Skip to content

Instantly share code, notes, and snippets.

View rvizx's full-sized avatar
:octocat:
just tryna write better exploits :3

rvz rvizx

:octocat:
just tryna write better exploits :3
64 followers · 88 following
  • /dev/null
View GitHub Profile
@rvizx
rvizx / SimpleHttpServer.ps1
Created July 26, 2022 15:33 — forked from zhilich/SimpleHttpServer.ps1
Simple Http Server in PowerShell
function Load-Packages
{
param ([string] $directory = 'Packages')
$assemblies = Get-ChildItem $directory -Recurse -Filter '*.dll' | Select -Expand FullName
foreach ($assembly in $assemblies) { [System.Reflection.Assembly]::LoadFrom($assembly) }
}
Load-Packages
$url = 'http://*:443/'
@rvizx
rvizx / yet another radare2 cheatsheet.md
Created July 4, 2022 14:31 — forked from williballenthin/yet another radare2 cheatsheet.md

radare2

load without any analysis (file header at offset 0x0): r2 -n /path/to/file

  • analyze all: aa
  • show sections: iS
  • list functions: afl
  • list imports: ii
  • list entrypoints: ie
  • seek to function: s sym.main
@rvizx
rvizx / DynWin32-ReverseShell.ps1
Created January 30, 2022 07:59 — forked from qtc-de/DynWin32-ReverseShell.ps1
PowerShell reverse shell that uses dynamically resolved Win32 API functions
<#
DynWin32-ReverseShell.ps1 is a reverse shell based on dynamically looked up Win32 API calls.
The script uses reflection to obtain access to GetModuleHandle, GetProcAddress and CreateProcess.
Afterwards it uses GetModuleHandle and GetProcAddress to resolve the required WSA functions
from ws2_32.dll.
This script should be used for educational purposes only (and maybe while playing CTF :D).
It was only tested on Windows 10 (x64) and is probably not stable or portable. It's only
purpose is to demonstrate the usage of reflective lookups of Win32 API calls. See it as