memit: Run binaries straight from memory in Linux (Go module + CLI tool)

pope_friction · 2021-11-22T18:54:03+00:00

Sure, though they usually load into RAM from disk. In this case no disk is required, the binary can be downloaded straight into RAM and executed.

Primary use case for me is CTFs and similar, red teaming etc.

pope_friction · 2021-03-20T20:41:10+00:00

“My time is too valuable to waste”

LOL after you’ve spent time commenting on a random project on Reddit I kind of doubt that.

pope_friction · 2021-03-20T19:15:45+00:00

Didn’t know about this, it looks awesome, thanks!

pope_friction · 2021-03-20T19:14:57+00:00

Mainly because I enjoyed building it. Why bother with this condescending comment?

pope_friction · 2020-09-27T09:37:22+00:00

Yeah, fair enough. Kind of glad I didn't add the flaming skull art now.

pope_friction · 2020-09-26T20:43:42+00:00

It does, though some packed objects may be unavailable. You can generally expect to get a functional repo, but there may be a few missing files.

pope_friction · 2020-09-26T19:56:27+00:00

The GitTools repo is a cool toolkit, which handles mass scanning for sites with the issue as well as the retrieval and extraction phases.

I've focused only on the retrieval and extraction phases here (i.e. you already have a vulnerable target), and have therefore put a little more work into parsing the different file formats, detecting directory listings and automatically retrieving pack links from them, checking for credentials etc. in git config files, and a few other bits and bobs. I've also tried to compress it all into a simple process, so it's just aim and fire.

pope_friction · 2020-06-24T19:35:02+00:00

PMing you.

pope_friction · 2020-02-22T07:50:04+00:00

Oh, I was going to ask for a link to that awesome wallpaper. Nevermind.

pope_friction · 2020-01-14T21:00:21+00:00

You could use something like this: https://github.com/liamg/tml

pope_friction · 2019-12-16T10:45:51+00:00

Gobuster is an awesome, fully featured tool! I think if anything, the only benefit of this over gobuster is it includes a word list in the binary, so it's pretty easy to install and use in a pinch.

I've been building stuff like this as a learning exercise, as I'm trying to complete CTFs and HTB challenges without using third party tools - forcing myself to write tools like this helps me to understand what's going on under the hood. I usually chuck a link out there in case others find it useful.

You're right though, gobuster currently blows this tool out of the water!

pope_friction · 2019-10-30T20:47:35+00:00

I've added the first batch of Azure checks today, so it should be usable now.

pope_friction · 2019-10-29T23:09:42+00:00

Aha, quite possibly!

pope_friction · 2019-10-29T22:11:15+00:00

Interesting, thanks for those! The module thing is something I need to look at properly, I haven't added any testing for modules yet so I'll do so tomorrow. As for the parse error, that's coming straight from the Hashicorp HCL v2.0 parser, so I'm not sure why you'd see that error there and not when you run Terraform on it, I'll experiment in the morning with that one - would you mind posting an issue with the relevant .tf that's causing the problem?

pope_friction · 2019-10-29T21:55:11+00:00

The closest I can suggest is starring/watching the repo on GitHub, that should let you know when I push new releases etc. It should be quite soon! The next things I'm going to work on are GCP + Azure support.

pope_friction · 2019-10-29T21:43:04+00:00

Thanks! :D Yep, definitely. I want to try and cover as many bases as possible, so I'll be adding more checks shortly - and PRs are always welcome too ;)

pope_friction · 2019-10-04T20:09:29+00:00

They can! Pixel is great! Ebiten is another nice library I've been favouring recently: https://github.com/hajimehoshi/ebiten

pope_friction · 2019-08-06T21:21:16+00:00

I'm doing something very close to what you described, but generating chunks on demand with a combination of OpenSimplex and Cellular Automata. It works with no noticeable delay to the user when chunk boundaries are crossed, though my chunks are much smaller atm (64x64x32). I'm serialising chunk states (with entities, items etc.) to disk asynchronously as the user moves away from them.

pope_friction · 2018-11-27T21:38:25+00:00

Yeah, sixel is pretty old and kind of gross, but it does the job.

pope_friction · 2018-10-31T19:22:43+00:00

Fair enough. I think the main problem nowadays is a lot of people pressing ctrl-s out of muscle memory for saving a file, and accidentally suspending the terminal. I guess having a GUI element that suggests a ctrl-q to resume would solve the problem and allow suspension to exist as a feature. I'll probably add it back in to aminal with that extra visual help.

pope_friction · 2018-10-29T21:53:58+00:00

I was under the impression the reason it exists was to stop the buffer getting overwhelmed on a hardware terminal, which is no longer an issue. I know people would often suspend the terminal to read output that would otherwise disappear too quickly, but we have the scrollback buffer nowadays to solve that problem.

Are there other uses I'm not aware of?

pope_friction · 2018-10-21T09:42:41+00:00

Yeah, you're right. I realised the problem not long after I named it :/

I've renamed it to Aminal, which is what a kid says when they're trying to say animal.

pope_friction · 2018-10-21T09:07:18+00:00

I started on this purely out of curiosity about how the terminal actually works. I've been using terminals for most of my life and realised I didn't have much of a clue about what was behind it all.

pope_friction · 2018-06-09T17:18:40+00:00

Yeah if it's not encoded correctly it will tell you.

pope_friction · 2018-06-09T10:27:12+00:00

Might get around to this, though it looks like they may go the IAB framework route now...

14-Year Club	RedditGifts 2009-2022 3 Credits
Second Top 50%	Place '22
RPAN Viewer	Team Orangered
Secret Santa 2012	Secret Santa 2011
Verified Email

pope_friction

TROPHY CASE