Skip to content

Instantly share code, notes, and snippets.

View sirdarckcat's full-sized avatar

Eduardo' Vela" <Nava> (sirdarckcat) sirdarckcat

279 followers · 3 following
View GitHub Profile
@sirdarckcat
sirdarckcat / PoC_proxyLogon.py
Created March 12, 2021 17:04
PoC of proxylogon chain SSRF(CVE-2021-26855) to write file
import requests
from urllib3.exceptions import InsecureRequestWarning
import random
import string
import sys
def id_generator(size=6, chars=string.ascii_lowercase + string.digits):
return ''.join(random.choice(chars) for _ in range(size))
@sirdarckcat
sirdarckcat / syzkaller.sql
Created July 20, 2023 04:17
https://linux-mirror-db.storage.googleapis.com/mirror.sl3
select * from (
select
syzkaller,
fixed_commit,
fixes_commit,
fixes_tags.tags `fixes_tags`,
fixed_tags.tags `fixed_tags`
from (
select
syzkaller,
@sirdarckcat
sirdarckcat / Makefile
Last active November 19, 2023 22:41
reptar smaller poc
rexit: rexit.o
ld $^ -o $@
rexit.o: rexit.asm
nasm -f elf64 $^ -o $@
clean:
rm -rf rexit.o rexit
@sirdarckcat
sirdarckcat / Makefile
Last active November 21, 2023 21:51
reptar.elf: reptar.elf.asm
nasm -f bin reptar.elf.asm -o reptar.elf
chmod +x reptar.elf
@sirdarckcat
sirdarckcat / callgraph.md
Last active January 21, 2024 20:51
https://docs.google.com/spreadsheets/d/1tEzKNL_mblCWV5dufFjqksuj66eVxQZmosgr094i0mk/edit?usp=sharing

get vmlinux path from https://syzkaller.appspot.com/upstream/manager/ci2-upstream-kcsan-gce then run https://github.com/torvalds/linux/blob/master/scripts/extract-vmlinux then use r2 to generate a global callgraph https://reverseengineering.stackexchange.com/questions/16081/how-to-generate-the-call-graph-of-a-binary-file

grep ' \[label="' output.dot | sort -u | sed 's/ URL=.*//g' | sed 's/ .label=/,/g' > ../symbols.csv
grep ' -> ' output.dot | grep -v 'sym.__' | sed 's/ .color.*//g' | sed 's/ -> /,/g' > callgraph.csv
@sirdarckcat
sirdarckcat / 🐧🐻‍❄️.md
Created December 10, 2024 09:59

It might come as a surprise, but polar bears and penguins—icons of the Arctic and Antarctic respectively—have never shared the same wild habitat. For much of human history, the very idea of one seeing the other would have been unthinkable. Yet, as European zoos and menageries began collecting ever more exotic animals in the 19th and early 20th centuries, their once-impossible meeting became a reality. While we cannot pinpoint an exact date down to the day or hour, records from several prominent zoological institutions allow us to piece together a plausible and well-documented instance when a polar bear first laid eyes on a penguin.

Historical Backdrop:

The London Zoological Gardens (often simply called the London Zoo), established by the Zoological Society of London in 1828, rapidly became one of the world’s foremost centers for exotic animal display and study. By the mid-19th century, the zoo had already acquired numerous unusual species—lions from Africa, tigers from Asia, kangaroos from Australia, and ev