matthewgao's recent timeline updates matthewgao's recent timeline updates
连续签到 100 天 Mark
Feb 7, 2015
明天就是测试我新软件的好时机,好激动
Oct 28, 2014
matthewgao's repos on GitHub
Java · 266 watchers
F5-steganography
F5 steganography
Go · 10 watchers
qtun
a tunnel
MATLAB · 6 watchers
RS-analysis
RS Steganalysis for BMP image
Go · 5 watchers
gojsonvalidator
Generic tool to validate input json string and check the parameters
Go · 3 watchers
bubble
bubble game in go
Vim script · 3 watchers
MyVim
Automatic Vim configuration script, setting your Vim as quick as possible! It's powerful, and ready to customize for yourself.
Python · 3 watchers
regex_range_generator
给定一个数字范围,生成匹配这个范围的正则表达式
Python · 2 watchers
WeatherAnalyzer
C++ · 1 watchers
gsplayer
Simple video player based on SDL2.0 and ffmpeg
C · 1 watchers
httpd
Mirror of Apache HTTP Server
HTML · 1 watchers
matthewgao.github.com
blog
Go · 1 watchers
meshbird
Distributed private networking
Go · 1 watchers
socks5
C++ · 1 watchers
srs
SRS is a simple, high efficiency and realtime video server, supports RTMP, WebRTC, HLS, HTTP-FLV and SRT.
C++ · 1 watchers
ThreadPool
A Linux environment ThreadPool
TypeScript · 0 watchers
ai-words
Go · 0 watchers
aliyun-oss-go-sdk
Go · 0 watchers
ali_mns
aliyun mns sdk
Python · 0 watchers
apitester
An API tester
Python · 0 watchers
AutoDeploy
SMA Automatic Deploy tool
0 watchers
awesome-cpp
A curated list of awesome C/C++ frameworks, libraries, resources, and shiny things. Inspired by awesome-... stuff.
Python · 0 watchers
awesome-python
A curated list of awesome Python frameworks, libraries and software
Go · 0 watchers
bayers_spam
bayers spam classifer
Go · 0 watchers
beego
beego is an open-source, high-performance web framework for the Go programming language.
TypeScript · 0 watchers
bitcoin
Bitcoin integration/staging tree
Python · 0 watchers
btcchina.py
tools that make a btcchina user's life easier.
0 watchers
claude-code
Claude Code is an agentic coding tool that lives in your terminal, understands your codebase, and helps you code faster by executing routine tasks, explaining complex code, and handling git workflows - all through natural language commands.
C++ · 0 watchers
cpp-elasticsearch
C++ Client for elasticsearch
C++ · 0 watchers
cpubenchmarker
HTML · 0 watchers
d3-to-video
d3.js to video demo
Python · 0 watchers
Design-Patterns-in-Python
A design patterns example in Python
0 watchers
DevArticles
Develop Articles
JavaScript · 0 watchers
diveintonode_examples
《深入浅出Node.js》的相关代码
Go · 0 watchers
docker
Docker - the open-source application container engine
Shell · 0 watchers
FakeCommit
C++ · 0 watchers
FastCGI
A fast CGI parser.(pending)
Python · 0 watchers
FileHeaderCreator
Sublime Text 3 Plugin: Create a header for each new file or empty file.
0 watchers
free-programming-books-zh_CN
免费的计算机编程类中文书籍,欢迎投稿
Go · 0 watchers
go-flv
go-flv base on yutopp/go-flv, but fix some critical issue
Python · 0 watchers
GsProxy
A python HTTP proxy
0 watchers
haskell_learn
HTML · 0 watchers
hexamine.org
official website of hexamine
C++ · 0 watchers
hlstools
Tools for analyzing and processing hls streams
C · 0 watchers
http-parser
http request/response parser for c
0 watchers
i-got-covid
A web site that anonymously count the person who got covid, China Only
JavaScript · 0 watchers
iptv
Collection of publicly available IPTV channels from all over the world
0 watchers
janus-gateway
Janus WebRTC Server
C · 0 watchers
jsmn_example
A example to explain how to use jsmn
0 watchers
kernel-playground
kernel-playground
C · 0 watchers
libmaxminddb
C library for the MaxMind DB file format
Go · 0 watchers
livego
live video streaming server in golang
C · 0 watchers
memcached
memcached development tree
C · 0 watchers
Mod_soap
A simple SOAP module for apache server(Pending)
Python · 0 watchers
mousectrl
control mouse to draw using a pen on pad
C++ · 0 watchers
mousectrl-app
pad app
Go · 0 watchers
mp4parser
Python · 0 watchers
myfi
info assembler
JavaScript · 0 watchers
MyPAC
A pac auto config script
C · 0 watchers
nginx
Complete (unofficial) history of nginx releases. Please note that this repository is unofficial and pull requests have no chance of being merged. The proper way to submit changes to nginx is via the nginx development mailing list, see http://nginx.org/en/docs/contributing_changes.html.
