Jonas Lejon jonaslejon

## gist:1242279
#!/usr/sbin/dtrace -C -s

#pragma D option quiet

proc::posix_spawn:exec-success,proc::__mac_execve:exec-success
{
this->isx64=(curproc->p_flag & P_LP64)!=0;
#define SELECT_64_86(x64, x86) (this->isx64 ? (x64) : (x86))
#define GET_POINTER(base, offset) (user_addr_t)SELECT_64_86(*(uint64_t*)((base)+sizeof(uint64_t)*(offset)), *(uint32_t*)((base)+sizeof(uint32_t)*(offset)))

## maildir2mbox.py
#!/usr/bin/env python
# -*- coding: utf-8 -*-
"""
Frédéric Grosshans, 19 January 2012
Nathan R. Yergler, 6 June 2010

This file does not contain sufficient creative expression to invoke
assertion of copyright. No warranty is expressed or implied; use at
your own risk.

## phantomjs_facebook.js
console.log("got here");
var page = require('webpage').create();

page.onConsoleMessage = function(msg) {
    console.log(msg);
};


page.open("http://facebook.com", function(status) {
    if ( status === "success" ) {

## TGDFileHash.c
/*
 *  TGDFileHash.c
 *  TagAdA: Tagging Advanced Application
 *
 *  Copyright © 2008-2010 The TagAdA Team. All rights reserved.
 *
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *

## pydbg_firefox.py
'''
Example taken from Gray Hat Python (book)
This script present a way to hook a DLL library in Firefox. For this example the script hook nspr4.dll which encrypt datas for SSL connection.

So we will be able to get the text before it is encrypted. Moreover we catch a pattern "password" to get all login/password before they are ciphered.
'''

from pydbg import *
from pydbg.defines import *
import utils

## Mailgun PHP API with curl

define("DOMAIN", "test.se");
define("MAILGUN_API", "XXX123"); // Mailgun Private API Key

function br2nl($string) {
    return preg_replace('/\<br(\s*)?\/?\>/i', "\n", $string);
}
function mg_send($to, $subject, $message) {

  $ch = curl_init();

## tarsnap-install.sh
#!/bin/sh
#
# Author: Jonas Lejon <jonas.gist@triop.se>
# 2014-05-30 For Ubuntu
#
# Usage:
# ./tarsnap-install.sh <tarsnap-email>
#
if [ -z "$1" ]
  then

## gist:03167bed45e774551155

      
              1 file
            
          
              10 forks
            
          
              21 comments
            
          
              619 stars
            
          
                grugq
                / gist:03167bed45e774551155
            
            
              Last active
              April 6, 2024 10:12
            
              
                operational pgp - draft
              
          
    Operational PGP

This is a guide on how to email securely.
There are many guides on how to install and use PGP to encrypt email.
This is not one of them. This is a guide on secure communication using
email with PGP encryption. If you are not familiar with PGP, please
read another guide first. If you are comfortable using PGP to encrypt
and decrypt emails, this guide will raise your security to the next level.

  
## osx_infector.py
import os
import struct
import shutil
import subprocess


class macho_intel32_shellcode():
    """
    Mach-O Intel x32 shellcode class
    """

## rsabd.py
#!/usr/bin/env python

import sys
import gmpy

import curve25519

from struct import pack
from hashlib import sha256
from binascii import hexlify, unhexlify
	#!/usr/sbin/dtrace -C -s

	#pragma D option quiet

	proc::posix_spawn:exec-success,proc::__mac_execve:exec-success
	{
	this->isx64=(curproc->p_flag & P_LP64)!=0;
	#define SELECT_64_86(x64, x86) (this->isx64 ? (x64) : (x86))
	#define GET_POINTER(base, offset) (user_addr_t)SELECT_64_86((uint64_t)((base)+sizeof(uint64_t)(offset)), (uint32_t)((base)+sizeof(uint32_t)(offset)))
	#!/usr/bin/env python
	# -- coding: utf-8 --
	"""
	Frédéric Grosshans, 19 January 2012
	Nathan R. Yergler, 6 June 2010

	This file does not contain sufficient creative expression to invoke
	assertion of copyright. No warranty is expressed or implied; use at
	your own risk.
	console.log("got here");
	var page = require('webpage').create();

	page.onConsoleMessage = function(msg) {
	console.log(msg);
	};


	page.open("http://facebook.com", function(status) {
	if ( status === "success" ) {
	/*
	* TGDFileHash.c
	* TagAdA: Tagging Advanced Application
	*
	* Copyright © 2008-2010 The TagAdA Team. All rights reserved.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	'''
	Example taken from Gray Hat Python (book)
	This script present a way to hook a DLL library in Firefox. For this example the script hook nspr4.dll which encrypt datas for SSL connection.

	So we will be able to get the text before it is encrypted. Moreover we catch a pattern "password" to get all login/password before they are ciphered.
	'''

	from pydbg import *
	from pydbg.defines import *
	import utils

	define("DOMAIN", "test.se");
	define("MAILGUN_API", "XXX123"); // Mailgun Private API Key

	function br2nl($string) {
	return preg_replace('/\<br(\s*)?\/?\>/i', "\n", $string);
	}
	function mg_send($to, $subject, $message) {

	$ch = curl_init();
	#!/bin/sh
	#
	# Author: Jonas Lejon <jonas.gist@triop.se>
	# 2014-05-30 For Ubuntu
	#
	# Usage:
	# ./tarsnap-install.sh <tarsnap-email>
	#
	if [ -z "$1" ]
	then
	import os
	import struct
	import shutil
	import subprocess


	class macho_intel32_shellcode():
	"""
	Mach-O Intel x32 shellcode class
	"""
	#!/usr/bin/env python

	import sys
	import gmpy

	import curve25519

	from struct import pack
	from hashlib import sha256
	from binascii import hexlify, unhexlify