I hereby claim:
- I am circleous on github.
- I am circleous (https://keybase.io/circleous) on keybase.
- I have a public key ASAdoj9TLDRFcsJnQECJA0Cjwffh6YlO5nx5SWW982FlFwo
To claim this, I am signing this object:
circleous
/ keybase.md
Created
October 31, 2016 16:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <jni.h> | |
| #include <android/log.h> | |
| #include <dlfcn.h> | |
| #include <sys/types.h> | |
| #include <stdlib.h> | |
| //#include "TKHooklib.h" | |
| #define LOG_TAG "HOOK" | |
| #define LOGI(...) __android_log_print(ANDROID_LOG_INFO,LOG_TAG,__VA_ARGS__) |
circleous
/ pscrotum
Created
March 12, 2017 23:22
Take screenshot with escrotum and upload it to safe.moe. Taken from https://aur.archlinux.org/packages/pscrotum/
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| pomf() { | |
| token="" | |
| uppomf="https://safe.moe/api/upload" | |
| if test $# -lt 1 ; then | |
| echo "Usage: `basename $0` FILE [FILE...]" | |
| exit 1 | |
| fi |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # https://github.com/ray-cp/pwn_debug/blob/master/build.sh | |
| #!/bin/sh | |
| # echo "install some deps" | |
| # sudo apt-get install gawk -y | |
| # sudo apt-get install bison -y | |
| # sudo apt-get install gcc-multilib -y | |
| # sudo apt-get install g++-multilib -y |
circleous
/ get_last_gists_from_user.sh
Created
December 1, 2019 13:09
KOM311 Sistem Operasi - Week 14 - misc command
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| if [ $# -ne 1 ]; then | |
| echo -e "$0 - get last gists from a user" | |
| echo -e "Usage:" | |
| echo -e "\t$0 <username>\n" | |
| echo -e "Example:" | |
| echo -e "\t$0 circleous" | |
| else | |
| url=`curl -s https://api.github.com/users/$1/gists | grep url | head -n 1 | awk '{print $2}' | sed 's/"\(.*\)",/\1/'` |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| source ~/git/pwndbg/gdbinit.py | |
| #source ~/git/peda/peda.py | |
| set context-code-lines 7 | |
| set dereference-limit 3 | |
| set context-source-code-lines 5 | |
| set context-stack-lines 5 | |
| set context-sections regs disasm code stack expressions | |
| add-auto-load-safe-path /home/kyra/ctf/ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Copyright © 2015 Serpent7776. All Rights Reserved. | |
| # Redistribution and use in source and binary forms, with or without | |
| # modification, are permitted provided that the following conditions are met: | |
| # 1. Redistributions of source code must retain the above copyright | |
| # notice, this list of conditions and the following disclaimer. | |
| # 2. Redistributions in binary form must reproduce the above copyright | |
| # notice, this list of conditions and the following disclaimer in the |
circleous
/ get_sys_call_table.asm
Last active
May 14, 2020 23:54
x86_64 dirty hack to get syscall table address, https://github.com/ultral/linux-keylogger/blob/master/keylogger.c#L40-L59
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| get_system_call: | |
| mov ecx, 0xc0000082 | |
| rdmsr ; eax = low, edx = high | |
| sal rdx, 32 | |
| cdqe | |
| or rax, rdx ; rax = guess | |
| .loop_init: | |
| mov rcx, rax | |
| add rcx, 500 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # pwndbg scripting | |
| gdb.execute('b* 0x555555554982') # call rdx | |
| gdb.execute('r < input') | |
| gdb.execute('s') # step into call | |
| flag = [] | |
| while True: | |
| instr = pwndbg.disasm.one() # get current instruction | |
| # instr is a part of capstone object, https://www.capstone-engine.org/lang_python.html |
OlderNewer