alisaesage

# Build v8 x64 on modern Linux
# Time to run: about 1.2hrs at 8Gb RAM / 8 cores, Ubuntu 22.04 LTS

# This dockerfile is part of Zero Day Engineering training materials on JavaScript engines internals and vulnerability research   
# https://zerodayengineering.com 
# @zerodaytraining

FROM ubuntu:bionic
MAINTAINER contact@zerodayengineering.com
RUN apt-get update && apt-get upgrade

kavishkagihan

• By default, it will start the litener on port 9090. You can specify the port you want it to start with shell 9001

shell() {

    if [[ $1 ]]; then
        port=$1
    else
        port=9090
 fi

gamozolabs

import re, subprocess, idaapi, ida_segment, ida_kernwin

# To install this, simply put it in your ida_install/loaders folder and open
# a `/proc/<pid>/mem` file!
#
# You might need to set `echo 0 > /proc/sys/kernel/yama/ptrace_scope` if you
# want to be able to dump processes depending on your system configuration.

# Check if the file is supported by our loader
def accept_file(li, filename):

str4d

# Attempts to demangle all mangled symbols in the current program using the Rust
# mangling schemes, and replace the default symbol and function signature
# (if applicable) with the demangled symbol.
#
# License: MIT OR Apache-2.0
#@author Jack Grigg <thestr4d@gmail.com>
#@category Symbol

import string

ujin5

function sleep( sleepDuration ){
    var now = new Date().getTime();
    while(new Date().getTime() < now + sleepDuration){ /* do nothing */ } 
}
function gc() {
    for (let i = 0; i < 0x10; i++) {
            new ArrayBuffer(0x1000000);
        }
}
let data_view = new DataView(new ArrayBuffer(8));

0x36

# Fixing LC_DYLD_CHAINED_FIXUPS for macOS M1 kext drivers
# -*- coding: utf-8 -*-
#@category macOS.kext

from  generic.continues import RethrowContinuesFactory
from  ghidra.app.script import GhidraScript
from  ghidra.app.util.bin import ByteProvider, RandomAccessByteProvider, BinaryReader
from  ghidra.app.util.bin.format.macho import MachHeader,Section, commands
from  ghidra.program.model.address import Address
from  java.io import File

vxcute

Windows Kernel Learning: https://mirokaku.github.io/Blog/categories/Windows-kernel-learning/

Journey Into the Object Manager Executive Subsystem: Handles: https://ntamonsec.blogspot.com/2020/06/journey-into-object-manager-executive-handles.html

Random Windows Kernel Articles: https://codemachine.com/articles.html

Journey Into the Object Manager Executive Subsystem: Object Header and Object Type: https://ntamonsec.blogspot.com/2020/05/journey-into-object-manager-executive.html

Windows Exploitation Tricks (All Articles)

LukeZGD

Downgrade and dualboot status of almost all iOS devices

UPDATED: 2025-09-25

• Reddit mirror: https://www.reddit.com/r/iOSDowngrade/comments/j1x7iv/downgrade_and_dualboot_status_of_almost_all_ios/
• GitHub Gist mirror: https://gist.github.com/LukeZGD/9d781f1b03a69fa46869384a9407a41a
• As of updating this post, there is now a free downgrade tool that utilizes a SEP exploit released for A9-A10X devices, turdus merula: https://sep.lol/
  • Untethered with blobs guide: https://ios.cfw.guide/turdusmerula/
  • Tethered guide: https://ios.cfw.guide/turdusmerula-tethered/
• Save SHSH blobs for signed iOS versions using TSS Saver or blobsaver

lordidiot

"""
To use the extension, place the file somewhere and add
`source /path/to/extension`
in your ~/.gdbinit file

Use just as you would with `dereference` (https://gef.readthedocs.io/en/master/commands/dereference/)
but s/deref/veref/g

Many missing features because I quickly whipped this up to solve a challenge.
1) Doesn't check for v8 version (Older versions don't use compressed pointers)

interference-security

Source: https://www.linkedin.com/pulse/android-emulator-tips-security-testers-divya-mudgal/

List created Android AVDs:

emulator -list-avds

Start an AVD (without Play Store) with writable "/system":

emulator -avd Pixel_3_XL_API_26 -writable-system

Start ADB daemon as root: