berzerk0
/ CTFWRITE-Europa-HTB.md
Last active
November 15, 2018 19:19
CTF Writeup: Europa on HackTheBox
DiabloHorn
/ pe-aware-split.py
Created
November 12, 2017 17:47
Split file while preserving PE format
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # DiabloHorn https://diablohorn.com | |
| # blank out bytes taking into account the PE file format | |
| # input file: base64 malware.exe | rev > enc.txt | |
| import sys | |
| import os | |
| #pip install pefile | |
| import pefile | |
| import argparse | |
| import logging |
hugsy
/ win81-token-stealing-shellcode.asm
Last active
March 5, 2021 16:31
Token stealing shellcode for Windows 8.1 x64
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ;; | |
| ;; Token stealing shellcode for Windows 8.1 x64 | |
| ;; | |
| ;; Save the current context on the stack | |
| push rax | |
| push rbx | |
| push rcx | |
| ;; Get the current process |
christoph2
/ structureWithEnums.py
Last active
August 9, 2025 01:23
Add missing enum feature to ctypes Structures.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import ctypes | |
| import enum | |
| # | |
| # Prerequisits: | |
| # ------------- | |
| # If you are using Python < 3.4 run `pip install enum34`. | |
| # | |
| # Problem Definition | |
| # ------------------ |
NewerOlder