monoxgas

#include <Windows.h>
#include <intrin.h>
#include <string>
#include <TlHelp32.h>
#include <psapi.h>

DWORD WINAPI Thread(LPVOID lpParam) {
	// Insert evil stuff

	ExitProcess(0);

monoxgas

' Need to add project references to C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscoree.tlb and mscorlib.tlb

Private Declare PtrSafe Function DispCallFunc Lib "oleaut32.dll" (ByVal pv As LongPtr, ByVal ov As LongPtr, ByVal cc As Integer, ByVal vr As Integer, ByVal ca As Long, ByRef pr As Integer, ByRef pg As LongPtr, ByRef par As Variant) As Long
Private Declare PtrSafe Sub RtlMoveMemory Lib "kernel32" (Dst As Any, Src As Any, ByVal BLen As LongPtr)
Private Declare PtrSafe Function VarPtrArray Lib "VBE7" Alias "VarPtr" (ByRef Var() As Any) As LongPtr

#If Win64 Then
Const LS As LongPtr = 8&
#Else
Const LS As LongPtr = 4&

monoxgas

$Shell = New-Object -Com WScript.Shell
$S = $Shell.CreateShortcut("$($Env:AppData)\Microsoft\Windows\Start Menu\default.lnk")
$S.TargetPath = "calc.exe"
$S.Hotkey = "Ctrl+U"
$S.Save()
$Shell.SendKeys("^u")
Start-Sleep 10;rm "$($Env:AppData)\Microsoft\Windows\Start Menu\default.lnk"

monoxgas

function Invoke-EgressAssess
{
    
<#

.Synopsis
    Egress-assess powershell client. 

.Description
    This script will connect to an Egress-assess server and transfer faux Personally Identifiable Information or

monoxgas

#!/usr/bin/env python
# Rulz.py
# Author: Nick Landers (@monoxgas) - Silent Break Security

import os
import sys
import argparse
import re
import binascii
import codecs

monoxgas

function Invoke-DCSync
{
<#
.SYNOPSIS

Uses dcsync from mimikatz to collect NTLM hashes from the domain.

Author: @monoxgas
Improved by: @harmj0y

monoxgas

require 'cora'
require 'siri_objects'
require 'pp'


class SiriProxy::Plugin::Nick < SiriProxy::Plugin
  def initialize(config)
    #if you have custom configuration options, process them here!
  end

monoxgas

filter "StartRequest", direction: :from_iphone do |object|
    puts "[Info - Button Information] #{object["properties"]}"
    say "I don't have any #{object["properties"]["utterance"].capitalize} muffins, sorry..." #Fails Here, Logs the Say but never actually says it
    object = false #After a while, it will google search my utterance I used
end 

def createButton(text, utterance, command)
    startRequest = SiriStartRequest.new(text, false, true) #Does the true proxyOnly parameter matter here?
    
    sendCommand = SiriSendCommands.new

monoxgas

1. Copy the siriproxy-example folder and rename it to siriproxy-*plugin*
2. open the gemspec file in your new plugin folder and change both of the plugin names to "siriproxy-*plugin*"
3. Open your .rb file in your plugin file/lib/ and change the line SiriProxy::Plugin::Example to SiriProxy::Plugin::*PluginName*
3. Open your config.yml and copy the Example plugin lines, make sure the spacing stays EXACTLY the same! Change Name: to *PluginName* from step 3, and change path to "/Users/*username*/SiriProxy/plugins/siriproxy-*plugin*/"

monoxgas

port: 443
log_level: 1
plugins:
    # NOTE: run bundle after changing plugin configurations to update required gems

    - name: 'Example'
      path: '/Users/Equinox/SiriProxy/plugins/siriproxy-example'

    # - name: 'Thermostat'
    #   git: 'git://github.com/plamoni/SiriProxy-Thermostat.git'