0 watchers
notes
My Notes
Python · 0 watchers
package_control_channel
Default channel file for Package Control. Follow the directions at:
C++ · 0 watchers
proxygen
A collection of C++ HTTP libraries including an easy to use HTTP server.
JavaScript · 0 watchers
qtun-rs
qtun implement in rust
Java · 0 watchers
quartz-redis-jobstore
A Quartz Scheduler JobStore using Redis.
C++ · 0 watchers
rtmp_relay
rtmp relay
C++ · 0 watchers
sample-code
All kinds of sample code which is good for understanding
CSS · 0 watchers
test_bed
Shell · 0 watchers
tldr
Simplified and community-driven man pages
Python · 0 watchers
tools
Rust · 0 watchers
toyos
a toy os
JavaScript · 0 watchers
unixtimecoverter
Chrome extensions to convert unixtime in the page
VimL · 0 watchers
vim
vim配置文件和插件
0 watchers
WebsitesForStudents
本库旨在建设一个对大学生有益有用的集合,欢迎参与。
Python · 0 watchers
werkzeug
A flexible WSGI implementation and toolkit
Python · 0 watchers
WindowsPositionKeeper
Store the windows position, then you can replace them only with one key.
Go · 0 watchers
wiretrustee
Connect your devices into a single secure private WireGuard®-based mesh network.
HTML · 0 watchers
xxs_recorder
搞个web记录下婴儿的行为
 |
matthewgao🏢 阿里云 / Senior Software Engineer V2EX member #11981, joined on 2011-09-20 12:12:38 +08:00Today's activity rank 122091
 83  4  |
xxiaogao
gaoshen.site
Shanghai
matthewgao
matthewgao1986
gaoshen
gaoshen
matthewgao
1GZNmXPtZdaDYTo3Che6D4ZJysQpoiTz1v
| ClaudeCode 稳定的美国出口 IP 都能被封 Claude Code • matthewgao • 6h 20m ago • Lastly replied by ucando | 57 |
| 一人推荐一个 AI Agent/Skill/Plugins 说说它在哪项工作上很出色 ☕Vibe Coding🤖 • matthewgao • Apr 1 • Lastly replied by zeyangstudies | 2 |
| 想搞个统计新冠感染者的网站,就叫”我阳了" 分享创造 • matthewgao • Dec 21, 2022 • Lastly replied by uov | 34 |
| [北京/上海/杭州/广州][内推]阿里云视频云 2022 届春季校招/实习 酷工作 • matthewgao • Mar 3, 2021 |
| 大家有没有什么好玩的社区或者论坛,分享一波 分享发现 • matthewgao • Jan 26, 2021 • Lastly replied by matthewgao | 16 |
| [火爆招聘中][上海/杭州][阿里云-视频基础技术团队] 视频 AI 工程开发 酷工作 • matthewgao • May 30, 2020 |
| 现在有什么新闻客户端 不是今日头条这种套路的? 问与答 • matthewgao • Oct 23, 2018 • Lastly replied by nedu | 85 |
| 撸了一个校验 JSON 内容的工具,解决 golang API 调用请求内容校验的麻烦事 Go 编程语言 • matthewgao • Oct 19, 2017 • Lastly replied by HarrisonZ | 18 |
| 哪里有比较好的学习视频技术相关的地方? 问与答 • matthewgao • Mar 5, 2017 • Lastly replied by googlefans | 1 |
| 阿里云-视频云 招后端工程师啦
1 酷工作 • matthewgao • Dec 16, 2016
|
matthewgao's recent replies
1 day ago Replied to a topic by matthewgao › Claude Code › ClaudeCode 稳定的美国出口 IP 都能被封 |
@ykl150141 看来是没啥关系 我这个账号就是 google 的,而且要说年限,这账号得快 20 年了
1 day ago Replied to a topic by unusualcat › Claude › Anthropic 指控阿里巴巴对 Claude 进行了大规模蒸馏攻击 |
是假的,这个不是阿里,昨天开会刚同步过。而且阿里本来就正规采买了 Claude
2 days ago Replied to a topic by matthewgao › Claude Code › ClaudeCode 稳定的美国出口 IP 都能被封 |
@mm2x 为啥还有 webrtc 的事?
