Trinidad jjsdub556

Security enthusiast

mattifestation / ExpandDefenderSig.ps1

Created March 28, 2019 20:17

Decompresses Windows Defender AV signatures for exploration purposes

	filter Expand-DefenderAVSignatureDB {
	<#
	.SYNOPSIS

	Decompresses a Windows Defender AV signature database (.VDM file).

	.DESCRIPTION

	Expand-DefenderAVSignatureDB extracts a Windows Defender AV signature database (.VDM file). This function was developed by reversing mpengine.dll and with the help of Tavis Ormandy and his LoadLibrary project (https://github.com/taviso/loadlibrary). Note: Currently, "scrambled" databases are not supported although, I have yet to encounter a scrambled database. Thus far, all databases I've encountered are zlib-compressed.

minkione / msf_install.sh

Created May 22, 2017 08:31

Install metasploit on Debian 8

	# Install Oracle Java 8
	apt-get install software-properties-common
	add-apt-repository "deb http://ppa.launchpad.net/webupd8team/java/ubuntu xenial main" && apt-get update
	apt-get install oracle-java8-installer

	# Installing Dependencies
	apt-get update
	apt-get upgrade
	apt-get install build-essential libreadline-dev libssl-dev libpq5 libpq-dev libreadline5 libsqlite3-dev libpcap-dev git-core autoconf postgresql pgadmin3 curl zlib1g-dev libxml2-dev libxslt1-dev vncviewer libyaml-dev curl zlib1g-dev

jhass / dump_socket.sh

Last active June 11, 2024 13:15

Capture unix socket to pcap file with socat and tshark

	#!/bin/bash

	# Parameters
	socket="/run/foo.sock"
	dump="/tmp/capture.pcap"

	# Extract repetition
	port=9876
	source_socket="$(dirname "${socket}")/$(basename "${socket}").orig"