I hereby claim:
- I am darkcodersc on github.
- I am phrozen (https://keybase.io/phrozen) on keybase.
- I have a public key whose fingerprint is EF3C 6EB6 8C53 6324 C9C3 E612 B99D BFFC A25A A3D1
To claim this, I am signing this object:
Jean-Pierre LESUEUR (Microsoft MVP) DarkCoderSc
DarkCoderSc
/ IceCold_Reloaded_ServerSim.py
Created
January 17, 2025 16:13
Simulate a portion of the old MSN protocol, focusing specifically on the authentication process, to make IceCold Reloaded believe it is functioning correctly. This script emulates both the essential components of the MSN protocol and the Passport authentication portal. (!) Ensure you update your host file to redirect the relevant domain names t…
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Jean-Pierre LESUEUR (@DarkCoderSc) | |
| # | |
| # https://github.com/DarkCoderSc | |
| # https://github.com/PhrozenIO | |
| # https://www.phrozen.io | |
| # | |
| # Description: | |
| # Simulate a portion of the old MSN protocol, focusing specifically on the authentication process, | |
| # to make IceCold Reloaded believe it is functioning correctly. This script emulates both the | |
| # essential components of the MSN protocol and the Passport authentication portal. (!) Ensure you |
DarkCoderSc
/ JavaAppHdpi.sh
Last active
February 15, 2023 08:40
Scale JAVA Application on Linux for HDPi support (Example for Burp Suite)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| `sudo sh -c 'echo "JAVA_TOOL_OPTIONS=-Dsun.java2d.uiScale=2" >> /etc/environment'` | |
| # Reboot machine and voila! |
DarkCoderSc
/ ExtractStrings.py
Last active
November 21, 2022 13:37
Extract ASCII and/or UNICODE strings from files.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Jean-Pierre LESUEUR (@DarkCoderSc) | |
| # https://keybase.io/phrozen | |
| import argparse | |
| import mmap | |
| from itertools import chain | |
DarkCoderSc
/ keybase.md
Created
November 19, 2022 09:19
DarkCoderSc
/ Timestomp.cs
Last active
August 9, 2022 14:32
https://unprotect.it/snippet/timestomp/121/ - Author: Jean-Pierre LESUEUR (@DarkCoderSc)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.IO; | |
| void timeStomp(String targetFile) | |
| { | |
| targetFile = Path.GetFullPath(targetFile); | |
| if (!File.Exists(targetFile)) | |
| { | |
| throw new FileNotFoundException(String.Format("File \"{0}\" does not exists.", targetFile)); |
DarkCoderSc
/ Unprotect_RunPE.pas
Created
June 23, 2022 18:45
https://unprotect.it/technique/process-hollowing-runpe/ - Author: Jean-Pierre LESUEUR (@DarkCoderSc)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Support both x86-32 and x86-64 | |
| program Unprotect_RunPE; | |
| {$APPTYPE CONSOLE} | |
| {$R *.res} | |
| uses | |
| System.Classes, |
DarkCoderSc
/ Unprotect_DLLInjection_CreateRemoteThread_LoadLibrary.pas
Created
June 17, 2022 13:59
https://unprotect.it/technique/dll-injection-via-createremotethread-and-loadlibrary/ - (Author: Jean-Pierre LESUEUR (@DarkCoderSc)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| (* | |
| Example of DLL Code to test DLL Injection: | |
| ------------------------------------------ | |
| BOF>> | |
| library UnprotectTestDLL; | |
| uses | |
| WinApi.Windows, |
DarkCoderSc
/ Unprotect_ProcEnvInjection_DLLInjection.pas
Created
June 17, 2022 13:09
https://unprotect.it/technique/procenvinjection-remote-code-injection-by-abusing-process-environment-strings/ - (Author: Jean-Pierre LESUEUR (@DarkCoderSc)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| (* | |
| Example of DLL Code to test DLL Injection: | |
| ------------------------------------------ | |
| BOF>> | |
| library UnprotectTestDLL; | |
| uses | |
| WinApi.Windows, |
DarkCoderSc
/ Unprotect_NtQueryInformation_ProcessDebugPort.cs
Last active
June 17, 2022 13:09
https://unprotect.it/technique/ntqueryinformationprocess/ - (Author: Jean-Pierre LESUEUR (@DarkCoderSc)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Runtime.InteropServices; | |
| [DllImport("ntdll.dll", SetLastError = true)] | |
| static extern int NtQueryInformationProcess( | |
| IntPtr processHandle, | |
| int processInformationClass, | |
| ref IntPtr processInformation, | |
| uint processInformationLength, | |
| ref IntPtr returnLength |
DarkCoderSc
/ Unprotect_NtQueryInformation_ProcessDebugPort.pas
Last active
June 17, 2022 13:09
https://unprotect.it/technique/file-melt/ - (Author: Jean-Pierre LESUEUR (@DarkCoderSc)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| program NtQueryProcessInformation; | |
| {$APPTYPE CONSOLE} | |
| {$R *.res} | |
| uses | |
| Winapi.Windows, | |
| System.SysUtils; |
NewerOlder