Skip to content

Instantly share code, notes, and snippets.

View jakiki6's full-sized avatar
🐱

Laura Kirsch jakiki6

🐱
64 followers · 205 following
  • Germany
  • 12:28 (UTC +02:00)
View GitHub Profile
@Al-Azif
Al-Azif / status-update.md
Created May 3, 2024 23:42

Lots of stuff going on in my personal life the last few months. An immediate family member went from completely independent, at the end of February, to bedridden in a two week span and given a death sentence diagnoses. Part of their wishes was minimal people knowing/visiting during the process, but they passed this Monday and the obituary was published today (Some people I know IRL know *this* is me so I couldn't post any of this before). They were a huge part of my life, a central part of my entire family, all my friends knew them, and I had seen them nearly daily since I stopped traveling for work three years ago. So this is a huge event for me. A few people in the PS community knew about it because I didn't have time to try and make some made up excuse for my absence the times I was able pop online the last few months, I appreciate they kept it to themselves (If they did... I haven't been around to see if they did).

Add to this there's been a local "natural" disaster on their property, that I'm now part

@amaddio
amaddio / ansible-script-to-check-for-CVE-2024-3094-vulnerability.yml
Created April 2, 2024 10:58
CVE-2024-3094_check.sh
---
- hosts: all:!localhost
gather_facts: no
tasks:
- name: run vulnerabilty check script
ansible.builtin.script: CVE-2024-3094_check.sh
register: cmd_result
- name: get version of
ansible.builtin.shell: apt-cache policy liblzma5
register: version_of_liblzma5
@sgammon
sgammon / gist:ec604c3fabd1a22dd3cdc381b736b03e
Created March 31, 2024 03:25
XZ mitigation
There appears to be a string encoded in the binary payload:
https://gist.github.com/q3k/af3d93b6a1f399de28fe194add452d01#file-hashes-txt-L115
Which functions as a killswitch:
https://piaille.fr/@zeno/112185928685603910
Thus, one workaround for affected systems might be to add this to `/etc/environment`:
```
@thesamesam
thesamesam / xz-backdoor.md
Last active July 25, 2024 09:00
xz-utils backdoor situation (CVE-2024-3094)

FAQ on the xz-utils backdoor (CVE-2024-3094)

This is a living document. Everything in this document is made in good faith of being accurate, but like I just said; we don't yet know everything about what's going on.

Background

On March 29th, 2024, a backdoor was discovered in xz-utils, a suite of software that

@TuxSH
TuxSH / k11_latest_n3ds.cpp
Last active May 15, 2024 01:39
Complete 3DS kernel decompilation (11.14-latest N3DS Kernel11, with labels for all symbols, and comments)
This file has been truncated, but you can view the full file.
/* This file was generated by the Hex-Rays decompiler.
Copyright (c) 2007-2020 Hex-Rays <info@hex-rays.com>
Detected compiler: GNU C++
*/
#include <defs.h>
//-------------------------------------------------------------------------
@jakiki6
jakiki6 / keccak.c
Created March 26, 2024 13:08
Formatted https://raw.githubusercontent.com/XKCP/XKCP/master/Standalone/CompactFIPS202/C/Keccak-more-compact.c
#define FOR(i, n) for (i = 0; i < n; ++i)
#define ROL(a, o) ((((u64)a) << o) ^ (((u64)a) >> (64 - o)))
#define rL(x, y) load64((u8*)s + 8 * (x + 5 * y))
#define wL(x, y, l) store64((u8*)s + 8 * (x + 5 * y), l)
#define XL(x, y, l) xor64((u8*)s + 8 * (x + 5 * y), l)
typedef unsigned char u8;
typedef unsigned long long int u64;
typedef unsigned int ui;
@jakiki6
jakiki6 / binary_split.c
Created March 25, 2024 17:40
#include <stdio.h>
#include <gmp.h>
void binary_split(mpz_t a, mpz_t b, mpz_t Pab, mpz_t Qab, mpz_t Rab) {
mpz_t c;
mpz_init(c);
mpz_add_ui(c, a, 1);
if (mpz_cmp(b, c) == 0) {
mpz_mul_ui(Pab, a, 6);
@jakiki6
jakiki6 / gist:2d1a5cc3e42472d900bda4a32c14d8d7
Created February 13, 2024 11:58
turing.py
import math
def _pair(x, y):
return (((x + y) * (x + y + 1)) >> 1) + y
def decode(s):
states = []
for state in s.split("_"):
e0 = [int(state[0]), state[1].lower(), ord(state[2].lower()) - 97]
if e0[2] == 25:
@marcan
marcan / ecc_crack.py
Created January 9, 2024 10:23
import struct, time
## This experiment demonstrates that the claimed "hash" (that is not a hash) used
## by the L2 cache ECC debug feature used by Operation Triangulation is not secure,
## and can be trivially reverse engineered by anyone who owns one of the machines
## with the hardware (such as any M1 Mac), in seconds to days. Therefore, this proves
## that no "insider" access or leak is necessary to obtain this table, and that the
## attackers most likely did exactly the same thing.
## This is the "black box", i.e. the hardware: The table is not exposed to the caller.
class BlackBox:
@Spottedleaf
Spottedleaf / Starlight 1.20.md
Last active July 25, 2024 04:22
The future of the Starlight mod

Final change of plans (March 8, 2024)

I don't see that many people are using Starlight on modern versions anymore. As such, I don't see any reason to continue to maintain the mod versions, given that they do have real mod conflict issues with other mods. Starlight is also not neccessary to use on 1.20.x anyways.

Starlight may make a return in a future project of mine, but for now I am ceasing to upload new mod versions and commit updates to the github. If you want Starlight on the server, you will need to use Paper or one of its derivatives.