Skip to content

Instantly share code, notes, and snippets.


Royce Williams roycewilliams

Block or report user

Report or block roycewilliams

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
roycewilliams / beamsplitter-top-1000-rockyou.txt
Last active May 25, 2020
View beamsplitter-top-1000-rockyou.txt
# As per
# Other generic examples:
# 0x14d226ebaad1f8d2:beamsplitter
# See also:
roycewilliams / discohash-top-1000-rockyou.txt
Last active May 25, 2020
View discohash-top-1000-rockyou.txt
# As per
# Other generic examples:
# 0x70d31a4bafec9cd5:discohash
# 0xd9008b4832c11745:BEBB4185
# See also:
#!/usr/bin/env perl
# Created: 2016-06-15
# Credit: undeath,
use utf8;
#use open ':std', ':encoding(UTF-8)';
while (<>) {
if ($_ =~ m/(.*):\$HEX\[([A-Fa-f0-9]+)\]/) {
View working-DoH-public-resolvers.txt
# List of working DoH public resolvers
# Harvested from
# Tested with
# Refs:
# WARNING: These steps seem to not work anymore!
# Purge existign CUDA first
sudo apt --purge remove "cublas*" "cuda*"
sudo apt --purge remove "nvidia*"
# Install CUDA Toolkit 10
roycewilliams / internet-alaska_spleen_unknown-date_71d9da015e67eed357c537f5308142d617ff7420e4d68a76d0a843ea915cffd9.txt
Created Dec 28, 2019
View internet-alaska_spleen_unknown-date_71d9da015e67eed357c537f5308142d617ff7420e4d68a76d0a843ea915cffd9.txt
hello one and all,
In the spirit of the Communications Decency Act, this newsletter has been
* "approved" by all self-appointed authorities
* "dumbed down" to third grade reading level
* "cleared" for transmission by government decrypters and
* "broadcast" by your local Cable/IXC/LEC Converg-opolis
Still, lots of interesting news, I wouldn't skip a word if I were you.
roycewilliams / benchmark_hashcat-v5.1.0-1524-g4d286d5d_irongiant_2019-12-24.txt
Last active Dec 24, 2019
View benchmark_hashcat-v5.1.0-1524-g4d286d5d_irongiant_2019-12-24.txt
# Just prior to release of hashcat 6.0.0
# Power throttled from 180W down to 150W
# Table format, sorted by hashrate, is here:
$ nvidia-smi
Tue Dec 24 11:34:46 2019
| NVIDIA-SMI 418.87.01 Driver Version: 418.87.01 CUDA Version: 10.1 |
| GPU Name Persistence-M| Bus-Id Disp.A | Volatile Uncorr. ECC |
roycewilliams / postmates-unsolicited-email_2019-11-22.txt
Last active Nov 23, 2019
View postmates-unsolicited-email_2019-11-22.txt
# Received lines of final SMTP header:
Received: by 2002:adf:df12:0:0:0:0:0 with SMTP id y18csp74468wrl;
X-Received: by 2002:adf:f504:: with SMTP id q4mr20722381wro.160.1574482060415;
Received-SPF: pass ( domain of designates as permitted sender) client-ip=;
Received: by 2002:a5d:494e:: with POP3 id r14mf6021056wrs.6;
Received: from compute3.internal (compute3.nyi.internal [])
Received: from mx5 ([])
Received: from (localhost []) by mailmx.nyi.internal (Postfix) with ESMTP id 4B5593C0136 for <>; Fri, 22 Nov 2019 23:06:29 -0500 (EST)
roycewilliams / real-world-initialism-passwords.txt
Last active Sep 29, 2019
View real-world-initialism-passwords.txt
# Simple sample of real-word passwords that are initialisms of known phrases.
# Inspired by discussion at
# Base "words" (can you tell what quotes / songs they're from?)

Android 10 "add users from lock screen" issue


On my Pixel 3 XL with new Android 10, even with "add users from lock screen" disabled, I discovered that I could reliably create a new user from the lock screen (swipe down the top menu, select blue user icon, and the "Add user" plus-sign icon is available).

I've posted this publicly - at first because I thought I must be mistaken, but then expanded later because the issue is not exploitable remotely, can only be carried out after authorized-equivalent access to the device has been achieved, is trivial to recreate with normal UI interaction, and would very likely have been disclosed by others in the very short term.


  • This issue was discovered on September 3, 2019
  • This issue was assigned CVE-2019-2233 (NVD, CVE)
You can’t perform that action at this time.