浮萍 fupinglee
fupinglee
/ eternalblue_merge_shellcode.py
Created
July 6, 2017 05:21
— forked from worawit/eternalblue_merge_shellcode.py
Windows x64 and x86 kernel shellcode for eternalblue exploit
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This file has no update anymore. Please see https://github.com/worawit/MS17-010 | |
| import sys | |
| from struct import pack | |
| if len(sys.argv) < 4: | |
| print('Usage: {} sc_x86 sc_x64 sc_out'.format(sys.argv[0])) | |
| sys.exit() | |
| sc_x86 = open(sys.argv[1], 'rb').read() | |
| sc_x64 = open(sys.argv[2], 'rb').read() |
fupinglee
/ eqgrp_services_lookup.ps1
Created
April 20, 2017 00:48
— forked from x0rz/eqgrp_services_lookup.ps1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| echo "[+] Getting \system\\currentcontrolset\\services" | |
| $raw_services = Get-ChildItem -Path hklm:\system\\currentcontrolset\\services | select Name | |
| $services = @() | |
| foreach ($srv in $raw_services) { | |
| $shortname = "$srv".Split("\")[-1] | |
| $shortname = $shortname.Substring(0,$shortname.Length-1) | |
| $services += $shortname | |
| } |
fupinglee
/ shadowbroker
Created
April 15, 2017 03:25
— forked from misterch0c/shadowbroker
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| . | |
| ├── matree | |
| ├── swift | |
| │ ├── 00503_0_254.242_2013mar02 | |
| │ ├── 00546_0_ensbdasa-09aug2013 | |
| │ ├── 00553_0_ensbdpix3-09aug2013 | |
| │ ├── 00554_0_ensbdpix4-09aug2013 | |
| │ ├── 00555_0_ensbdrtr1-2013aug09 | |
| │ ├── 00557_0_ENSBDVPN1-02AUG2013 | |
| │ ├── 00558_0_ENSBDVPN2-02AUG2013 |