2 days ago Replied to a topic by matthewgao › Claude Code › ClaudeCode 稳定的美国出口 IP 都能被封 |
@Dream4U 那让哪个没封的,分析下那两个为啥会被封?因为上下文有什么特别的?
2 days ago Replied to a topic by matthewgao › Claude Code › ClaudeCode 稳定的美国出口 IP 都能被封 |
@systemGuest No No No 我自己的 ecs, 固定 IP, 连梯子都是我自己写的
11 days ago Replied to a topic by VincentLee9527 › 分享创造 › 拆解一个面试黑科技:实时语音识别 + AI 答案生成,面试现场开挂 |
反正我都能感觉出来,有些问题是不需要停顿,不需要想的,知道就是知道,不知道就是不知道
在上海 我逛闸北大润发,东西又多,人又少
11 days ago Replied to a topic by HoldenChen2017 › macOS › L 站某推广帖的安装脚本疑似窃取浏览器和 SSH 数据,我举报并贴证据后回复被删 |
他这个程序其实还是做了很多工作来防逆向的:
- 自定义 VM 调度器控制执行流程
- 多层编码(数学变换 → 十六进制 → XOR → Base64)
- ~3.7MB 的常量数据嵌入二进制用于混淆负载
- 三种不同的数学变换公式防止模式识别
- 反虚拟机检测和反取证技术
但是无奈 AI 太强大, 他默默的花了 4 个小时就都分析完了
如果你是 MacOS, 这几个文件你看下还有不,有的话删掉
- `~/.pass` - 窃取的密码存储
- `~/.mainhelper` - 持久化可执行文件
- `~/.agent` - 启动脚本
- `~/.logged` - 执行标记
- `~/.username` - 用户名文件
- `/tmp/out.zip` - 外泄数据包
- `/tmp/starter` - 启动脚本
- `/tmp/chunk_*` - 分块上传临时文件
- 自定义 VM 调度器控制执行流程
- 多层编码(数学变换 → 十六进制 → XOR → Base64)
- ~3.7MB 的常量数据嵌入二进制用于混淆负载
- 三种不同的数学变换公式防止模式识别
- 反虚拟机检测和反取证技术
但是无奈 AI 太强大, 他默默的花了 4 个小时就都分析完了
如果你是 MacOS, 这几个文件你看下还有不,有的话删掉
- `~/.pass` - 窃取的密码存储
- `~/.mainhelper` - 持久化可执行文件
- `~/.agent` - 启动脚本
- `~/.logged` - 执行标记
- `~/.username` - 用户名文件
- `/tmp/out.zip` - 外泄数据包
- `/tmp/starter` - 启动脚本
- `/tmp/chunk_*` - 分块上传临时文件
11 days ago Replied to a topic by HoldenChen2017 › macOS › L 站某推广帖的安装脚本疑似窃取浏览器和 SSH 数据,我举报并贴证据后回复被删 |
你这个东西 和前几个月逆向分析过的一个行为非常像,当时他是伪装成 claudecode 的安装 shell, 主要还是为了抓钱包,但是其实他抓走了的 Chrome Login Data 数据挺严重的,因为他只要拿到了你本地的用户密码,他就可以解出来这个数据 为此我还搞了个小工具试了下 https://github.com/matthewgao/tools/tree/main/login_data_reader
你得 home 目录下的会存几个隐藏文件也记得删下,那里记录了你得密码
你得 home 目录下的会存几个隐藏文件也记得删下,那里记录了你得密码
May 11 Replied to a topic by smallmirror › 职场话题 › offer 迷茫 -- 是否该离家去一线 |
120w 在上海 如果没有房子的话,生活质量相比成都 还是有比较明显的下降的
Select Language