| IDA Plugins | Preferred | Neutral | Unreviewed |
|---|
DmitrySoshnikov
/ reg-vm.js
Last active
June 15, 2018 20:38
A simple educational Register-based VM, Assembler, and Disassembler.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // "Fetch, decode, eval!" | |
| // A simple Register-based VM, Assembler, and Disassembler. | |
| // by Dmitry Soshnikov <[email protected]> | |
| // This virtual machine (VM) consists of registers (data storage), | |
| // and operations (instructions) which operate on the registers. | |
| // -------------------------------------------------------------- | |
| // Registers. | |
| // -------------------------------------------------------------- |
omidkrad
/ ExecJavaScript.ps1
Last active
April 10, 2023 18:12
PowerShell function to run JavaScript/JQuery and return results back to PS, with timeout
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PowerShell function to run JavaScript/JQuery and return results back to PS, with timeout | |
| # some web page with jQuery in it | |
| $url = "http://jquery.com/" | |
| Function ResetTimer | |
| { | |
| $script:startTime = [DateTime]::Now | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* A simple(cool) example of a register based VM, w/ a minimal IS (load, store,add) implemented by | |
| http://www.opensourceforu.com/2011/06/virtual-machines-for-abstraction-dalvik-vm/ | |
| Instruction length: 16bit. | |
| Registers: 4 | |
| * myvm.c | |
| */ | |
| #include "stdio.h" |
poxyran
/ Easy bypass for ptrace(PTRACE_TRACEME, 0, 0) in GDB)
Last active
October 29, 2024 22:40
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Start GDB and execute the following commands: | |
| catch syscall ptrace | |
| commands 1 | |
| set ($eax) = 0 | |
| continue | |
| end | |
| Then, run the app and voilá! you can debug your program :) |
netbiosX
/ Shellcode.cs
Created
June 6, 2017 00:22
C# file that contains shellcode and bypasses AppLocker via Assembly Load
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Net; | |
| using System.Diagnostics; | |
| using System.Reflection; | |
| using System.Configuration.Install; | |
| using System.Runtime.InteropServices; | |
| /* | |
| Author: Casey Smith, Twitter: @subTee | |
| License: BSD 3-Clause |
makelariss
/ popshellslikeitsatuesday.py
Last active
January 13, 2023 09:41
NT AUTHORITY\SYSTEM through Handle Inheritance using Python
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- coding: UTF-8 -*- | |
| import enum, os, sys | |
| # https://twitter.com/highsenburger69 | |
| from ctypes.wintypes import * | |
| from ctypes import * | |
| # These libraries have the APIs we need | |
| kernel32 = WinDLL('kernel32', use_last_error=True) | |
| advapi32 = WinDLL('advapi32', use_last_error=True) | |
| shell32 = WinDLL('shell32', use_last_error=True) | |
| psapi = WinDLL('psapi.dll', use_last_error=True) |
X-C3LL
/ FreshyCalls-VBA.vba
Created
September 4, 2022 23:51
Retrieving SSN for syscalling in VBA following FreshyCalls technique
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ' Proof of Concept: retrieving SSN for syscalling in VBA | |
| ' Author: Juan Manuel Fernandez (@TheXC3LL) | |
| 'Based on: | |
| 'https://www.mdsec.co.uk/2020/12/bypassing-user-mode-hooks-and-direct-invocation-of-system-calls-for-red-teams/ | |
| 'https://www.crummie5.club/freshycalls/ | |
| Private Type LARGE_INTEGER |