Ange Albertini angea
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # WadDump | |
| import argparse | |
| SIZE_MIN = 4 + 4 + 4 | |
| signatures = { | |
| b"IWAD": "Wad", | |
| b"PWAD": "Patch Wad", |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # FileCraft - Ange Albertini 2024 | |
| import hashlib | |
| import struct | |
| import sys | |
| import zlib | |
| def crc32(data): |
angea
/ inject_pickle.py
Created
December 21, 2024 16:08
Demonstrates pickled file injection via the Fickling module
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Demonstrates pickled file injection via the Fickling module | |
| # Ange Albertini 2024 | |
| import ast | |
| import pickle | |
| import fickling | |
| import string | |
| FILENAME = "message.pkl" |
angea
/ sqlbuddy.py
Last active
January 25, 2025 15:11
Scans SQLite files for known features (UserVersion, AppId, Schema...)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Scans SQLite files for known features (UserVersion, AppId, Schema...) | |
| # Ange Albertini 2024 | |
| import argparse | |
| import hashlib | |
| import sqlite3 | |
| import sys | |
| user_versions = { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Generate an EICAR CRC collision | |
| # Albertini Stevens 2024 | |
| echo -n 'AAAAAA<=EICAR CRC collision? Use Shake128/Kangaroo12/Blake3 instead!' > text | |
| #sha256sum text | |
| #xxd text | |
| #echo | |
| cat text | crchack -b 0.0:+.8*6:1 -b 0.1:+.8*6:1 -b 0.2:+.8*6:1 -b 0.3:+.8*6:1 -b 0.4:+.8*6:1 -b 0.5:+.8*6:1 - 6851cf3c > mycar |