n4sm

import idaapi

def find_sig(segment, sig, callback):
    seg = idaapi.get_segm_by_name(segment)
    if not seg:
        return
    ea, maxea = seg.start_ea, seg.end_ea
    while ea != idaapi.BADADDR:
        ea = idaapi.find_binary(ea, maxea, sig, 16, idaapi.SEARCH_DOWN)
        if ea != idaapi.BADADDR:

heaths

//go:build windows

package main

import (
	"flag"
	"fmt"
	"log"
	"os"
	"path/filepath"

cokia

    BALANCE_RAILPLUS = new byte[] { -112, 76, 0, 0, 4 };
    BALANCE_CASHBEE = new byte[] { -112, 76, 0, 0, 4 };
    BALANCE_HIPASS = new byte[] { -112, 92, 0, 0, 4 };
    BALANCE_MASTER = new byte[] { -112, 76, 0, 0, 4 };
    BALANCE_TMONEY = new byte[] { -112, 76, 0, 0, 4 };
    BALANCE_HANPAY = new byte[] { -112, 76, 0, 0, 4 };
    CARDINFO_CASHBEE = new byte[] { 0, -78, 1, 20, 51 };
    CARDINFO_HIPASS = new byte[] { 0, -80, -120, 0, 12 };
    CARDINFO_MASTER = new byte[] { 0, -78, 1, 12, 0 };
    CARDINFO_TMONEY = new byte[] { 0, -78, 1, 20, 51 };

incogbyte

console.log("[*] SSL Pinning Bypasses");
console.log(`[*] Your frida version: ${Frida.version}`);
console.log(`[*] Your script runtime: ${Script.runtime}`);

/**
 * by incogbyte
 * Common functions 
 * thx apkunpacker, NVISOsecurity, TheDauntless
 * Remember that sslpinning can be custom, and sometimes u need to reversing using ghidra,IDA or something like that.
 * !!! THIS SCRIPT IS NOT A SILVER BULLET !!

DanaEpp

#!/bin/env python3

import argparse
import datetime
import re
import sys
import uuid

###############################################################################
# Based off of Daniel Thatcher's guid tool

Keno

commit ec046ffc2b8b9ed6916e402ee580e18da6673709
Author: Keno Fischer <[email protected]>
Date:   Sun Jul 3 01:53:53 2022 +0000

    WIP: AMD CPUID override
    
    Since e9ea1e7, we've had the ability to turn a userspace `cpuid`
    instruction into a SIGSEGV using the ARCH_(GET|SET)_CPUID arch_prctl.
    However, this capability is limited to supported hardware, which
    currently means Intel CPUs. AMD CPUs do not have a documented facility

zavan

// Load the IFrame Player API code asynchronously.
var tag = document.createElement("script");

tag.src = "https://www.youtube.com/iframe_api";
var firstScriptTag = document.getElementsByTagName("script")[0];
firstScriptTag.parentNode.insertBefore(tag, firstScriptTag);

// Instantiate the Player.
function onYouTubeIframeAPIReady() {
  var player = new YT.Player("player", {

sekkr1

How to GDB android native libraries

[1] Install NDK from android studio

[2] Push appropriate gdb-server to phone

adb push ~/android-sdk-linux/ndk-bundle/prebuilt/android-<arch>/gdbserver/gdbserver /data/local/tmp
adb shell "chmod 777 /data/local/tmp/gdbserver"
adb shell "ls -l /data/local/tmp/gdbserver"

[4] Forward ports

adb forward tcp:1337 tcp:1337

astarasikov

#!/usr/bin/env python3
# Usage: python convert_teegris_tas.py ~/Downloads/sw/pda/s10/fw/fw_G973FXXU4BTA8/AP/vendor/tee/

import os
import sys
from textwrap import wrap

def teegris_ta_to_elf(path_from, path_to):
    with open(path_from, 'rb') as fin:
        with open(path_to, 'wb') as fout:

conwid

public class IniFormatter : IFormatter
{
    public class IniTypeBinder : SerializationBinder
    {
        public override Type BindToType(string assemblyName, string typeName) => Type.GetType(typeName.Split('=')[1]);
        public override void BindToName(Type serializedType, out string assemblyName, out string typeName)
        {
            assemblyName = $"{IniFormatter.AssemblyNameKey}={serializedType.Assembly.FullName}";
            typeName = $"{IniFormatter.ClassNameKey}={serializedType.AssemblyQualifiedName}";
        }