💚

SkyN9ne SkyN9ne

💚

Hi, I'm SkyN9ne / Sky9Remixes ❤️ Reddit: https://reddit.com/user/Skyline9Time/ YT: https://YouTube.com/@Sky9Remixes/

SkyN9ne / uac_bypass.c

Created May 22, 2024 02:23 — forked from Cr4sh/uac_bypass.c

	void TestCopy()
	{
	BOOL cond = FALSE;
	IFileOperation *FileOperation1 = NULL;
	IShellItem isrc = NULL, idst = NULL;
	BIND_OPTS3 bop;
	SHELLEXECUTEINFOW shexec;
	HRESULT r;

	do {

SkyN9ne / WoW64_call.cpp

Created May 22, 2024 02:25 — forked from Cr4sh/WoW64_call.cpp

WoW64 Heaven's Gate

	#include "stdafx.h"

	#define DB(_val_) __asm __emit (_val_)

	#define INVALID_SYSCALL (DWORD)(-1)

	// code selectors
	#define CS_32 0x23
	#define CS_64 0x33

SkyN9ne / deobfuscate.py

Last active June 1, 2024 11:31 — forked from AmgdGocha/deobfuscation.py

Deobfuscates strings

	#!/usr/bin/env python

	def deobfuscate_strings(numbers_string, substract_number):
	result = ''

	numbers_list = numbers_string.split('.')

	for number in numbers_list:
	result = result + chr(int(number) - int(substract_number))

SkyN9ne / Malware.au3

Created June 1, 2024 14:09

Malicious AutoIt3 script (deobfuscated)

	Global $susp_domain_1 = "googleads.publicvm.com"
	Global $int_223 = 223
	Global $string_C:\MicrosoftSecurity = "C:\MicrosoftSecurity"
	Global $susp_file_lnk_1 = "MicrosoftCMD.lnk"
	Global $string_microsoft = "Microsoft"
	Global $string_microsoftsecurity = "Microsoft Security"
	Global $string_microsoftsecurity_exe = "MicrosoftSecurity.exe"
	Global $int_4 = 4
	Global $string_vbs = "vbs"
	Local $string_zeus = "Zeus"

SkyN9ne / amsi-bypass.ps1

Last active June 1, 2024 20:25 — forked from FatRodzianko/my-am-bypass.ps1

small modification to Rastemouse's AmsiScanBuffer bypass to use bytes. Uses different opcode bytes

	$Win32 = @"
	using System;
	using System.Runtime.InteropServices;

	public class Win32 {

	[DllImport("kernel32")]
	public static extern IntPtr GetProcAddress(IntPtr hModule, string procName);

	[DllImport("kernel32")]

SkyN9ne / .editorconfig

Last active June 3, 2024 20:33 — forked from cmbaughman/.editorconfig

Editor Config

	[*]
	charset = utf-8
	end_of_line = lf
	indent_size = 2
	indent_style = space
	insert_final_newline = true
	trim_trailing_whitespace = true
	quote_type = single

	### Frontend files

SkyN9ne / GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}

Created June 3, 2024 20:35 — forked from cmbaughman/GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}

Windows Super Control Pannel

	# Windows God Mode

	Create a folder anywhere you want a shortcut to
	every setting imaginable called `GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}`

	That's it. I got this from Twitter or something.

SkyN9ne / install.sh

Created June 20, 2024 10:03 — forked from mattt/install.sh

	#!/usr/bin/env bash

	PREFIX=${PREFIX:-/usr/local}

	set -eo pipefail

	if ! which gh >/dev/null; then
	echo "gh is not installed. Please install gh and try again."
	echo "See https://github.com/cli/cli"
	exit 1

SkyN9ne / UbuntuWSL-bashrc.SH

Last active June 22, 2024 09:57

A bash.bashrc configuration file. Designed originally for usage on Ubuntu

	# ~/.bashrc: executed by bash(1) for non-login shells.
	# see /usr/share/doc/bash/examples/startup-files (in the package bash-doc)
	# for examples

	# If not running interactively, don't do anything
	[ -z "$PS1" ] && return

	# don't put duplicate lines in the history. See bash(1) for more options
	# ... or force ignoredups and ignorespace
	HISTCONTROL=ignoredups:ignorespace

SkyN9ne / termux-bashrc.sh

Created July 16, 2024 17:42

My bash.bashrc configuration for Termux on Android

	# Command history tweaks:
	# - Append history instead of overwriting
	# when shell exits.
	# - When using history substitution, do not
	# exec command immediately.
	# - Do not save to history commands starting
	# with space.
	# - Do not save duplicated commands.
	shopt -s histappend
	shopt -s histverify