Skip to content

Instantly share code, notes, and snippets.

View Romern's full-sized avatar

Romern

31 followers · 54 following
  • Aachen
View GitHub Profile
@Romern
Romern / README.md
Created June 10, 2026 06:34
Wsass dump fix (Claude opus 4.8 high)

WSASS and similar tools dump PPL-protected LSASS by abusing an out-of-date WerFaultSecure.exe (the missing PPL check is the whole point of using the old binary, so a version-matched build is not an option).

On a modern OS that old binary is no longer ABI-compatible with the host's wer.dll / faultrep.dll, and WER's stitched minidump writer mis-drives MiniDumpWriteDump: seeks in the I/O callback are dropped, so memory writes are appended instead of placed. The resulting file keeps a valid MDMP magic but:

  • the MINIDUMP_HEADER's NumberOfStreams / StreamDirectoryRva are stale (they
@Romern
Romern / remove_object_replacements.py
Created February 28, 2026 08:47
Remove pre-rendered versions of images and subdocuments in LibreOffice Documents
import zipfile
import re
import sys
"""
<draw:image xlink:href="Pictures/1000000100000538000005385B1FE860.png" xlink:type="simple" xlink:show="embed" xlink:actuate="onLoad" draw:mime-type="image/png"/>
<draw:image xlink:href="./ObjectReplacements/Object 1" xlink:type="simple" xlink:show="embed" xlink:actuate="onLoad"/>
"""
regex = re.compile('<draw:image[^>]*(png|ObjectReplacements)[^>]*>')
@Romern
Romern / SampDsValidateNgcKeyValueForComputer.diff
Last active January 29, 2026 19:21
diff between KB5065428 and KB5073723 for ntdsai.dll (aka why is adding keycredentials suddently broken)
-void SampDsValidateNgcKeyValueForComputer(undefined8 param_1,undefined8 param_2)
+int SampDsValidateNgcKeyValueForComputerNew(undefined8 param_1,undefined8 param_2)
{
- undefined1 local_58 [80];
+ int iVar1;
+ undefined2 uVar2;
+ undefined4 uVar3;
+ undefined4 uVar4;
@Romern
Romern / adownload.py
Last active January 3, 2026 12:45
Studocu Druckansicht
import requests
from pathlib import Path
import uuid
headers = {
'X-Session-Id': str(uuid.uuid4()),
'X-Request-Id': str(uuid.uuid4())
}
base_html = Path('./base.html').read_text()
@Romern
Romern / memos_import_markdown.py
Created June 29, 2025 15:30
Import Folder Structure containign markdown notes into usememos (chatgpt generated)
import os
import sys
import requests
def create_memos(baseurl, auth_cookie, folder_path):
headers = {
'Cookie': f'memos.access-token={auth_cookie}',
'Content-Type': 'application/json'
}
@Romern
Romern / bookmarkToFolders.py
Created May 31, 2025 21:56
Loads a Firefox Bookmark export file and writes the titles and urls in a folder structure
import json
import string
from pathlib import Path
import sys
if len(sys.argv) != 3:
print(f'Usage: {sys.argv[0]} bookmarkfile.json outputPathBase')
exit()
data = json.load(open(sys.argv[1],'r'))
@Romern
Romern / create_epsf.py
Created May 27, 2025 07:46
DOS Binary EPS
import struct
import sys
def xor_checksum(data):
checksum = 0
for byte in data:
checksum ^= byte
return checksum & 0xFFFF
def create_dos_eps(postscript_path, tiff_path, output_path):
@Romern
Romern / Main.c
Last active March 20, 2025 14:46
Add user to group
#include <windows.h>
#include <lm.h>
#include <stdio.h>
#pragma comment(lib, "Netapi32.lib")
void AddUserToLocalGroup(LPCWSTR userName, LPCWSTR groupName) {
LOCALGROUP_MEMBERS_INFO_3 memberInfo;
NET_API_STATUS status;
@Romern
Romern / replaceProxy.py
Created March 6, 2025 10:19
import socket
import threading
# Configuration
LISTEN_HOST = '0.0.0.0' # Listen on all interfaces
LISTEN_PORT = 12345 # Port to listen on
TARGET_HOST = 'example.com' # Destination host
TARGET_PORT = 80 # Destination port
SEARCH_BYTES = b'hello' # Byte sequence to search for
REPLACE_BYTES = b'world' # Replacement byte sequence
@Romern
Romern / gist:bd270471571cc56d3c6d8ffcf1d71673
Created February 25, 2025 14:53
package main
import (
"crypto/tls"
"fmt"
"io"
"log"
"net"
"github.com/hexasant/go-hexdump"