Keiran Smith affix
affix
/ regreSSHion-check.sh
Last active
July 3, 2024 12:17
A simple regreSSHion (CVE-2024-6387) checker written in bash. This makes use of nc however if nc is unavailable it reverts to making use of /dev/tcp
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Copyright 2024 Keiran 'Affix' Smith | |
| # | |
| # Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated | |
| # documentation files (the “Software”), to deal in the Software without restriction, including without limitation | |
| # the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, | |
| # and to permit persons to whom the Software is furnished to do so, subject to the following conditions: | |
| # The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. | |
| # |
affix
/ hookingread.c
Last active
October 10, 2022 08:45
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <unistd.h> | |
| #include <string.h> | |
| #include <dlfcn.h> | |
| #define PROC_NAME "pipewire" | |
| ssize_t read(int fd, void *buf, size_t count) { | |
| ssize_t (*orig_read)(int fd, void *buf, size_t count); | |
| ssize_t result; |
affix
/ hookingread.c
Last active
October 10, 2022 08:30
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <unistd.h> | |
| #include <string.h> | |
| #include <dlfcn.h> | |
| ssize_t read(int fd, void *buf, size_t count) { | |
| ssize_t (*orig_read)(int fd, void *buf, size_t count); | |
| ssize_t result; | |
| orig_read = dlsym(RTLD_NEXT, "read"); |
affix
/ hookingread.c
Created
October 10, 2022 08:26
Hooking Read from my tutorial on process hiding, part 1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <unistd.h> | |
| ssize_t read(int fd, void *buf, size_t count) { | |
| return 0; | |
| } |
affix
/ github-auto-sso.user.js
Last active
February 22, 2022 10:33
A greesemonkey/tampermonkey/*monkey script to automatically login to github orgs using SSO
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // ==UserScript== | |
| // @name Github Auto SSO | |
| // @namespace Violentmonkey Scripts | |
| // @match https://github.com/* | |
| // @grant none | |
| // @version 1.0.1 | |
| // @author Keiran Smith <opensource@keiran.scot> | |
| // @description 26/07/2021, 09:05:17 | |
| // ==/UserScript== |
affix
/ SSTI Payloads
Last active
September 17, 2021 11:06
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <xss> | |
| <attack> | |
| <name>0</name> | |
| <code>{{2*2}}[[3*3]]</code> | |
| </attack> | |
| <attack> | |
| <name>1</name> | |
| <code>{{3*3}}</code> | |
| </attack> | |
| <attack> |
affix
/ shellcode_win_part4.go
Last active
July 3, 2021 22:29
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/hex" | |
| "fmt" | |
| "syscall" | |
| "unsafe" | |
| ) | |
| var procVirtualProtect = syscall.NewLazyDLL("kernel32.dll").NewProc("VirtualProtect") |
affix
/ shellcode_win_part3.go
Last active
July 3, 2021 22:20
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/hex" | |
| "fmt" | |
| "syscall" | |
| "unsafe" | |
| ) | |
| var procVirtualProtect = syscall.NewLazyDLL("kernel32.dll").NewProc("VirtualProtect") |
affix
/ shellcode_win_part2.go
Created
July 3, 2021 22:09
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/hex" | |
| "fmt" | |
| "syscall" | |
| "unsafe" | |
| ) | |
| var procVirtualProtect = syscall.NewLazyDLL("kernel32.dll").NewProc("VirtualProtect") |
affix
/ shellcode_win_part1.go
Last active
July 3, 2021 21:55
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/hex" | |
| "fmt" | |
| ) | |
| func main() { | |
| sc, err := hex.DecodeString("fc4883e4f0e8c000000041...") |
NewerOlder