- いずれも要PTCアカウント
- 現在世界で最も開発が盛んなOSSのひとつ
- 付近のポケモンをGoogleマップに表示
- 座標は起動時オプション決め打ちなので動的に変えられるようにしたい
- PokemonGo-MapのAndroid版
Yuma Kurogome ntddk
ntddk
/ LxpSyscall.log
Created
October 7, 2016 18:56
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| LxpSyscall_WRITEV PAGE 00000001C00546A0 00000190 00000048 00000020 R . . . . . . | |
| LxpSyscall_WRITE PAGE 00000001C0054590 00000103 00000048 00000020 R . . . . . . | |
| LxpSyscall_WAIT4 PAGE 00000001C0054520 00000061 00000038 00000018 R . . . . . . | |
| LxpSyscall_VFORK PAGE 00000001C00544F0 0000002F 00000028 00000004 R . . . . . . | |
| LxpSyscall_UTIMES PAGE 00000001C0054400 000000E4 00000078 00000000 R . . . . . . | |
| LxpSyscall_UTIMENSAT PAGE 00000001C0054190 00000268 00000098 00000000 R . . . . . . | |
| LxpSyscall_UTIME PAGE 00000001C00540F0 0000009A 00000068 00000000 R . . . . . . | |
| LxpSyscall_UNSHARE PAGE 00000001C0054090 00000055 00000028 00000000 R . . . . . . | |
| LxpSyscall_UNLINKAT PAGE 00000001C0054080 00000010 00000028 00000000 R . . . . . . | |
| LxpSyscall_UNLINK PAGE 00000001C0054060 0000001A 00000028 00000000 R . . . . . . |
ntddk
/ PyPDF2Highlight.py
Created
December 12, 2016 14:17
— forked from agentcooper/PyPDF2Highlight.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from PyPDF2.generic import ( | |
| DictionaryObject, | |
| NumberObject, | |
| FloatObject, | |
| NameObject, | |
| TextStringObject, | |
| ArrayObject | |
| ) | |
| # x1, y1 starts in bottom left corner |
ntddk
/ windows_server_2016_as_a_desktop_os.md
Created
March 13, 2017 04:27
Windows Server 2016をデスクトップOSとして使う
ntddk
/ gist:d4d7c29aeda6768ed393824266f5a9be
Created
April 11, 2017 14:07
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "editor.fontSize": 12, | |
| "editor.renderWhitespace": "all", | |
| "editor.wordWrap": "on", | |
| "editor.renderControlCharacters": true, | |
| "editor.cursorBlinking": "solid", | |
| "window.reopenFolders": "all", | |
| "window.openFilesInNewWindow": "off", | |
| "window.openFoldersInNewWindow": "off", | |
| "files.insertFinalNewline": true, |
ntddk
/ WannaCry-SMB.c
Created
May 15, 2017 05:41
— forked from msuiche/WannaCry-SMB.c
WannaCry - DOUBLEPULSAR references
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // https://twitter.com/msuiche | |
| int threadMain() | |
| { | |
| unsigned int i; // edi@1 | |
| _DWORD *v1; // eax@2 | |
| void *v2; // esi@7 | |
| char v4; // [sp+13h] [bp-2Dh]@0 | |
| char v5; // [sp+14h] [bp-2Ch]@1 | |
| void *Memory; // [sp+18h] [bp-28h]@1 |
ntddk
/ windbg_detect_doublepulsar_smb.py
Created
May 31, 2017 15:03
windbg-doublepulsar-detection-script
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # coding: utf-8 | |
| import pykd | |
| for i in pykd.dbgCommand('dps srv!SrvTransaction2DispatchTable').split('\n'): | |
| if len(i) > 0 and '00000000' not in i and 'srv!' not in i: # addr addr symbol | |
| print 'Doublepulsar hook detected: ' + i |
ntddk
/ README.md
Created
February 26, 2018 06:29
— forked from jthuraisamy/README.md
PyExZ3 Example with HackSysExtremeVulnerableDriver
TL;DR: Using symbolic execution to recover driver IOCTL codes that are computed at runtime.
The goal here is to find valid IOCTL codes for the HackSysExtremeVulnerableDriver by analyzing the binary. The control flow varies between the binary and source due to compiler optimizations. This results in a situation where only a few IOCTL codes in the assembly are represented as a constant with the remaining being computed at runtime.
The code in hevd_ioctl.py is a approximation of the control flow of the compiled IrpDeviceIoCtlHandler function. The effects of the compiler optimization are more pronounced when comparing this code to the original C function. To comply with requirements of the PyExZ3 module, the target function is named after the script's filename, and the `ex
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| curl https://raw.githubusercontent.com/akameco/sana-voice/master/sana-voice-list.json > sana-voice-list.json | |
| cat sana-voice-list.json | jq -r '.[].link' | while read line; do wget -nc $line; done | |
| (while true; do ls -la | awk '$0~/mp3/{print $9}' | shuf -n 1 | xargs -Iargs cvlc --quiet --no-repeat args 2>/dev/null vlc://quit; done)& |
OlderNewer