Skip to content

Instantly share code, notes, and snippets.

View MegaBedder's full-sized avatar

Bedder MegaBedder

  • Honduras
View GitHub Profile
@MegaBedder
MegaBedder / malware.md
Created October 22, 2015 09:37
Malware

Malware Research, Collection, and Analysis

All of this information was collected by doing google searches or from the URLs mentioned in the References section. I collected them here because I wanted a single list that I could update, refer to, and share with others. Simply having a link listed here is not necessarily an endorsement. I only have personal experience with a small number of the resources listed here. I did however, make an initial attempt to remove dead links from the reference links. Some good starting points are Lenny Zelster's Reverse-Engineering Malware Cheat Sheet and Analyzing Malicious Documents Cheat Sheet. In fact, as you'll notice in the reference section, Lenny's site is included multiple times. He has some really awesome information.

Mailing Lists and Discussion Forums

http://www.securityfocus.com/archive/138/description http://reddit.c

@MegaBedder
MegaBedder / cnl2.php5
Created July 10, 2017 10:39
CNL2 Decryption [AES][BASE16][PHP]
<?php
/**
Aes encryption
*/
class AES {
const M_CBC = 'cbc';
const M_CFB = 'cfb';
const M_ECB = 'ecb';
const M_NOFB = 'nofb';
@MegaBedder
MegaBedder / browser.md
Last active October 21, 2024 20:09
Browser emulators & controllers

Headless Browser

A headless browser is a web browser without a graphical user interface.

Headless browsers provide automated control of a web page in an environment similar to popular web browsers, but are executed via a command-line interface or using network communication.

They are particularly useful for testing web pages as they are able to render and understand HTML the same way a browser would, including execution of JavaScript and AJAX which are usually not available when using other testing methods.

Headless browsers are used for:

  • Test automation in modern web applications.
@MegaBedder
MegaBedder / README.md
Last active September 19, 2018 01:10
[FIXED][BUG] stream_socket_enable_crypto - Inconsistent stream crypto values across versions [PHP 5.6.7 - 7.1.22][OpenSSL]

PHP Bugs (#69195)[https://bugs.php.net/bug.php?id=69195]

PHP Commit: https://github.com/php/php-src/commit/10bc5fd4c4c8e1dd57bd911b086e9872a56300a0

The SSLv23 (STREAM_CRYPTO_METHOD_SSLv23_*) client/server methods will no longer negotiate the use of the insecure SSLv2 or SSLv3 protocols by default. Users wishing to allow these protocols must explicitly add them to the method bitmask via the appropriate flags.

PHP Manual: https://secure.php.net/manual/en/function.stream-socket-enable-crypto.php

<?php
$v1 = TRUE;
$v2 = 123;
$v3 = "qqq{$v2}zzz";
// After converting each of its expression's values to strings,
// 'echo' concatenates them in order given, and writes the resulting string to STDOUT.
// 'echo' it does not produce a result.
// After converting its expression's value to a string,