02 A0 82 1D AE 30 82 1D AA 02 01 01 31 0B 30 09 06 05 2B 0E 03 01 1A"

binary = str.split(" ").map { |x| x.to_i(16).chr }.join("")

0.upto(binary.length - 1) do |start|
  code = binary[start...binary.length]
  File.open("/tmp/foo.bin", "w") do |f| 
    f.write(code)
  end
  print `objdump -D -b binary -m i8086 -M intel /tmp/foo.bin`

defuse

#!/usr/bin/env ruby

# @DefuseSec's TrueCrypt Challenge Generator!
#
# This script generates a set of TrueCrypt "challenges." Volumes are created in
# different ways using secure 128-bit passwords to provide a challenge for
# anyone claiming TrueCrypt is backdoored. If there is a backdoor, then one
# should be able to use one of the published challenges to prove it.
#
# There are 5 different types of challenges:

defuse

<?php
// [LIB - Crypt Functions]
// (c) 2005-2013 unix-world.org - all rights reserved
// code release 2013-05-30

//##################################################### PREVENT S EXECUTION
if(A_HEADER_EXEC_RUNTIME != 'NetVisionOpenSource') {
	die('This PHP script: `'.htmlspecialchars(@basename(__FILE__)).'` cannot be executed directly !');
} //end if
//#####################################################