poxyran
poxyran
/ steal_token_windows_x64.txt
Created
August 21, 2019 20:01
Overwriting process token using Windbg
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| On Guest VM: | |
| C:\Users\Administrator>whoami | |
| win-2v2jfp9h9ts\administrator | |
| On Windbg (Host VM): | |
| dt nt!_EPROCESS | |
| +0x358 Token : _EX_FAST_REF |
poxyran
/ gist:7b997f7cce6ba52d7736e87b62d0b48b
Created
October 4, 2018 18:46
Unlocking BT 2Wire 2700HGV Business Hub (wireless router)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| http://bt2700hgv.tripod.com/ir1002700HGV.htm |
poxyran
/ Easy bypass for ptrace(PTRACE_TRACEME, 0, 0) in GDB)
Last active
February 19, 2024 20:29
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Start GDB and execute the following commands: | |
| catch syscall ptrace | |
| commands 1 | |
| set ($eax) = 0 | |
| continue | |
| end | |
| Then, run the app and voilá! you can debug your program :) |