hubert3
hubert3
/ iSniff-1266.py
Last active
August 29, 2015 13:56
View iSniff-1266.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| ''' | |
| iSniff-1266.py | |
| SSL man-in-the-middle tool / proof-of-concept exploit for CVE-2014-1266 | |
| ServerKeyExchange signature validation flaw patched in iOS 7.0.6 and Mac OS X 10.9.2 | |
| Successfully tested against iOS 7.0.4 devices |
hubert3
/ samsung_hash_crack.py
Last active
November 22, 2022 09:12
Python implementation of passcode hashing algorithm used on the Samsung Galaxy S4 GT-I9505 4.2.2
View samsung_hash_crack.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| ''' | |
| Python implementation of passcode hashing algorithm used on the Samsung Galaxy S4 GT-I9505 4.2.2 | |
| Correct PIN for hash and salt below is 1234. | |
| Get 40-character hash value in ascii hex format from file /data/system/password.key on the phone | |
| Get salt in signed numeric format by doing sqlite3 query SELECT value FROM locksettings WHERE name = 'lockscreen.password_salt' on /data/system/locksettings.db |
hubert3
/ touchid_hack_total.py
Last active
December 23, 2015 10:29
View touchid_hack_total.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| import requests, re | |
| btc_rate = 139.0 | |
| dollar_total = 0.0 | |
| btc_total = 0.0 | |
| page = requests.get('http://istouchidhackedyet.com/').text | |
| dollar_pledges = re.findall(r'-.+\$(\d+)', page) |
hubert3
/ gist:6483510
Created
September 8, 2013 10:03
View gist:6483510
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """ | |
| Decrypting proxy for Snapchat | |
| Based on mitmproxy + pysnap | |
| https://github.com/mitmproxy/mitmproxy | |
| https://github.com/martinp/pysnap | |
| """ |