Skip to content

Instantly share code, notes, and snippets.

nguyenl95

Block or report user

Report or block nguyenl95

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View 0c30d700b131246e302ff3da1c4180d21f4650db072e287d1b9d477fe88d312f
## uploaded by @JohnLaTwC
https://www.virustotal.com/en/file/0c30d700b131246e302ff3da1c4180d21f4650db072e287d1b9d477fe88d312f/analysis/
https://docs.microsoft.com/en-us/windows/desktop/api/wininet/nf-wininet-internetconnecta
void InternetConnectA(
HINTERNET hInternet,
LPCSTR lpszServerName,
INTERNET_PORT nServerPort,
LPCSTR lpszUserName,
LPCSTR lpszPassword,
DWORD dwService,
@nguyenl95
nguyenl95 / base64-to-hex.py
Created Nov 13, 2019 — forked from kkirsche/base64-to-hex.py
Decode base64 and convert to hex format, like shellcode
View base64-to-hex.py
#!/usr/bin/env python
from base64 import b64decode
from urllib import unquote
base64_strs = ['xU5LNJhXeo9B6o4Ri%2FxFHodARXWqgtNufNrYzqG05nGOLNboDgJtkw%3D%3D',
'%2BjAd73J7RAZgLxAUkIG5l0cMPLQEBAtZRMP3WdXr1%2BMYdrg2cZKaow%3D%3D']
for bstr in base64_strs:
unquoted_bstr = unquote(bstr)
View StartLogging.xml
<Sysmon schemaversion="4.1">
<!-- Capture all hashes -->
<HashAlgorithms>*</HashAlgorithms>
<EventFiltering>
<!-- Event ID 1 == Process Creation. Log all newly created processes except -->
<ProcessCreate onmatch="exclude">
<Image condition="contains">splunk</Image>
<Image condition="contains">btool.exe</Image>
<Image condition="contains">SnareCore</Image>
<Image condition="contains">nxlog</Image>
View mount-shared-folder-linux.sh
# use x.sh <share-name> <mounted-folder>
sudo vmhgfs-fuse .host:/${1} ${2} -o allow_other -o uid=1000
@nguyenl95
nguyenl95 / configure.sh
Created Aug 16, 2019
config elasticsearch
View configure.sh
#!/usr/bin/env bash
# Production settings for Elasticsearch in Ubuntu 16.04
set -eux
CURRENT_USER=$(whoami)
CURRENT_DIR=$(dirname $0)
cd ${CURRENT_DIR}
@nguyenl95
nguyenl95 / change_sources_list.sh
Last active Aug 16, 2019
linux quick and dirty scripts
View change_sources_list.sh
sudo sed -ie 's/\([a-zA-Z0-9]*\.archive\.\)\{0,1\}\(archive\.\)\{0,1\}\(security\.\)\{0,1\}ubuntu\.com/opensource\.xtdv\.net/g' /etc/apt/sources.list
View gist:883254526a12fe5de6aa0010b1f38e9c
var a = [
"bG9n",
"WW91IG11c3Qga25vdyB0aGUgZmxhZyBieSBub3ch",
"Y2xvc2U=",
"YmlnbnVtYmVyLmpz",
"Y29uZmln",
"cmVhZGxpbmU=",
"Y3JlYXRlSW50ZXJmYWNl",
"c3RkaW4=",
"c3Rkb3V0",
View add_pritunl_server_route.sh
VPN_SERVER_IP=
ROUTER_IP=
ROUTER_DEV=
sudo ip route add $VPN_SERVER_IP via $ROUTER_IP via $ROUTER_DEV
@nguyenl95
nguyenl95 / vn.json
Last active Oct 16, 2018
iso 3166-2
View vn.json
{
"VN-44": "An Giang",
"VN-43": "Bà Rịa–Vũng Tàu",
"VN-54": "Bắc Giang",
"VN-53": "Bắc Kạn",
"VN-55": "Bạc Liêu",
"VN-56": "Bắc Ninh",
"VN-50": "Bến Tre",
"VN-31": "Bình Định",
"VN-57": "Bình Dương",
You can’t perform that action at this time.