Skip to content

Instantly share code, notes, and snippets.

View klezVirus's full-sized avatar

klezVirus

1.1k followers · 29 following
View GitHub Profile
@klezVirus
klezVirus / dblchk.py
Created May 16, 2024 11:25
Script to check how many and which vulnerable drivers (listed in the LOLDrivers project) are not covered by Microsoft Recommended Blocklist
#!/usr/bin/env python3
# ======================================
# Requires the following deps:
# pip install xmltodict, requests, bs4
# ======================================
from argparse import ArgumentParser
from pathlib import Path
import requests
import zipfile
@klezVirus
klezVirus / EtwStartWebClient.cs
Last active May 10, 2024 03:22
A PoC in C# to enable WebClient Programmatically
using System.Runtime.InteropServices;
using System;
/*
* Simple C# PoC to enable WebClient Service Programmatically
* Based on the C++ version from @tirannido (James Forshaw)
* Twitter: https://twitter.com/tiraniddo
* URL: https://www.tiraniddo.dev/2015/03/starting-webclient-service.html
*
* Compile with:
@klezVirus
klezVirus / rekall-inspect-with-yara.sh
Created March 8, 2024 22:49 — forked from jas-/rekall-inspect-with-yara.sh
#!/bin/bash
# Create a timestamp
ts="$(date +%Y%m%d)"
# Determine running directory
cwd="$(pwd $(dirname $0))"
# Define build_file
build_file=
@klezVirus
klezVirus / evilldll-gen.sh
Last active March 1, 2024 12:07
Simple Malicious DLL Generator for DLL Hijacking Attacks
#!/bin/sh
usage(){
echo "# ################# Simple CPP to DLL Utility ################# #"
echo "# This tool has been maded to easily generate and compile a DLL to be used for DLL hijacking.#"
echo "# #"
echo "# ========================================================================================== #"
echo "# #"
echo "# Usage: #"
echo "# ./dll-gcc [Options] <input-file> #"
@klezVirus
klezVirus / flutter-disabler.sh
Created February 21, 2024 09:55
Quick and Simple Script to De-Flutter an iOS/Android Mobile Application
#!/bin/sh
# Default values
input_apk=""
signer_path=""
# Function to display help message
print_help() {
echo "Usage: $0 -i <input_apk> [-s <signer_path>]"
echo ""
@klezVirus
klezVirus / aes_inv_mix_columns_test.py
Created November 5, 2023 12:12
Little AES InvMixColumns Test
def gf_mul_by_09(num):
ret = gf_mul_by_02(gf_mul_by_02(gf_mul_by_02(num))) ^ num
return ret
def gf_mul_by_0b(num):
ret = gf_mul_by_02(gf_mul_by_02(gf_mul_by_02(num))) ^ gf_mul_by_02(num) ^ num
return ret
@klezVirus
klezVirus / CVE-2017-16651.py
Created January 9, 2021 16:25
CVE-2017-16651 - Roundcube Webmail File Disclosure Vulnerability - Exploit POC
#!/usr/bin/env python
# -------------------------------------------------------------------------------------------------------------------
# Exploit Author: d3adc0de
# Software: https://roundcube.net/
# Versions: 1.1.0 - 1.1.9, 1.2.0 - 1.2.6, 1.3.0 - 1.3.2
# CVE: CVE-2017-16651
# Credits: Thomas Bruederli (Discoverer)
# Release date: 2017-11-09
# Vulnerability Description: https://gist.github.com/thomascube/3ace32074e23fca0e6510e500bd914a1
# -------------------------------------------------------------------------------------------------------------------
@klezVirus
klezVirus / gist:909b6eac40e87e1b7a3d63431f74b630
Created September 19, 2023 07:20 — forked from pcmoritz/gist:4b0e1be7f2dfcc4e51e2ace50426f67d
Powerpoint create slides for animations while retaining slide numbers
Option Explicit
Sub AddElements()
Dim shp As Shape
Dim i As Integer, n As Integer
n = ActivePresentation.Slides.Count
For i = 1 To n
Dim s As Slide
Set s = ActivePresentation.Slides(i)
@klezVirus
klezVirus / ios_xcarchive-to-ipa.txt
Created August 29, 2023 12:52 — forked from Bruno-Furtado/ios_xcarchive-to-ipa.txt
Convert Xcarchive to IPA
xcodebuild
-exportArchive
-exportOptionsPlist {PATH_TO_PROJECT_ROOT}/ios/build/info.plist
-archivePath {PATH_TO_ARCHIVE_MADE_USING_XCODE}/App.xcarchive
-exportPath {PATH_TO_EXPORT_THE_APP}/App.ipa
@klezVirus
klezVirus / frier.py
Last active March 27, 2023 09:56
Attempt to hook a NT functionwhile also try to recover partial information about the caller (module, address)
import frida
import sys
import subprocess
import ctypes
import threading
import multiprocessing
import argparse
def inject_dummy():