Christopher Pritchard ChrisPritchard

Dark Times in Skyrim

Intro

My name is Rastus, a Dunmer or Dark Elf from Morrowind, and I guess I was now what they called a refugee in this land of the Nords, known as Skyrim.

After the Red Mount has erupted back home, it had been chaos. I had joined with everyone else fleeing the land, my skin caked with dust, with nothing but the ragged clothes on my back and a few coins to buy passage. Despite all that, I had felt...free in a way. My old life was being left behind. Most of the people I had worked for, or who I had wronged, were dead or had bigger things on their minds. No one would know me in the new world - I could start anew.

Well, after a week in the backwaters of frozen Windhelm, one of the largest and coldest Nordic cities in Skyrim, I had been disabused me of that notion. Starving, with barely a flea-ridden blanket to call my own in the back of a run down inn, and treated like scum by the racists that ran the city along with the rest of my kind stuffed into 'Grey Town' - a cheap play on the

	#!/usr/bin/env python3

	from impacket.dcerpc.v5 import nrpc, epm
	from impacket.dcerpc.v5.dtypes import NULL
	from impacket.dcerpc.v5 import transport
	from impacket import crypto

	import hmac, hashlib, struct, sys, socket, time
	from binascii import hexlify, unhexlify
	from subprocess import check_call

	package main

	/*
	Simple tool to brute force a PHP login like hydra.
	Works a lot faster than hydra, and doesn't disconnnect with -ERR after a timeout.
	Example usage:
	go run go-pop3.go -host 10.10.128.2:55007 -L users.txt -P ../wordlists/fasttrack.txt
	*/

	import (

	// built as part https://tryhackme.com/room/intropocscripting
	// i used go instead of python - so this is a good resource for quick http requests with go
	// reverse engineered from https://www.exploit-db.com/exploits/21851 (ruby metasploit module)

	package main

	import (
	"fmt"
	"io/ioutil"
	"log"

	// from this tutorial: https://catlikecoding.com/unity/tutorials/procedural-grid/
	// attach to a gameobject
	// for the mesh renderer, create a material with a texture as an albedo and/or a texture for a normal map

	using System.Collections;
	using System.Collections.Generic;
	using UnityEngine;

	[RequireComponent(typeof(MeshFilter), typeof(MeshRenderer))]
	public class Grid : MonoBehaviour

	/*
	for this lab https://portswigger.net/web-security/authentication/multi-factor/lab-2fa-bypass-using-a-brute-force-attack

	vastly faster than using a burp macro with 1 thread and intruder
	even if it took an hour to throw together :D
	*/

	package main

	import (

	/*
	XSS Hunter Cleaner by github.com/ChrisPritchard
	For those sticky situations when you've accidentally fired xss hunter a trillion times

	Usage: go to XSS Hunter, and view your collected payloads.
	Inspect the request to get both the csrf header token value and the cookie value (yes all of it).

	Then run this script like `go run xss-hunter-cleaner.go <csrf> <cookie value>`

	It uses the api to spin off a number of parallel 'get five ids then delete them' requests, via go-routines

	# sleepy flower girl
	(◡ ‿ ◡ ✿)

	# y u no
	ლ(ಠ益ಠლ)

	# smiling breasts
	（^人^）

	# flipping tables

	#!/bin/bash

	# Author: Chris Pritchard (github.com/ChrisPritchard)
	# requires jq, 7z and git be installed
	# run as ./cloner.sh [personal access token] [UserName]

	REPOS=$(curl -s -H "Authorization: token $1" "https://api.github.com/user/repos?&affiliation=owner&per_page=200" \| jq -r '.[] \| select(.fork==false) \| .full_name')

	rm -rf ./temp-cloner
	mkdir temp-cloner


	.
	..
	........
	@
	*
	.
	..*
	ðŸŽ