Skip to content

Instantly share code, notes, and snippets.

View u0m3's full-sized avatar

Radu Alexandru Popescu u0m3

87 followers · 269 following
  • Bucharest, Romania
View GitHub Profile
@x0rz
x0rz / TorBrowser_7.x_NoScript_bypass.py
Last active November 10, 2021 13:24
Tor Browser 7.x NoScript bypass vulnerability https://twitter.com/Zerodium/status/1039127214602641409
#!/usr/bin/python
from BaseHTTPServer import BaseHTTPRequestHandler,HTTPServer
PORT_NUMBER = 31337
class myHandler(BaseHTTPRequestHandler):
#Handler for the GET requests
def do_GET(self):
self.send_response(200)
@GarryOne
GarryOne / insta_login_check.js
Created September 8, 2018 21:27
Puppeteer Instagram Credentials/Login Verification
// start the node server by doing: `node insta_login_check.js`
const puppeteer = require('puppeteer');
const delay = require('delay');
const user = {
username: 'user@test.com',
password: 'passw0rd',
};
@JohnLaTwC
JohnLaTwC / cf618029065ca2954054644bed2ac2d2a519926870c08d07a21f02a0afc9447e
Created August 30, 2018 15:51
VBS COM Scriptlet threat
## Uploaded by @JohnLaTwC
## Hash: cf618029065ca2954054644bed2ac2d2a519926870c08d07a21f02a0afc9447e
## VTLink: https://www.virustotal.com/#/file/cf618029065ca2954054644bed2ac2d2a519926870c08d07a21f02a0afc9447e/detection
<?XML version="1.0"?>
<scriptlet>
<registration
progid="Pentest"
classid="{F0001111-0000-0000-0000-0000FEEDACDC}" >
@maldevel
maldevel / decryptWinSCPCreds.cpp
Created August 26, 2018 10:41
PassCat Decrypt WinSCP passwords snippet
//https://github.com/twelvesec/passcat
//GNU General Public License v3.0
//@maldevel
//...
int libwinscp::decrypt_char(char *hash, char **newhash, size_t *size) {
unsigned char hex_flag = 0xA3;
char charset[17] = "0123456789ABCDEF";
int unpack1, unpack2, result = 0;
@maldevel
maldevel / retrieveWiFiPasswords.cpp
Created August 26, 2018 05:06
PassCat Reading WiFi passwords snippet
//https://github.com/twelvesec/passcat
//GNU General Public License v3.0
//@maldevel
//...
void libpasscat::cat_wifi_passwords(void) {
if (!initialized) return;
DWORD SupportedVersion = 0;
@maldevel
maldevel / readxml.cpp
Last active August 26, 2018 20:19
PassCat Reading XML snippet
//https://github.com/twelvesec/passcat
//GNU General Public License v3.0
//@maldevel
#include <string>
#include <tchar.h>
#import <msxml6.dll>rename_namespace(_T("MSXML"))
//...
@hfiref0x
hfiref0x / akagi_49a.c
Created August 23, 2018 16:34
UAC bypass using CreateNewLink COM interface
typedef struct tagCREATELINKDATA {
ULONG dwFlags;
WCHAR szLinkName[MAX_PATH]; // + 0x20C
WCHAR szExeName[MAX_PATH]; // + 0x414
WCHAR szParams[MAX_PATH]; // + 0x61C
WCHAR szWorkingDir[MAX_PATH]; // + 0x824
WCHAR szOriginalName[MAX_PATH]; // + 0xA2C
WCHAR szExpExeName[MAX_PATH]; // + 0xC34
WCHAR szProgDesc[MAX_PATH]; // + 0xE3C
WCHAR szFolder[MAX_PATH]; // + 0x1044
@plembo
plembo / CalibreServerOnLinux.md
Last active January 5, 2024 04:26
Calibre Server on Linux

Calibre Server on Linux

Introduction

Calibre is a powerful cross-platform, open source, ebook manager and editing platform. Its calibre-server component can be used to publish an e-book library on a local network. While you can launch calibre-server as a desktop application, it can also be run as a daemon on a headless Linux server.

This tutorial on setting up calibre-server using Ubuntu 14.04 is very good, but dated.

@mrbar42
mrbar42 / README.md
Last active March 28, 2024 18:06
Secured HLS setup with Nginx as media server

Secured HLS setup with Nginx as media server

This example is part of this article.

This is an example for an HLS delivery with basic security. Nginx compiled with nginx-rtmp-module & secure-link is used as media server. Features:

  • Domain filtering
  • Referrer filtering
  • Embed buster
@williballenthin
williballenthin / floss-lite.py
Last active August 16, 2021 13:37
#!/usr/bin/env python3
'''
A simplified FLOSS implementation that only supports stackstrings.
requirements:
- yara-python
- unicorn
author: Willi Ballenthin
email: william.ballenthin@fireeye.com