Skip to content

Instantly share code, notes, and snippets.

hhc0null hhc0null

Block or report user

Report or block hhc0null

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@hhc0null
hhc0null / poc.js
Created Jul 29, 2019
Code Execution PoC for CVE-2019-9791
View poc.js
/*
Code Execution PoC of CVE-2019-9791 for practice of exploiting SpiderMonkey.
- Bug Finder: @saelo
- Target: 67fc2c30797036217de91cdb4b6d77a876bed7db^
- Reference: https://doar-e.github.io/blog/2018/11/19/introduction-to-spidermonkey-exploitation/
% build-release/bin/js67 --version
JavaScript-C67.0a1
% build-release/bin/js67 work/exploit-js67.js
[+] Successfully got the primitives!
View iroiro.sh
function peco-history-selection() {
BUFFER=$(history 1 | sort -k1,1nr | perl -ne 'BEGIN { my @lines = (); } s/^\s*\d+\*?\s*//; $in=$_; if (!(grep {$in eq $_} @lines)) { push(@lines, $in); print $in; }' | peco --query "$LBUFFER")
CURSOR=${#BUFFER}
zle reset-prompt
}
zle -N peco-history-selection
bindkey -M vicmd "^R" peco-history-selection
function select_pid() {
View exploit.py
#!/usr/bin/env python
from pathlib import PurePath, Path
from tempfile import NamedTemporaryFile
from itertools import islice, cycle
from hexdump import hexdump as hd
import binascii
import hashlib
import re
import os
View memo-for-cleaning-docker-images-and-containers.md
@hhc0null
hhc0null / memo-for-pip-in-ubuntu-1404.md
Created Mar 26, 2017
Memo for pip in Ubuntu 14.04
View memo-for-pip-in-ubuntu-1404.md
@hhc0null
hhc0null / exploit.py
Created Mar 21, 2017
A foolish solution for 0CTF 2017 diethard
View exploit.py
#!/usr/bin/env python2
import binascii
import collections
import hashlib
import itertools
import re
import os
import random
import shlex
View mini.disasm
mini: file format elf64-x86-64
Disassembly of section .init:
00000000004003c8 <_init>:
4003c8: 48 83 ec 08 sub $0x8,%rsp
4003cc: 48 8b 05 25 0c 20 00 mov 0x200c25(%rip),%rax # 600ff8 <_DYNAMIC+0x1d8>
4003d3: 48 85 c0 test %rax,%rax
@hhc0null
hhc0null / lshift.py
Last active Feb 16, 2017
__lshift__
View lshift.py
class Cell:
def __init__(self, *args):
self.stock = [*args]
def __lshift__(self, value):
self.stock.append(value)
return self
if __name__ == '__main__':
@hhc0null
hhc0null / Makefile
Last active Dec 11, 2016
SECON 2016 Online CTF Exp300 tinypad
View Makefile
CC = gcc
CFLAGS =-c -std=gnu11 -fstack-protector-all -fPIC
LDFLAGS = -Wl,-z,now -Wl,-z,relro #-pie
sources = tinypad.c pwnio.c
objects = $(sources:.c=.o)
solution= tinypad
.PHONY: clean
all: $(sources) $(solution)
You can’t perform that action at this time.