Skip to content

Instantly share code, notes, and snippets.

View stong's full-sized avatar

cts stong

View GitHub Profile
@stong
stong / 0x80071AB1-fix.md
Last active December 18, 2024 23:16
My solution for Windows Update error 0x80071AB1 (ERROR_LOG_GROWTH_FAILED)

I was trying to apply some Windows updates (specifically KB5048652) and it was failing. The system would reboot and try to apply the update (where it spins before the login screen), fail to apply the update, undo the update, and reboot.

Checking C:\Windows\Logs\CBS\CBS.log, I saw poqexec.exe failing on HRESULT 0x80071AB1 - ERROR_LOG_GROWTH_FAILED.

This HRESULT means

An attempt to create space in the transactional resource manager's log failed. The failure status has been recorded in the event log.

Log here might give the impression of a log file, but I think it is actually related to "log" in the concept of "transaction log for commit and rollback" like in databases. For an update service, I'd expect Windows wants the filesystem to have some kind of transaction mechanism so failed updates can be cleanly and safely rolled back. I'm not an engineer at Microsoft and I am just speculating, so I could be wrong.

@stong
stong / hook.c
Created November 13, 2024 11:30
// gcc -shared -fPIC -I/usr/local/cuda-12.0/targets/x86_64-linux/include/ hook.c -o hook.so -ldl && LD_PRELOAD=./hook.so python3.11 obfuscated_file.py
// Thanks Claude!
#include <nvml.h>
#define _GNU_SOURCE
#define PAGE_SIZE 4096
#include <stdio.h>
#include <dlfcn.h>
@stong
stong / cups-browsed.md
Last active January 15, 2025 14:08
CUPS disclosure leaked online. Not my report. The original author is @evilsocket

Original report

  • Affected Vendor: OpenPrinting
  • Affected Product: Several components of the CUPS printing system: cups-browsed, libppd, libcupsfilters and cups-filters.
  • Affected Version: All versions <= 2.0.1 (latest release) and master.
  • Significant ICS/OT impact? no
  • Reporter: Simone Margaritelli [[email protected]]
  • Vendor contacted? yes The vendor has been notified trough Github Advisories and all bugs have been confirmed:
@stong
stong / Microsoft-ncsi-fix.md
Last active September 26, 2024 20:49
How to fix microsoft connection status indicator (NCSI)

what is it

it's this little fucker in the tray spying on you because microsoft thinks normies are too stupid to understand when their internet is not working

@stong
stong / .gitattributes
Created March 19, 2024 17:50
Pandoc docx git diff gitconfig
# Documents
*.doc binary
*.docx binary diff=pandoc
*.xls binary
*.xlsx binary
*.xlt binary
*.xltm binary
*.pdf binary
*.ppt binary
@stong
stong / twitter.txt
Last active November 13, 2024 09:25
Twitter ublock rules
twitter.com##div[aria-label="Trending"]
twitter.com##aside[aria-label="Who to follow"]
twitter.com##a[aria-label="Search and explore"]
twitter.com##svg[aria-label="Verified account"]
twitter.com##a[aria-label="Communities"]
twitter.com##a[aria-label="Verified Orgs"]
twitter.com##a[aria-label="Jobs"]
twitter.com##a[aria-label="Top Articles"]
twitter.com##a[aria-label^="Notifications"]
twitter.com##a[aria-label="Home"]
@stong
stong / CleanBoot.java
Last active January 27, 2024 11:35
Real World CTF 2023: Dark Portal Writeup
package org.mapleir;
import org.mapleir.app.client.SimpleApplicationContext;
import org.mapleir.app.service.ApplicationClassSource;
import org.mapleir.app.service.InstalledRuntimeClassSource;
import org.mapleir.asm.ClassHelper;
import org.mapleir.asm.ClassNode;
import org.mapleir.asm.MethodNode;
import org.mapleir.context.AnalysisContext;
import org.mapleir.context.BasicAnalysisContext;
@stong
stong / cast_example.txt
Last active August 22, 2022 23:53
EVM universal constructor
cast rpc eth_sendTransaction '{"data": "'$(cat constructor_bytecode.txt)$(cat bytecode.txt)'"}'
@stong
stong / tee.py
Last active April 29, 2022 04:48
Duplicate pwntools process output to stdout with tee(2) syscall
import sys
import os
from pwn import *
def tee_process(p):
import threading
import ctypes
libc = ctypes.CDLL(None)
splice = libc.splice
tee = libc.tee
@stong
stong / CVE-2021-3156-PoC.md
Last active January 30, 2021 03:29
CVE-2021-3156 PoC

This PoC has been moved to an actual repo here.