I hereby claim:
- I am xpn on github.
- I am xpn (https://keybase.io/xpn) on keybase.
- I have a public key whose fingerprint is 6822 0B71 BB92 8ABC 8171 4C0F 6B0B E64F 9AF4 238C
To claim this, I am signing this object:
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Collections.Generic; | |
| using System.Linq; | |
| using System.Text; | |
| using System.Threading.Tasks; | |
| using System.Data; | |
| using System.Data.SqlClient; | |
| namespace metasploit_sql_test | |
| { |
xpn
/ keybase.md
Created
October 9, 2015 22:39
xpn
/ invoke-shellcode.ps1
Created
November 15, 2015 23:24
Calls invoke-shellcode.ps1 upon load with a reverse meterpreter shell, and connects to meterpreter.local on port 443
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-Shellcode | |
| { | |
| <# | |
| .SYNOPSIS | |
| Inject shellcode into the process ID of your choosing or within the context of the running PowerShell process. | |
| PowerSploit Function: Invoke-Shellcode | |
| Author: Matthew Graeber (@mattifestation) | |
| License: BSD 3-Clause |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <string.h> | |
| #include <libusb-1.0/libusb.h> | |
| void printdev(libusb_device *dev) { | |
| struct libusb_device_descriptor desc; | |
| struct libusb_config_descriptor *config; | |
| struct libusb_interface_descriptor *interdesc; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <fcntl.h> | |
| #include <unistd.h> | |
| #include <string.h> | |
| void print_success(void *input) { | |
| if (*(char *)(input+1) == 'Y') { | |
| printf("GOT: %s\n", input); | |
| return; | |
| } |
xpn
/ tc_ioctl_open_test_poc.py
Last active
December 21, 2019 07:27
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import sys | |
| from ctypes import * | |
| FILE_DEVICE_UNKNOWN = 0x00000022 | |
| METHOD_BUFFERED = 0 | |
| FILE_ANY_ACCESS = 0 | |
| TC_MAX_PATH = 260 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <? | |
| phpinfo(); | |
| ?> |
xpn
/ meterpreter_decode_xor.py
Created
December 7, 2016 16:54
Radare2 r2pipe script to decode Meterpreters Single Byte XOR Countdown Encoder
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Radare2 r2pipe script to decode Meterpreters Single Byte XOR Countdown Encoder | |
| # https://github.com/rapid7/metasploit-framework/blob/master/modules/encoders/x86/countdown.rb | |
| import r2pipe | |
| import sys | |
| def dump(addr): | |
| pass | |
| def startEsil(): |
xpn
/ pipe_jmp_call_additive.py
Created
December 7, 2016 17:18
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # r2pipe script using ESIL to decode the msfvenom jmp_call_additive XOR encoder | |
| import r2pipe | |
| import sys | |
| def dump(addr): | |
| pass | |
| def startEsil(): | |
| r.cmd('e io.cache=true') |
xpn
/ alpha_mixed.py
Created
December 8, 2016 00:59
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # r2pipe script using ESIL to decode the msfvenom x86/alpha_mixed encoder | |
| import r2pipe | |
| import sys | |
| def dump(addr): | |
| pass | |
| def startEsil(): | |
| r.cmd('e io.cache=true') |
OlderNewer