- Digital Hotplate, 7" x 7" Plate, 115V
- 18" Wide Ducted Fume Hood
- Vortex Powerfans VTX400, 4"
- Aluminum Hose for HVAC System
- 3M Safety 142–6800 Safety Reusable Full Face Mask Respirator & 3M Organic Vapor/Acid Gas Cartridge/Filter 60923, P100 Respiratory Protection
- 40x-800x Polarizing Metallurgical Microscope w Top and Bottom Lights + 18MP USB3.0 Camera
- [1ML Graduated Essential Oil Pipette Dropper](https://www.amazon.com/gp/pro
ryancor
ryancor
/ COMrat_dropper_payload_2.ps1
Last active
October 14, 2022 19:56
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| using System;using System.IO; | |
| using System.IO.Compression; | |
| public static class WriteClass { | |
| public static void write_to_file(Stream input, Stream output){ | |
| byte[] buffer = new byte[16 * 1024]; | |
| int bytesRead; | |
| while((bytesRead = input.Read(buffer, 0, buffer.Length)) > 0) { |
ryancor
/ COMrat_dropper_payload_1.ps1
Last active
October 14, 2022 19:56
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| public static class decryption_class { | |
| public static byte[] decrypt(byte[] income_bytes, byte[] gamma) { | |
| byte[] output = new byte[income_bytes.Length]; | |
| for (int i = 0; i < income_bytes.Length; ++i) { | |
| output[i] = (byte)(income_bytes[i] ^ gamma[i % gamma.Length]); | |
| } | |
| return output; | |
| } | |
| } |
ryancor
/ IC_Decapping_Lab_Purchase_List.md
Last active
November 4, 2022 04:08
ryancor
/ i2c_lcd_decoder.py
Last active
September 6, 2020 17:39
From HTB Hardware Challenge MP => https://www.virustotal.com/gui/file/6fa8aaf50d4bb5faa97b7e60cf8cc3b01f094dbd6e4b8adfeea0667a06d6578c/detection
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import pandas as pd | |
| ################ | |
| # Useful docs on how I2C driver communicates with LCD | |
| # https://datasheet4u.com/datasheet-parts/LCD-1602A-datasheet.php?id=519148 | |
| # https://www.nxp.com/docs/en/data-sheet/PCF8574_PCF8574A.pdf | |
| # https://controllerstech.com/i2c-lcd-in-stm32/ | |
| ### | |
| # CSV file was created from using program called Logic which reads data from a Logic Analyzer | |
| # I exported the file after using the I2C decoder for the SDA & SCL pins on logicdata file provided |
ryancor
/ extory_solver.py
Created
September 2, 2020 16:00
EXTORY Intrinsics Challenge => https://www.virustotal.com/gui/file/7db71da650e096af7d351b03005593a368e75de8bb69d1761d30d7fd3a59708b/detection
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def decrypt_debug_strings(): | |
| e_array = [bytes.fromhex('a100ef00ed00bd00bb00be00f700bc00a100bc'), bytes.fromhex('8d00b800aa00b200b400be00ab00f700bc00a100bc'), | |
| bytes.fromhex('b000bd00b800ef00ed00f700bc00a100bc0000'), bytes.fromhex('b300b800af00b800ae00f700bc00a100bc0000')] | |
| n = 0 | |
| d_bytes = '' | |
| for encrypted_string in range(len(e_array)): | |
| for _ in range(len(e_array[encrypted_string]) - 10): | |
| d_bytes += chr(e_array[encrypted_string][n] ^ 0xD9) | |
| n += 2 |
ryancor
/ vm_solver.py
Last active
August 19, 2020 16:39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ######################## | |
| # PE image can be found at: https://www.virustotal.com/gui/file/8f87c2c3916bf71a3abbe9a371c8b6240548940754ac0e50e27a754ea9604bb5/detection | |
| # VM Bin Dump can be found at: https://www.virustotal.com/gui/file/7ce18b7922cc1ecf46724bb04c877dd374c28b91887c01d8053a83aad1e2f11a/detection | |
| ######################## | |
| SRAM = bytearray(48) # where everything gets calculated and compared | |
| WRAM = bytearray(48) # contains plaintext input from user | |
| DRAM = bytearray(120) # contains encrypted text | |
| # Store data in SRAM |
ryancor
/ puzzle_string_decryptor.py
Last active
June 24, 2020 17:42
Decryption algorithms reversed engineered from this binary file: https://www.virustotal.com/gui/file/e8505b7c66d2cfecf23c36cf9c2ad14be21adb73e014cf41f30705258fa9900c
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import random | |
| import struct | |
| from ctypes import cdll | |
| vcrt = cdll.LoadLibrary("msvcrt.dll") | |
| hash_table = [ | |
| 0x63, 0x7C, 0x77, 0x7B, 0xF2, 0x6B, 0x6F, 0xC5, 0x30, 0x1, 0x67, 0x2B, | |
| 0xFE, 0xD7, 0xAB, 0x76, 0xCA, 0x82, 0xC9, 0x7D, 0xFA, 0x59, 0x47, 0xF0, | |
| 0xAD, 0xD4, 0xA2, 0xAF, 0x9C, 0xA4, 0x72, 0xC0, 0xB7, 0xFD, 0x93, 0x26, |
ryancor
/ z3_avr_solver.py
Created
May 13, 2020 18:30
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import serial | |
| from z3 import * | |
| def read_until(serial, until): | |
| out = '' | |
| while until not in out: | |
| out += serial.read(1) | |
| return out |
ryancor
/ decrypt_pe_stub_from_resource.py
Last active
April 30, 2024 08:42
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import binascii | |
| import pefile | |
| import subprocess | |
| import sys | |
| import os | |
| ror = lambda val, r_bits, max_bits: \ | |
| ((val & (2**max_bits-1)) >> r_bits%max_bits) | \ | |
| (val << (max_bits-(r_bits%max_bits)) & (2**max_bits-1)) |
ryancor
/ gist:c9d8f8fbbacf78a4be6911294b697bae
Last active
May 2, 2018 21:35
Heap Exploit for new root in /etc/passwd
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdlib.h> | |
| #include <stdio.h> | |
| #include <sys/types.h> | |
| #include <sys/stat.h> | |
| #include <unistd.h> | |
| #include <string.h> | |
| #define PASS "/etc/passwd" | |
| #define PASSBK "/tmp/passwd.bkup" | |
| #define TMP "/tmp/etc" |