Skip to content

Instantly share code, notes, and snippets.

View TrQ-Hoan's full-sized avatar
🌱

Hoàn TrQ-Hoan

🌱
3 followers · 0 following
View GitHub Profile
@TrQ-Hoan
TrQ-Hoan / quickedit.cpp
Last active June 27, 2024 04:13
Windows console toggle QUICK_EDIT_MODE
#include <windows.h>
#include <stdio.h>
#include <string.h>
/*
cl /EHsc /MT /nologo /D "WIN32" /D "NDEBUG" /D "_CONSOLE" /D "_USING_V110_SDK71_" quickedit.cpp
link /OUT:quickedit.exe /MACHINE:X86 /OPT:REF /SAFESEH /ERRORREPORT:PROMPT /NOLOGO /TLBID:1 /SUBSYSTEM:CONSOLE",5.01" quickedit.obj
*/
#pragma comment(lib, "User32.lib")
@TrQ-Hoan
TrQ-Hoan / ReadMe.md
Last active October 26, 2023 09:44
A simple scripts setups new Env Windows 
Set-ExecutionPolicy -ExecutionPolicy Bypass -Force
@TrQ-Hoan
TrQ-Hoan / MbXT_Keygen.py
Created July 30, 2023 03:45
A keygen for MobaXterm modify without arguments (Only for Installation ver), Originally by DoubleLabyrinth
#/usr/bin/env python3
'''
MobaXterm Keygen Originally by DoubleLabyrinth
Link OG: https://github.com/flygon2018/MobaXterm-keygen
'''
import os, sys, zipfile
from platform import node as gethostname
VariantBase64Table = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/='
@TrQ-Hoan
TrQ-Hoan / Auto-Elevate.cpp
Last active July 8, 2023 03:53
Auto-locates winlogon.exe, steals and impersonates it's process TOKEN, and spawns a new SYSTEM-level process with the stolen token. (https://github.com/hfiref0x/UACME)
#include <Windows.h>
#include <Psapi.h>
#include <Shlobj.h>
#include <sddl.h>
#include <shlwapi.h>
#include <iostream>
#include <string>
#pragma comment(lib, "Shell32.lib")
#pragma comment(lib, "Shlwapi.lib")
@TrQ-Hoan
TrQ-Hoan / build.bash
Last active July 9, 2024 17:32
Golang install on WSL
#!/bin/bash
package=$1
if [[ -z "$package" ]]; then
echo "usage: $0 <package-name>"
exit 1
fi
package_split=(${package//\// })
package_name=${package_split[-1]}
@TrQ-Hoan
TrQ-Hoan / bbkd.go
Last active April 25, 2023 17:54
Public Bitbucket Download Directory (Python 3 & Go >= 1.19)
package main
import (
"bytes"
"encoding/json"
"fmt"
"io"
"io/ioutil"
"net/http"
"net/url"
@TrQ-Hoan
TrQ-Hoan / c_cpp_properties.json
Created October 23, 2022 08:46
Simple vs-code config msvc
{
"configurations": [
{
"name": "Win32",
"includePath": [
"C:/Program Files (x86)/Windows Kits/8.1/Include/**",
"C:/Program Files (x86)/Windows Kits/10/Include/10.0.10240.0/ucrt",
"C:/Program Files (x86)/Microsoft Visual Studio 14.0/VC/include",
"${default}",
"${workspaceFolder}",
@TrQ-Hoan
TrQ-Hoan / admin.c
Last active October 23, 2022 05:27
Administator CMD
#include <Windows.h>
// cl.exe /D_X86_ /EHsc /MT admin.c /link /NODEFAULTLIB /ENTRY:main /MANIFEST /MANIFESTUAC:level='requireAdministrator' /MACHINE:X86 kernel32.lib libcmt.lib
// mt.exe -manifest admin.exe.manifest -outputresource:admin.exe;#1
int main() {
int const path_len = 32767;
wchar_t path[32767] = {0};
DWORD err = 0;
STARTUPINFOW si;
@TrQ-Hoan
TrQ-Hoan / A Tutorial Setups.md
Created August 11, 2022 08:43
Setup windows 10 tools for RE Forensics
  1. Download Tools
  2. Install winget-cli
  3. Install Visual C++ for Python 2.7
  4. Update drive (using Dirver Easy)
  5. Enable run .ps1 at Powershell Administrators: Set-ExecutionPolicy Unrestricted;
  6. Install IDA
  7. Install tools (using zEssentialTools.ps1)
  8. Edit env change Python 3 path higher than Python 2 path
  9. Setup Python IDA
  10. Setup IDA plugina, capa-rules(rules author: herrcore)
@TrQ-Hoan
TrQ-Hoan / VMwareFusion_Export_OVA-OVF.md
Created August 11, 2022 04:12
Export a VM in OVA format in VMware Fusion for OS X

Change directory to tools folder

cd /Applications/VMware\ Fusion.app/Contents/Library/VMware\ OVF\ Tool/

Export VM to OVA/OVF

./ovftool --acceptAllEulas /Path/to/VM.vmx  /Path/to/VM_export.{ova/ovf}