load without any analysis (file header at offset 0x0): r2 -n /path/to/file
- analyze all:
aa - show sections:
iS - list functions:
afl - list imports:
ii - list entrypoints:
ie - seek to function:
s sym.main
shekk shekkbuilder
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from requests import get | |
| from bs4 import BeautifulSoup | |
| import re | |
| import os | |
| def make_filename(fname): | |
| for c in ',! ().': | |
| fname = fname.replace(c, '_') | |
| while fname != fname.replace('__', '_'): | |
| fname = fname.replace('__', '_') |
williballenthin
/ yet another radare2 cheatsheet.md
Last active
March 15, 2025 05:52
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| http://phrack.org/issues/64/6.html | |
| https://loccs.sjtu.edu.cn/~romangol/download/papers/gossip_ccs2015.pdf | |
| http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/ | |
| http://www.slideshare.net/nullthreat/fund-linux-priv-esc-wprotections | |
| http://www.slideshare.net/sciosecurity/linux-kernel-exploitation | |
| http://events.linuxfoundation.org/sites/events/files/slides/slaballocators.pdf | |
| https://github.com/xairy/kaslr-bypass-via-prefetch | |
| http://www.jikos.cz/jikos/Kmalloc_Internals.html | |
| https://github.com/Fuzion24/AndroidKernelExploitationPlayground | |
| http://dcjtech.info/topic/linux-kernel-slab-allocators/ |
tomekr
/ pocorgtfo_index.tsv
Last active
April 6, 2021 08:34
An index of International Journal of Proof-of-Concept or Get The Fuck Out
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Issue | Title | Alternate Title | Author | |
|---|---|---|---|---|
| 0x00 | 2 iPod Antiforensics | Travis Goodspeed | ||
| 0x00 | 3 ELFs are dorky, Elves are cool | Sergey Bratus, Julian Bangert | ||
| 0x00 | 4 The Pastor Manul Laphroaig's First Epistle to Hacker Preachers of All Hats, in the sincerest hope that we might shut up about hats, and get back to hacking. | Manul Laphroaig | ||
| 0x00 | 5 Returning from ELF to Libc | Rebecca "Bx" Shapiro | ||
| 0x00 | 6 GTFO or #FAIL | FX of Phenoelit | ||
| 0x01 | 2 Four Lines of Javascript that Can’t Possibly Work So why do they? | Dan Kaminsky | ||
| 0x01 | 3 Weird Machines from Serena Butler’s TV Typewriter | Travis Goodspeed | ||
| 0x01 | 4 Making a Multi-Windows PE | Ange Albertini | ||
| 0x01 | 5 This ZIP is also a PDF | Julia Wolf |
shekkbuilder
/ set_nofile_limit.c
Last active
January 25, 2016 23:29
— forked from carlhoerberg/set_nofile_limit.c
Set nofile limit for a running process using prlimit64()
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #define _GNU_SOURCE | |
| #define _FILE_OFFSET_BITS 64 | |
| #include <stdio.h> | |
| #include <time.h> | |
| #include <stdlib.h> | |
| #include <unistd.h> | |
| #include <sys/resource.h> | |
| #include <sys/syscall.h> | |
| #define errExit(msg) do { perror(msg); exit(EXIT_FAILURE); \ | |
| } while (0) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Using properties inside strings | |
| $now = get-date | |
| $shortId = "$($now.Millisecond)$($now.Day)$($now.Month)" | |
| # Parameters, eg .\myscript.ps1 -arg1 value1 -arg2 value2 -force | |
| param ( | |
| [Parameter(Mandatory=$true)] | |
| [string] | |
| $arg1 = "defaultvalue", | |
| [string] $arg2 = $(throw "-arg2 is required."), |
Jarred-Sumner
/ comcast.js
Last active
September 7, 2022 01:30
Comcast injects this into webpages to show copyright notices
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Comcast Cable Communications, LLC Proprietary. Copyright 2014. | |
| // Intended use is to display browser notifications for critical and time sensitive events. | |
| var _ComcastAlert = (function(){ | |
| return { | |
| SYS_URL: '/e8f6b078-0f35-11de-85c5-efc5ef23aa1f/aupm/notify.do' | |
| , dragObj: {zIndex: 999999} | |
| , browser: null | |
| , comcastCheck: 1 | |
| , comcastTimer: null | |
| , xmlhttp: null |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import argparse | |
| import subprocess | |
| import re | |
| import os | |
| TYPECODES = ['\-', 'r', 'd', 'b', 'l', 'p', 's', 'w', 'v'] | |
| DESCRIPTIONS = [ | |
| 'unknown type', |
shekkbuilder
/ select_server.c
Created
November 4, 2015 16:00
Handle multiple socket connections with select and fd_set on Linux
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| Handle multiple socket connections with select and fd_set on Linux | |
| Silver Moon ( [email protected]) | |
| */ | |
| #include <stdio.h> | |
| #include <string.h> //strlen | |
| #include <stdlib.h> | |
| #include <errno.h> |
heralight
/ gen-dummy-package.sh
Created
November 3, 2015 17:59
A script to generate dummy debian package with equivs to bypass crazy dependencies
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| installPackage=false | |
| function process | |
| { | |
| packageName=$1 | |
| echo "######### key : $packageName" | |
| v=$(eval "apt-cache policy $packageName | grep 'Candidate:' | cut -c 14-") | |
| echo "######### version: $v" |