Skip to content

Instantly share code, notes, and snippets.

View Souhardya's full-sized avatar
working on personal prenuers

Souhardya Sardar Souhardya

working on personal prenuers
View GitHub Profile
@X-C3LL
X-C3LL / FreshyCalls-VBA.vba
Created September 4, 2022 23:51
Retrieving SSN for syscalling in VBA following FreshyCalls technique
' Proof of Concept: retrieving SSN for syscalling in VBA
' Author: Juan Manuel Fernandez (@TheXC3LL)
'Based on:
'https://www.mdsec.co.uk/2020/12/bypassing-user-mode-hooks-and-direct-invocation-of-system-calls-for-red-teams/
'https://www.crummie5.club/freshycalls/
Private Type LARGE_INTEGER
@jthuraisamy
jthuraisamy / windows-toolkit.md
Last active April 12, 2022 20:00
Windows Toolkit

Windows Toolkit

Binary

Native Binaries

IDA Plugins Preferred Neutral Unreviewed
@makelariss
makelariss / popshellslikeitsatuesday.py
Last active January 13, 2023 09:41
NT AUTHORITY\SYSTEM through Handle Inheritance using Python
# -*- coding: UTF-8 -*-
import enum, os, sys
# https://twitter.com/highsenburger69
from ctypes.wintypes import *
from ctypes import *
# These libraries have the APIs we need
kernel32 = WinDLL('kernel32', use_last_error=True)
advapi32 = WinDLL('advapi32', use_last_error=True)
shell32 = WinDLL('shell32', use_last_error=True)
psapi = WinDLL('psapi.dll', use_last_error=True)
@netbiosX
netbiosX / Shellcode.cs
Created June 6, 2017 00:22
C# file that contains shellcode and bypasses AppLocker via Assembly Load
using System;
using System.Net;
using System.Diagnostics;
using System.Reflection;
using System.Configuration.Install;
using System.Runtime.InteropServices;
 
/*
Author: Casey Smith, Twitter: @subTee
License: BSD 3-Clause
Start GDB and execute the following commands:
catch syscall ptrace
commands 1
set ($eax) = 0
continue
end
Then, run the app and voilá! you can debug your program :)
@paschalis-mpeis
paschalis-mpeis / myvm.c
Created June 1, 2015 14:58
Minmal Register Based VM
/* A simple(cool) example of a register based VM, w/ a minimal IS (load, store,add) implemented by
http://www.opensourceforu.com/2011/06/virtual-machines-for-abstraction-dalvik-vm/
Instruction length: 16bit.
Registers: 4
* myvm.c
*/
#include "stdio.h"
@omidkrad
omidkrad / ExecJavaScript.ps1
Last active April 10, 2023 18:12
PowerShell function to run JavaScript/JQuery and return results back to PS, with timeout
# PowerShell function to run JavaScript/JQuery and return results back to PS, with timeout
# some web page with jQuery in it
$url = "http://jquery.com/"
Function ResetTimer
{
$script:startTime = [DateTime]::Now
}
@DmitrySoshnikov
DmitrySoshnikov / reg-vm.js
Last active June 15, 2018 20:38
A simple educational Register-based VM, Assembler, and Disassembler.
// "Fetch, decode, eval!"
// A simple Register-based VM, Assembler, and Disassembler.
// by Dmitry Soshnikov <[email protected]>
// This virtual machine (VM) consists of registers (data storage),
// and operations (instructions) which operate on the registers.
// --------------------------------------------------------------
// Registers.
// --------------------------------------------------------------