Miroslav Stampar stamparm
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Generic Zeus malware unpacker (ResumeThread) | |
| // by Miroslav Stampar (@stamparm) | |
| // http://about.me/stamparm | |
| VAR ResumeThread | |
| VAR msg | |
| VAR xname | |
| VAR xloc | |
| VAR xsize |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ python panoptic.py -u "http://192.168.21.128/lfi.php?file=default" -a -w | |
| .-',--.`-. | |
| <_ | () | _> | |
| `-`=='-' | |
| Panoptic v0.1-93e0cf0 (https://github.com/lightos/Panoptic/) | |
| [i] Starting scan at: 11:46:21 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ python sqlmap.py -u "http://192.168.21.128/sqlmap/mysql/get_int.php?id=1" -z "ign,flu,bat" --banner -f | |
| sqlmap/1.0-dev-7614c81 - automatic SQL injection and database takeover tool | |
| http://sqlmap.org | |
| [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program | |
| [*] starting at 10:30:49 | |
| [10:30:49] [INFO] testing connection to the target url |
stamparm
/ crime.py
Created
September 11, 2012 13:19
— forked from koto/crime.py
It's not a crime to build a CRIME
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This is supposedly what CRIME by Juliano Rizzo and Thai Duong will do | |
| # Algorithm by Thomas Pornin, coding by xorninja, improved by @kkotowicz | |
| # http://security.blogoverflow.com/2012/09/how-can-you-protect-yourself-from-crime-beasts-successor/ | |
| import string | |
| import zlib | |
| import sys | |
| import random | |
| charset = string.letters + string.digits + "%/+=" |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| import socket | |
| import sys | |
| import threading | |
| import time | |
| import traceback | |
| import urllib2 | |
| production = True |
NewerOlder