iNarcissuss

/*
* CVE-2013-1763 SOCK_DIAG bug in kernel 3.3-3.8
*
* Ported by fuzion24
*
* Tested on Nexus 4 
*   cshell@mako:/ $ cat /proc/version
*   Linux version 3.4.0-perf-gf43c3d9 ([email protected]) (gcc version 4.6.x-google 20120106 (prerelease) (GCC) ) #1 SMP PREEMPT Mon Jun 17 16:55:05 PDT 2013
*   shell@mako:/data/local/tmp $ ./diag_sock_exploit
*   Sock diag handlers c11d8048

iNarcissuss

# INSTALL INSTRUCTIONS: save as ~/.gdbinit
#
# DESCRIPTION: A user-friendly gdb configuration file.
#
# REVISION : 7.3 (16/04/2010)
#
# CONTRIBUTORS: mammon_, elaine, pusillus, mong, zhang le, l0kit,
#               truthix the cyberpunk, fG!, gln
#
# FEEDBACK: https://www.reverse-engineering.net

iNarcissuss

#!/usr/bin/python
import subprocess
import sys

functions = subprocess.check_output(['./arm-eabi-nm', '-DCnS', 'libminecraftpe.so']).splitlines()
for functions_line in functions:
    if "MobFactory::CreateMob" in functions_line:#if "Packet::write" in functions_line:
        functions_line_split = functions_line.split(' ')
        stop_address = hex(int(functions_line_split[0], 16)  + int(functions_line_split[1], 16))
        function =  subprocess.check_output(['./arm-eabi-objdump',

iNarcissuss

#!/bin/bash
#Based off of http://code.activestate.com/recipes/491264/
if [ "$1" == "startserver" ]; then
    ncat -u -l 5355 -c $(readlink -f $0) -k
    exit
fi
timeout 1s cat /dev/stdin > input
req=$(cat input | xxd -p)

#Functions from http://ubuntuforums.org/showthread.php?t=735140&p=4584216#post4584216

iNarcissuss

#!/bin/bash -xe
nc_running()
{
    NC_RUN=$(adb shell busybox ps -w | grep "NCRUN='1'" > /dev/null 2>&1; echo $?)
}

tcpdump_running()
{
    TCP_RUN=$(adb shell busybox ps -w | grep -v "NCRUN='1'" | grep 'TCPRUN="1"' > /dev/null 2>&1; echo $?)
}

iNarcissuss

# -*- coding: UTF-8 -*-

import zipfile
import biplist
import tempfile
import shutil
import re
import os