Skip to content

Instantly share code, notes, and snippets.

Avatar

Myo Soe (aka Aung Khant) yehgdotnet

View GitHub Profile
View gist:b88fa0bcd3845678d5d8434753a88566
Purpose: To prevent deobfuscation
Symbols are usually stripped during the build process, so you need the compiled byte-code and libraries to verify whether any unnecessary metadata has been discarded.
First find the nm binary in your Android NDK and export it (or create an alias).
View review object serialisation class
Object Serialization
Search the source code for the following keywords:
import java.io.Serializable
implements Serializable
JSON
Static analysis depends on the library being used. In case of the need to counter memory-dumping, make sure that highly sensitive information is not stored in JSON as you cannot guarantee any anti-memory dumping techniques with the standard libraries. You can check for the following keywords per library:
@yehgdotnet
yehgdotnet / gist:ec6ae948a6735d66f6eaff2ef60649a3
Created Feb 13, 2021
Bypass IP-based restriction through spoofed localhost header
View gist:ec6ae948a6735d66f6eaff2ef60649a3
X-Azure-ClientIP: 127.0.0.1
X-Azure-SocketIP: 127.0.0.1
X-Originating-IP: 127.0.0.1
X-Forwarded-For: 127.0.0.1
X-Remote-IP: 127.0.0.1
X-Remote-Addr: 127.0.0.1
X-Forwarded-Host: localhost
View shodan.go
package main
import (
"log"
//"os"
"context"
"github.com/ns3777k/go-shodan/shodan"
"fmt"
"flag"
"strings"
@yehgdotnet
yehgdotnet / goreadurlfromfile.go
Created Sep 28, 2020
Go read url from file (change target to your desired domain)
View goreadurlfromfile.go
package main
import (
"fmt"
"regexp"
"io/ioutil"
"log"
"os"
)
func main() {
argsWithoutProg := os.Args[1]
View godnslookup.go
package main
import (
"bufio"
"fmt"
"log"
"os"
"path/filepath"
"time"
"net"
View goscreenshot.go
//https://golangcode.com/headless-chrome-screenshot/
package main
import (
"context"
"io/ioutil"
"log"
"github.com/chromedp/cdproto/page"
@yehgdotnet
yehgdotnet / randomizeip.sh
Created Sep 25, 2020
Randomize Hostname and Renew IP
View randomizeip.sh
#!/bin/bash
echo +++++++++++++++++++++++++++++++++++++++++
echo Randomize Hostname and Renew IP
echo by Aung Khant, http://yehg.net
echo +++++++++++++++++++++++++++++++++++++++++
echo
########################################################
sleep 1
@yehgdotnet
yehgdotnet / recordlookup.go
Last active Sep 26, 2020
recordlookup.go
View recordlookup.go
package main
import (
"bufio"
"fmt"
"log"
"os"
"strings"
"regexp"
)
@yehgdotnet
yehgdotnet / process-file.py2
Created Aug 26, 2020
python: Run specific command on file content line by line
View process-file.py2
#
# Run specific command on file content line by line
# Coded by Myo Soe
#
#
import sys, getopt, os
def main(argv):