Skip to content

Instantly share code, notes, and snippets.

View wliment's full-sized avatar

wliment

6 followers · 14 following
View GitHub Profile
@wliment
wliment / Exploiting Lua 5.1 on 32-bit Windows.md
Last active November 29, 2018 14:15 — forked from corsix/Exploiting Lua 5.1 on 32-bit Windows.md

Exploiting Lua 5.1 on 32-bit Windows

The following Lua program generates a Lua bytecode program called ignore-unsigned-sga.fnt, which in turn loads a DLL from within an extremely locked down Lua 5.1 sandbox in a program called RelicCOH2.exe. The remainder of this document attempts to explain how this program works by a whirlwind tour of relevent bits of the Lua 5.1 virtual machine.

if string.dump(function()end):sub(1, 12) ~= "\27Lua\81\0\1\4\4\4\8\0" then
  error("This generator requires a 32-bit version of Lua 5.1")
end

local function outer()
  local magic -- In bytecode, the stack slot corresponding to this local is changed
@wliment
wliment / RandomValidateCode.java
Created January 3, 2018 08:44
生成随机验证码
import java.awt.Color;
import java.awt.Font;
import java.awt.Graphics;
import java.awt.image.BufferedImage;
import java.util.Random;
import javax.imageio.ImageIO;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
@wliment
wliment / gitstars.json
Last active November 22, 2017 10:01
github stars manager for production
{"lastModified":1511344904034,"labels":[{"name":"hack","id":1511344894735,"repos":[4793392]},{"id":1511344904033,"name":"sql","repos":[4793392]}]}
@wliment
wliment / jquery_isblank.js
Created May 11, 2015 11:28
判断对象内容是否为空的jquery 插件 原文链接:https://gist.github.com/laktek/758269
jQuery.isBlank = function (obj) {
if (!obj || $.trim(obj) === "") return true;
if (obj.length && obj.length > 0) return false;
for (var prop in obj) if (obj[prop]) return false;
return true;
};
@wliment
wliment / openssl.py
Created April 9, 2014 07:11 — forked from rixtox/openssl.py
#!/usr/bin/python
# Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected])
# The author disclaims copyright to this source code.
import sys
import struct
import socket
import time
import select
@wliment
wliment / new_gist_file_0
Created November 29, 2013 04:02
From http://stackoverflow.com/questions/421280/in-java-how-do-i-find-the-caller-of-a-method-using-stacktrace-or-reflection
StackTraceElement[] stackTraceElements = Thread.currentThread().getStackTrace() According to the Javadocs: The last element of the array represents the bottom of the stack, which is the least recent method invocation in the sequence. A StackTraceElement has getClassName(), getFileName(), getLineNumber() and getMethodName(). You will have to experiment to determine which index you want (probably stackTraceElements[1] or [2]).
@wliment
wliment / find_utf8_convert.sh
Created November 10, 2013 13:33
查找utf-8的文件然后转换成GBK
find . -type f -name '*.java' -exec bash -c "enca -L zh_CN {}|grep UTF-8 > /dev/null && enconv -L zh_CN -x GB2312 {}" \;
@wliment
wliment / string.sql
Created November 6, 2013 07:03
字符串聚合函数,第三方实现
CREATE OR REPLACE TYPE zh_concat_im
AUTHID CURRENT_USER AS OBJECT
(
CURR_STR clob,
STATIC FUNCTION ODCIAGGREGATEINITIALIZE(SCTX IN OUT zh_concat_im) RETURN NUMBER,
MEMBER FUNCTION ODCIAGGREGATEITERATE(SELF IN OUT zh_concat_im,
P1 IN VARCHAR2) RETURN NUMBER,
MEMBER FUNCTION ODCIAGGREGATETERMINATE(SELF IN zh_concat_im,
RETURNVALUE OUT clob,
FLAGS IN NUMBER)
@wliment
wliment / server.js
Last active December 27, 2015 09:39
Node 获取公积金 数据(新疆)(过期,原网站弃用)
var fs = require('fs')
, http = require('http')
, socketio = require('socket.io')
, request = require('request')
var server = http.createServer(function(req, res) {
res.writeHead(200, { 'Content-type': 'text/html'});
res.end(fs.readFileSync(__dirname + '/index.html'));
}).listen(8080, function() {
console.log('Listening at: http://localhost:8080');
});
@wliment
wliment / aaa.js
Created November 4, 2013 16:11
看对象是否包含一个属性
object.hasOwnProperty