https://www.youtube.com/playlist?list=PLKK11Ligqitg9MOX3-0tFT1Rmh3uJp7kA
shurikk
/ iptables.sh
Created
February 10, 2021 18:08
nginx as a transparent SSL proxy using stream module (quick test)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| iptables -t nat -A OUTPUT -p tcp -m tcp --dport 443 -m owner --uid-owner root -j RETURN | |
| iptables -t nat -A OUTPUT -p tcp -m tcp --dport 443 -m owner --uid-owner nginx -j RETURN | |
| iptables -t nat -A OUTPUT -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 3130 |
Anon-Exploiter
/ .zshrc
Created
September 17, 2020 12:31
.zshrc of Kali Linux 2020.3 including the lit prompt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ~/.zshrc file for zsh non-login shells. | |
| # see /usr/share/doc/zsh/examples/zshrc for examples | |
| setopt autocd # change directory just by typing its name | |
| #setopt correct # auto correct mistakes | |
| setopt interactivecomments # allow comments in interactive mode | |
| setopt ksharrays # arrays start at 0 | |
| setopt magicequalsubst # enable filename expansion for arguments of the form ‘anything=expression’ | |
| setopt nonomatch # hide error message if there is no match for the pattern | |
| setopt notify # report the status of background jobs immediately |
muff-in
/ resources.md
Last active
October 17, 2024 22:10
A curated list of Assembly Language / Reversing / Malware Analysis / Game Hacking-resources
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| StartUp/Run Keys | |
| HKLM\Software\Microsoft\Windows\CurrentVersion\Run | |
| HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce | |
| HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices | |
| HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce | |
| HKCU\Software\Microsoft\Windows\CurrentVersion\Run | |
| HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce | |
| HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices | |
| HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnceHKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run |
reuniware
/ netfiltertest01.py
Last active
October 12, 2024 04:42
Python + Netfilterqueue + Scapy (trying to intercept HTTP traffic from Kali Linux)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # apt-get install build-essential python-dev libnetfilter-queue-dev | |
| # pip install NetfilterQueue | |
| # sudo apt-get install python-netfilterqueue | |
| # iptables -F | |
| # iptables -F -t nat | |
| # iptables -I FORWARD -j NFQUEUE --queue-num 0 | |
| # arpspoof -i eth0 192.168.1.200 -t 192.168.1.1 | |
| # arpspoof -i eth0 192.168.1.1 -t 192.168.1.200 | |
| from netfilterqueue import NetfilterQueue |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # Extremely Principled TLS v1.2 ClientHello parser for ALPN extensions | |
| import struct | |
| import binascii | |
| _int16 = struct.Struct(">H") | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Welcome Visiting Huawei Home Gateway | |
| Copyright by Huawei Technologies Co., Ltd. | |
| Login:root | |
| Password: | |
| Password is default value, please modify it! | |
| WAP>en | |
| ERROR::Command is not existed | |
| WAP>help |
SwitHak
/ 20190618-TLP-WHITE-TCPSACK.MD
Last active
November 23, 2023 07:47
Tracking vendors responses to TCP SACK vulnerabilities
Netflix has identified several TCP networking vulnerabilities in FreeBSD and Linux kernels.
See the netflix information security advisory:
sudo hping3 yourhost --tcp-mss 20 -S --flood
See also:
| Service | Type | Storage | Limitations |
|---|---|---|---|
| Amazon DynamoDB | 25 GB | ||
| Amazon RDS | |||
| Azure SQL Database | MS SQL Server | ||
| 👉 Clever Cloud | PostgreSQL, MySQL, MongoDB, Redis | 256 MB (PostgreSQL) | Max 5 connections (PostgreSQL) |
exec - Returns last line of commands output
passthru - Passes commands output directly to the browser
system - Passes commands output directly to the browser and returns last line
shell_exec - Returns commands output
\`\` (backticks) - Same as shell_exec()
popen - Opens read or write pipe to process of a command
proc_open - Similar to popen() but greater degree of control
pcntl_exec - Executes a program
NewerOlder