Skip to content

Instantly share code, notes, and snippets.

View iakat's full-sized avatar
📸

Katia Esposito iakat

📸
  • 07:49 (UTC +01:00)
View GitHub Profile
@smx-smx
smx-smx / XZ Backdoor Analysis
Last active October 12, 2024 07:23
[WIP] XZ Backdoor Analysis and symbol mapping
XZ Backdoor symbol deobfuscation. Updated as i make progress
@q3k
q3k / hashes.txt
Last active November 11, 2024 17:38
liblzma backdoor strings extracted from 5.6.1 (from a built-in trie)
0810 b' from '
0678 b' ssh2'
00d8 b'%.48s:%.48s():%d (pid=%ld)\x00'
0708 b'%s'
0108 b'/usr/sbin/sshd\x00'
0870 b'Accepted password for '
01a0 b'Accepted publickey for '
0c40 b'BN_bin2bn\x00'
06d0 b'BN_bn2bin\x00'
0958 b'BN_dup\x00'
@thesamesam
thesamesam / xz-backdoor.md
Last active November 4, 2024 18:32
xz-utils backdoor situation (CVE-2024-3094)

FAQ on the xz-utils backdoor (CVE-2024-3094)

This is a living document. Everything in this document is made in good faith of being accurate, but like I just said; we don't yet know everything about what's going on.

Background

On March 29th, 2024, a backdoor was discovered in xz-utils, a suite of software that

@nnewc
nnewc / etcd.go
Last active March 9, 2023 18:18
etcd decrypt secret
package main
import (
"crypto/aes"
"crypto/cipher"
"fmt"
"os"
)
const transformerPrefix = "k8s:enc:aescbc:v1:k-wcldg:"
@iam-py-test
iam-py-test / data.min.json.ubo.txt
Last active September 15, 2023 21:40
A version of ClearURLs for uBlock Origin (forked)
! Title: ClearURLs for uBo
! Homepage: https://gist.github.com/iam-py-test/1db25658541945170eaaf191b399fac0
! Note: This was forked from https://gist.github.com/rusty-snake/5cd83a87d680ecbd03e79a1a06758207, which is based off of https://github.com/ClearURLs/Rules. I - iam-py-test - have made some modifications as to keep it up-to-date with the source and to fix bugs
$removeparam=/^p[fd]_rd_[a-z]*=/,domain=amazon.*
$removeparam=qid,domain=amazon.*
$removeparam=/^srs?=/,domain=amazon.*
$removeparam=/^__mk_[a-z]{1\,3}_[a-z]{1\,3}=/,domain=amazon.*
$removeparam=spIA,domain=amazon.*
$removeparam=ms3_c,domain=amazon.*
@cassiozen
cassiozen / pixelbook-dev-setup.md
Last active October 22, 2023 12:06 — forked from denolfe/pixelbook-linux-setup.md
Notes on setting up Pixelbook for development

Pixelbook Setup

Change your channel

Some of the features mentioned in this document only work on the beta or Dev channel. To change your channel:

  1. chrome://help in a browser window
  2. Click Detailed Build Information
  3. Change Channel
  4. Select Beta (Or Dev, if you're feeling adventurous)
@daemonp
daemonp / encrypted-root-arch-linux-pixelbook.md
Last active August 24, 2024 20:49
Installing Arch Linux on a Google Pixelbook (i7 16gb 500gb NVMe)

Overview

Stable enough for my initial use-case, light-duty laptop for travel and presentations, running Linux all the time but retain a small ChromeOS volume for firmware updates and restoring settings.

1st attempt I wiped the drive and then found that when the machine attempted to suspect when the lid closed it wiped the NVRAM with no other option to boot into legacy mode than to restore ChromeOS and enable it again.

  • Setup base system in ChromeOS
  • Fully encrypted Btrfs root partition & ext4 boot
  • Install Arch Linux
@richardg867
richardg867 / proxy.py
Last active January 7, 2024 18:12
Comic Chat fixer
#
# Comic Chat fixer MITM proxy: fixes Comic Chat to (sort of) work with modern
# IRC servers. Tested with Microsoft Chat 2.5 on Windows XP, 8 and 10
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
@jalp
jalp / supervisor_client.py
Created April 7, 2014 07:39
Supervisor api client in Python
import xmlrpclib
class ProcessStatus(object):
RUNNING = 'RUNNING'
STOPPED = 'STOPPED'
FATAL = 'FATAL'
RESTARTING = 'RESTARTING'
SHUTDOWN = 'SHUTDOWN'