This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#include <Windows.h> | |
#include <intrin.h> | |
#include <string> | |
#include <TlHelp32.h> | |
#include <psapi.h> | |
DWORD WINAPI Thread(LPVOID lpParam) { | |
// Insert evil stuff | |
ExitProcess(0); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
' Need to add project references to C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscoree.tlb and mscorlib.tlb | |
Private Declare PtrSafe Function DispCallFunc Lib "oleaut32.dll" (ByVal pv As LongPtr, ByVal ov As LongPtr, ByVal cc As Integer, ByVal vr As Integer, ByVal ca As Long, ByRef pr As Integer, ByRef pg As LongPtr, ByRef par As Variant) As Long | |
Private Declare PtrSafe Sub RtlMoveMemory Lib "kernel32" (Dst As Any, Src As Any, ByVal BLen As LongPtr) | |
Private Declare PtrSafe Function VarPtrArray Lib "VBE7" Alias "VarPtr" (ByRef Var() As Any) As LongPtr | |
#If Win64 Then | |
Const LS As LongPtr = 8& | |
#Else | |
Const LS As LongPtr = 4& |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
$Shell = New-Object -Com WScript.Shell | |
$S = $Shell.CreateShortcut("$($Env:AppData)\Microsoft\Windows\Start Menu\default.lnk") | |
$S.TargetPath = "calc.exe" | |
$S.Hotkey = "Ctrl+U" | |
$S.Save() | |
$Shell.SendKeys("^u") | |
Start-Sleep 10;rm "$($Env:AppData)\Microsoft\Windows\Start Menu\default.lnk" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
function Invoke-EgressAssess | |
{ | |
<# | |
.Synopsis | |
Egress-assess powershell client. | |
.Description | |
This script will connect to an Egress-assess server and transfer faux Personally Identifiable Information or |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/env python | |
# Rulz.py | |
# Author: Nick Landers (@monoxgas) - Silent Break Security | |
import os | |
import sys | |
import argparse | |
import re | |
import binascii | |
import codecs |
This file has been truncated, but you can view the full file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
function Invoke-DCSync | |
{ | |
<# | |
.SYNOPSIS | |
Uses dcsync from mimikatz to collect NTLM hashes from the domain. | |
Author: @monoxgas | |
Improved by: @harmj0y |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
require 'cora' | |
require 'siri_objects' | |
require 'pp' | |
class SiriProxy::Plugin::Nick < SiriProxy::Plugin | |
def initialize(config) | |
#if you have custom configuration options, process them here! | |
end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
filter "StartRequest", direction: :from_iphone do |object| | |
puts "[Info - Button Information] #{object["properties"]}" | |
say "I don't have any #{object["properties"]["utterance"].capitalize} muffins, sorry..." #Fails Here, Logs the Say but never actually says it | |
object = false #After a while, it will google search my utterance I used | |
end | |
def createButton(text, utterance, command) | |
startRequest = SiriStartRequest.new(text, false, true) #Does the true proxyOnly parameter matter here? | |
sendCommand = SiriSendCommands.new |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1. Copy the siriproxy-example folder and rename it to siriproxy-*plugin* | |
2. open the gemspec file in your new plugin folder and change both of the plugin names to "siriproxy-*plugin*" | |
3. Open your .rb file in your plugin file/lib/ and change the line SiriProxy::Plugin::Example to SiriProxy::Plugin::*PluginName* | |
3. Open your config.yml and copy the Example plugin lines, make sure the spacing stays EXACTLY the same! Change Name: to *PluginName* from step 3, and change path to "/Users/*username*/SiriProxy/plugins/siriproxy-*plugin*/" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
port: 443 | |
log_level: 1 | |
plugins: | |
# NOTE: run bundle after changing plugin configurations to update required gems | |
- name: 'Example' | |
path: '/Users/Equinox/SiriProxy/plugins/siriproxy-example' | |
# - name: 'Thermostat' | |
# git: 'git://github.com/plamoni/SiriProxy-Thermostat.git' |