TheRealJunior
/ gist:ed2b9e03d6d161711e5b29cd226db4d3
Created
January 10, 2020 13:09
time sync virtualbox VBoxManager
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| VBoxManage setextradata "VM name" "VBoxInternal/Devices/VMMDev/0/Config/GetHostTimeDisabled" 1 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from selenium import webdriver | |
| chrome_options = webdriver.ChromeOptions() | |
| prefs = {"profile.managed_default_content_settings.images": 2} | |
| chrome_options.add_experimental_option("prefs", prefs) | |
| driver = webdriver.Chrome(chrome_options=chrome_options) |
TheRealJunior
/ .vimrc
Last active
January 7, 2020 20:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set nu ai | |
| syntax enable | |
| au BufRead,BufNewFile *.smali set filetype=smali | |
| set incsearch | |
| set clipboard=unnamedplus | |
| set backspace=indent,eol,start | |
| filetype plugin indent on | |
| " show existing tab with 4 spaces width | |
| set tabstop=4 |
TheRealJunior
/ Sublime Extensions
Created
October 18, 2019 14:33
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| HighlightWords ("keyword": "(?s)//CODE_START.*?//CODE_END") | |
| Jedi - Python autocompletion | |
| MarkdownPreview | |
| Package Control | |
| Pretty Json | |
| Smali | |
| Text Marker |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| awk -F 'delim' '{print $1; print $3}' |
TheRealJunior
/ extract_unity_il2cpp.py
Created
June 5, 2019 14:58
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import zipfile | |
| from logzero import logger | |
| import sys | |
| def extract_from_zip(zip,filename, outfilename): | |
| with zip.open(filename) as r: | |
| with open(outfilename, 'wb') as w: | |
| w.write(r.read()) |
TheRealJunior
/ research.sublime-completions
Last active
May 23, 2019 18:44
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Show hidden characters
| { | |
| "scope": "source.js", | |
| "completions": [ | |
| {"trigger": "fridainterceptor", "contents": "Interceptor.attach(\n ptr,\n {\n onEnter:function(args) {\n\n },\n onLeave: function(retval) {\n\n }\n }\n)"}, | |
| {"trigger": "fridaperform", "contents": "function main(){\n console.log('main()');\n}\n\nconsole.log('script loaded');\nJava.perform(main);"}, | |
| {"trigger": "fridause", "contents": "var kls = Java.use('kls');"}, | |
| {"trigger": "fridahex", "contents": "hexdump(\n ptr,\n {\n offset: 0,\n length: ptr_size\n }\n);" }, | |
| {"trigger": "fridabacktrace", "contents": "console.log('called from:\\n' +\n Thread.backtrace(this.context, Backtracer.ACCURATE)\n .map(DebugSymbol.fromAddress).join('\\n') + '\\n'\n);"}, | |
| {"trigger": "fridamods", "contents": "var mods = Process.enumerateModules().filter(function(mod){\n return mod.name.includes(\"<name>\");\n});"}, | |
| {"trigger": "fridaexport", "content |
TheRealJunior
/ tombstones.py
Last active
May 13, 2019 13:50
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import sys, subprocess | |
| from logzero import logger | |
| def get_tombstone_list(): | |
| output = str(subprocess.check_output(['adb', 'shell', 'su -c "ls /tombstones/"']), 'utf-8') | |
| tombstone_lines = [tombstone.strip() for tombstone in output.split('\n') if 'tombstone' in tombstone] | |
| return tombstone_lines | |
| def pull_tombstones(tombstone_list): |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function hook_jni_reg(){ | |
| /* use dictionary to cross-reference these */ | |
| var dvm_use_jni_bridge = Module.findExportByName(null, '_Z15dvmUseJNIBridgeP6MethodPv'); | |
| var find_direct_methods = Module.findExportByName(null, '_Z31dvmFindDirectMethodByDescriptorPK11ClassObjectPKcS3_'); | |
| console.log('use_jni_bridge', dvm_use_jni_bridge, 'find_direct_methods', find_direct_methods); | |
| Interceptor.attach( | |
| find_direct_methods, |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Parse Objective C | |
| #@author Guy Ishay | |
| #@category iOS | |
| #@keybinding | |
| #@menupath | |
| #@toolbar | |
| import jarray | |
| import ghidra.program.model.data.StringDataType as StringDataType | |