-
namespaces - overview of Linux namespaces http://man7.org/linux/man-pages/man7/namespaces.7.html
-
mount_namespaces - overview of Linux mount namespaces
peet47
omerk2511
/ netwalker_import_resolver.py
Created
June 4, 2020 13:13
Resolves all the NetWalker ransomware imports and shows the actual function names when they are called
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import zlib | |
| import idc | |
| import idautils | |
| import idaapi | |
| RESOLVE_IMPORTS = 0x00C512A6 | |
| GET_IMPORT_TABLE = 0x00C52400 | |
| rainbow_table = {} | |
| imports = [] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Ransomware Killer v0.1 by Thomas Patzke <thomas@patzke.org> | |
| # Kill all parent processes of the command that tries to run "vssadmin Delete Shadows" | |
| # IMPORTANT: This must run with Administrator privileges! | |
| Register-WmiEvent -Query "select * from __instancecreationevent within 0.1 where targetinstance isa 'win32_process' and targetinstance.CommandLine like '%vssadmin%Delete%Shadows%'" -Action { | |
| # Kill all parent processes from detected vssadmin process | |
| $p = $EventArgs.NewEvent.TargetInstance | |
| while ($p) { | |
| $ppid = $p.ParentProcessID | |
| $pp = Get-WmiObject -Class Win32_Process -Filter "ProcessID=$ppid" | |
| Write-Host $p.ProcessID |
krypted
/ sqlcsvexport.py
Created
January 28, 2019 21:47
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import re | |
| import csv | |
| import sys | |
| import os.path | |
| import argparse | |
| # allow large content in the dump | |
| csv.field_size_limit(sys.maxsize) | |
| def is_insert(line): |
spacehuhn
/ arduino_flash_esp8266.md
Last active
January 16, 2024 18:14
Flash ESP8266 over an Arduino
How to flash your ESP8266 without a USB-Serial adapter but with an Arduino.
First be sure everything is connected correcly:
| Arduino | ESP82666 |
|---|---|
| TX | RX |
| RX | TX |
| GND | GND |
| GND | GPIO-15 |
tbrianjones
/ free_email_provider_domains.txt
Last active
April 24, 2024 10:24
A list of free email provider domains. Some of these are probably not around anymore. I've combined a dozen lists from around the web. Current "major providers" should all be in here as of the date this is created.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1033edge.com | |
| 11mail.com | |
| 123.com | |
| 123box.net | |
| 123india.com | |
| 123mail.cl | |
| 123qwe.co.uk | |
| 126.com | |
| 150ml.com | |
| 15meg4free.com |