typcn

💼

Extremely busy

Just for fun

typcn / SampleHide.cpp

Created October 6, 2018 07:05

A sample code to hide process window with HyperPlatform. https://github.com/tandasat/HyperPlatform

	// Copyright (c) 2015-2016, tandasat. All rights reserved.
	// Use of this source code is governed by a MIT-style license that can be
	// found in the LICENSE file.

	/// @file
	/// Implements DdiMon functions.

	#include "ddi_mon.h"
	#include <ntimage.h>
	#define NTSTRSAFE_NO_CB_FUNCTIONS

typcn / honeypot.js

Created March 2, 2018 01:02

Memcached honeypot

	const dgram = require('dgram');
	const net = require('net');
	const server = dgram.createSocket('udp4');
	const fs = require('fs')

	let udp_logger = fs.createWriteStream('udp_log.txt', {
	flags: 'a'
	});
	let tcp_logger = fs.createWriteStream('tcp_log.txt', {
	flags: 'a'

typcn / gist:9cb8da3fc97cabb1692f1938e777d8f3

Created February 18, 2018 11:39

Restore file from nginx cache

	const fs = require('fs');


	let text = fs.readFileSync('listcachefile.txt').toString();
	let a = text.split(' TTL:');
	for(let i = 0;i < a.length;i++){
	let t = a[i].split('\n');
	let file = t[0].replace('file:','');
	let url = t[1].split('http://cache-i/');
	if(file.indexOf('EXPIRE') > -1){

typcn / drvhider.c

Last active January 4, 2024 15:06

Hide Driver from ARK tools ( win7 -- win10 x64, patchguard safe )

	VOID DrvObjHide(_In_ PVOID Context) {
	// Wait the driver fully loaded
	NTSTATUS status = STATUS_SUCCESS;
	INT64 interval = 1000 * -10000i64;
	status = KeDelayExecutionThread(KernelMode,FALSE,(PLARGE_INTEGER)&interval);
	PDRIVER_OBJECT driver_object = (PDRIVER_OBJECT)Context;

	tMiProcessLoaderEntry fun = (tMiProcessLoaderEntry)FindMiProcessLoaderEntry();
	// MiProcessLoaderEntry will remove your driver from PsLoadedModuleList, and the patchguard moniting context.
	// So it won't trigger a BSOD

typcn / railgun-arch-install.zsh

Last active May 5, 2019 03:07

Install cloudflare railgun on ArchLinux

	#!/usr/bin/zsh
	mkdir rg-install
	cd rg-install
	wget http://pkg.cloudflare.com/dists/xenial/railgun/binary-amd64/Packages.gz
	gunzip Packages.gz
	wget "http://pkg.cloudflare.com/${$(cat Packages \| grep Filename:)//Filename: }"
	ar -x *.deb
	tar xvf data.tar.xz
	rm -rf /usr/local/railgun
	mkdir -p /usr/local/railgun

typcn / gist:0b10dbb140faa296cabc988ac80f718e

Last active April 29, 2018 09:06

Fix macOS ping spike ( openwrt / lede )

typcn / umetrip_1s.js

Last active July 19, 2017 20:31

Umetrip OneSecond Activity Cheat Source

	// Open: http://www.umetrip.com/activity/second/second.html?userId=YourUserId&issue=9
	// Use packet capture to get UserID And Token

	function doStart() {
	$.ajax({
	url: storeUrl + "/UmeStore/OneSecond/oneSecondStart.do?userId=YourUserID&token=YourToken&issue=9",
	contentType: "application/x-www-form-urlencoded",
	dataType: "json",
	cache: !1,
	timeout: 5e4,

typcn / gist:9db39342334d1d2ba02b971ed0482435

Last active April 29, 2022 04:40

A old overwatch hack crack... maybe work if you found the latest DLL....

	// olprk.cpp : Defines the entry point for the console application.
	//

	#include "stdafx.h"
	#include <Windows.h>
	#include <stdio.h>
	#include <stdlib.h>
	#include <signal.h>
	#include <stdint.h>
	#include <tchar.h>

typcn / run.js

Last active February 1, 2017 18:36

umetrip_auto_sign

	const tpush = require('typcnpush-sdk');
	const http = require('http');
	tpush.useInternalMode();

	setInterval(function(){
	let options = {
	host: 'ume1.umetrip.com',
	port: 80,
	path: '/UmeAd/everyday/luck.do?sid=YOUR_SESSION_ID',
	method: 'GET'

typcn / 302.js

Last active May 1, 2016 19:34

GCTF Opabina Regalis

	var fs = require("fs");
	var p = require("node-protobuf");
	var pb = new p(fs.readFileSync("out.desc"));
	var tls = require('tls');
	var crypto = require('crypto');
	var http = require("http");


	var conn = tls.connect(13001, 'ssl-added-and-removed-here.ctfcompetition.com', (socket) => {
	console.log('Connected');