epcnt19
/ get_title.py
Created
September 5, 2016 16:37
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #coding:utf-8 | |
| import sys | |
| from urllib import urlopen | |
| from bs4 import BeautifulSoup | |
| if __name__=='__main__': | |
| argvs = sys.argv | |
| """ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #coding:utf-8 | |
| import cv2 | |
| import os | |
| import sys | |
| import numpy as np | |
| import matplotlib.pyplot as plt | |
| from sklearn.decomposition import RandomizedPCA | |
| from sklearn import svm |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import java.io.InputStream; | |
| import java.net.URL; | |
| import java.net.URLConnection; | |
| import javax.xml.parsers.DocumentBuilder; | |
| import javax.xml.parsers.DocumentBuilderFactory; | |
| import org.w3c.dom.Document; | |
| import org.w3c.dom.NodeList; | |
| /* | |
| * 駅データのAPIサイト(http://www.ekidata.jp)からXMLデータを取得し,パースするプログラム. |
epcnt19
/ get_page.py
Last active
December 7, 2016 13:20
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # coding:utf-8 | |
| import json | |
| import base64 | |
| import urllib | |
| import urllib2 | |
| import time | |
| import tweepy | |
| from bs4 import BeautifulSoup |
epcnt19
/ iptables-basic-rule
Created
May 6, 2017 02:47
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT | |
| iptables -A INPUT -p icmp -j ACCEPT | |
| iptables -A INPUT -i lo -j ACCEPT | |
| iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT | |
| iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j ACCEPT | |
| iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport 443 -j ACCEPT | |
| iptables -A INPUT -j REJECT --reject-with icmp-host-prohibited |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ ./bin/exitmap dnspoison | |
| 2017-06-07 23:10:13,644 exitmap [INFO] Attempting to invoke Tor process in directory "/tmp/exitmap_tor_datadir". This might take a while. | |
| 2017-06-07 23:10:13,644 exitmap [INFO] No first hop given. Using randomly determined first hops for circuits. | |
| 2017-06-07 23:10:13,848 util [INFO] Tor Bootstrapped 0%: Starting | |
| 2017-06-07 23:10:15,837 util [INFO] Tor Bootstrapped 80%: Connecting to the Tor network | |
| 2017-06-07 23:10:15,837 exitmap [INFO] Successfully started Tor process (PID=30465). | |
| 2017-06-07 23:10:15,960 exitmap [INFO] Running module 'dnspoison'. | |
| 2017-06-07 23:10:17,148 modules.dnspoison [INFO] Domain whitelist: {'torrentfreak.com': [u'104.25.104.105', u'104.25.103.105'], 'www.youporn.com': [u'67.22.32.168'], 'blockchain.info': [u'104.16.55.3', u'104.16.54.3'], 'youporn.com': [u'67.22.32.168'], 'www.wikileaks.org': [u'95.211.113.154', u'141.105.69.239', u'95.211.113.131', u'195.35.109.53', u'141.105.65.113', u'195.35.109.44'], 'www.torproject.org': [u'89.45.235.21', u'138.201.14.1 |
epcnt19
/ setup_peda
Last active
September 20, 2017 14:34
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo apt-get install build-essential gcc-multilib git gdb | |
| git clone https://github.com/zachriggle/peda.git ~/peda | |
| echo "source ~/peda/peda.py" >> ~/.gdbinit |
epcnt19
/ injector.cpp
Last active
December 9, 2017 12:57
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include "stdafx.h" | |
| #include <iostream> | |
| #include <Windows.h> | |
| using namespace std; | |
| int main(int argc,char *argv[]) | |
| { | |
| int pid; | |
| char* dllpath = "C:\\users\\user\\documents\\visual studio 2015\\Projects\\injector\\x64\\Debug\\dllexample.dll"; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@ubuntu:/usr/local/DRAKBUF/drakvuf# sudo find . \( -name "*.cpp" -o -name "*.h" -o -name "*.ac" -o -name "*.am" \) -print | xargs grep -i "msrmon" | |
| ./configure.ac:AC_ARG_ENABLE([plugin_msrmon], | |
| ./configure.ac: [AS_HELP_STRING([--disable-plugin-msrmon], | |
| ./configure.ac: [Enable the MSRMON example plugin @<:@yes@:>@])], | |
| ./configure.ac: [plugin_msrmon="$enableval"], | |
| ./configure.ac: [plugin_msrmon="yes"]) | |
| ./configure.ac:AM_CONDITIONAL([PLUGIN_MSRMON], [test x$plugin_msrmon = xyes]) | |
| ./configure.ac:if test x$plugin_msrmon = xyes; then | |
| ./configure.ac: AC_DEFINE_UNQUOTED(ENABLE_PLUGIN_MSRMON, 1, "") | |
| ./configure.ac:MSRmon: $plugin_msrmon |
epcnt19
/ result.log
Last active
April 2, 2018 07:10
This file has been truncated, but you can view the full file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| DRAKVUF v0.5-a642efc | |
| Socketmon plugin requires the Rekall profile for tcpip.sys! | |
| poolmon,0,0xed1b85e0,notepad.exe,1,usbp,unknown_pool_type,140 | |
| poolmon,0,0xed1b85e0,notepad.exe,1,ExTm,unknown_pool_type,144 | |
| poolmon,0,0xed1b85e0,notepad.exe,1,IoUs,unknown_pool_type,16,nt!io,I/O SubSystem completion Context Allocation | |
| syscall,1 0xed1b81e0,svchost.exe,0,ntoskrnl.exe,NtQuerySystemInformation,4,IN,SYSTEM_INFORMATION_CLASS,SystemInformationClass,0x2,,,OUT,PVOID,SystemInformation,0x3c7fc18,,,IN,ULONG,SystemInformationLength,0x158,,,OUT,PULONG,ReturnLength,0x0,, | |
| filetracer,1,0xed1b81e0,svchost.exe,0,NtCreateFile,\??\PhysicalDrive0 | |
| syscall,1 0xed1b81e0,svchost.exe,0,ntoskrnl.exe,NtCreateFile,11,OUT,PHANDLE,FileHandle,0x3c7fa24,,,IN,ACCESS_MASK,DesiredAccess,0x100080,,,IN,POBJECT_ATTRIBUTES,ObjectAttributes,0x3c7fa58,,,OUT,PIO_STATUS_BLOCK,IoStatusBlock,0x3c7fa30,,,IN,PLARGE_INTEGER,AllocationSize,0x0,,,IN,ULONG,FileAttributes,0x0,,,IN,ULONG,ShareAccess,0x3,,,IN,ULONG,CreateDisposition,0x1,,,IN,ULONG,CreateOptions,0x60,, |
OlderNewer