I hereby claim:
- I am adulau on github.
- I am adulau (https://keybase.io/adulau) on keybase.
- I have a public key ASDbXKZybB_mzeURiO3DXX-KO5KORqgv8Wwf9RbEnqk12Qo
To claim this, I am signing this object:
Alexandre Dulaunoy adulau
👨💻
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # libleptonica | |
| wget http://www.leptonica.com/source/leptonica-1.73.tar.gz | |
| ./configure | |
| sudo make install | |
| # tesseract | |
| ./autogen.sh |
adulau
/ Brii sur forges domains
Created
December 1, 2016 13:09
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| "Domain","Dates" | |
| "avortement.net","2016-10-18" | |
| "avortement.pro","2016-11-13" | |
| "ivg-infos.biz","2016-11-04" | |
| "ivg-infos.com","2016-11-05" | |
| "ivg-infos.info","2016-11-05" | |
| "ivg-infos.net","2016-11-03" | |
| "ivg-infos.org","2016-11-03" | |
| "ivg-lyon.com","2016-08-08" | |
| "ivg-medicamenteuse.com","2016-07-16" |
adulau
/ keybase.md
Created
January 3, 2017 15:35
adulau
/ generate.py
Created
January 22, 2017 16:05
Simple script to scatter plot ISN values over time (+ TCP port as color) from pcap
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Simple script to show the ISN value from a tshark output (extracting non relative ISN) | |
| # | |
| # tshark -n -r <yourcapturefile.cap" -T fields -e frame.time_epoch -T fields -e ip.src -T fields -e tcp.srcport -T fields -e ip.dst -T fields -e tcp.dstport -T fields -e tcp.seq -T fields -e tcp.flags -T fields -e ip.ttl -o tcp.relative_sequence_numbers:FALSE | awk -e '{print $1"\t"$6"\t"$5}' | python3 generate.py | |
| # | |
| # by Alexandre Dulaunoy - for analysis session given more info -> http://www.foo.be/cours/dess-20162017/ | |
| # | |
| # | |
| import numpy as np | |
| import fileinput |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| vbell off | |
| autodetach on | |
| defscrollback 10000 | |
| startup_message off | |
| pow_detach_msg "Screen session of \$LOGNAME \$:cr:\$:nl:ended." | |
| caption always "%{= gk}%-Lw%{= rW}%50> %n%f* %t %{-}%+Lw%< %= %{= Gk} %H %{= rW} %l %{= Gk} %0c:%s %d/%m %{-}" | |
| shell -$SHELL | |
| termcapinfo xterm ti@:te@ |
- Hoctez (France)
- Sara Conti (Belgique) - Russian Doll (Mons)
- Vinie (France)
- Esmaeil Bahrani (Iran)
- Ella & Pitr
- C SKA https://www.instagram.com/c_ska_art/ (Florence, Italy)
- K2M https://www.instagram.com/kappa2emme/ (Rome, Italy)
- TamOOnz https://www.facebook.com/TamoOnzART/ (UK, Georgia)
adulau
/ gist:2330227492797443984d022f99f90263
Last active
February 11, 2022 18:10
Various unix commands
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Gnuplot ISN | |
| tshark -n -r chp-46801-1-20161005213452.cap -T fields -e frame.time_epoch -T fields -e ip.src -T fields -e tcp.srcport -T fields -e ip.dst -T fields -e tcp.dstport -T fields -e tcp.seq -T fields -e tcp.flags -T fields -e ip.ttl | |
| -o tcp.relative_sequence_numbers:FALSE | awk -e '{print $1"\t"$6}' | gnuplot -p -e 'set title "Honeypot capture - TCP ISN"; plot "/dev/stdin" using :2 with points pointtype 0' | |
| tshark -n -r chp-46801-1-20161005213452.cap -T fields -e frame.time_epoch -T fields -e ip.src -T fields -e tcp.srcport -T fields -e ip.dst -T fields -e tcp.dstport -T fields -e tcp.seq -T fields -e tcp.flags -T fields -e ip.ttl | |
| -o tcp.relative_sequence_numbers:FALSE | awk -e '{print $1"\t"$6}' | gnuplot -p -e 'set title "Honeypot capture - TCP ISN"; set xlabel "time"; set ylabel "ISN" ;plot "/dev/stdin" using :2 with points pointtype 0' | |
| tshark -n -r chp-46801-1-20161005213452.cap -T fields -e frame.time_epoch -T fields -e ip.src -T fields -e tcp.srcport -T fields -e ip.dst -T fields -e tcp.dstp |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # Sample script to connect to CIRCL datafeeds | |
| # Requirements: | |
| # - Recent version of ZMQ (and the associated Python library) | |
| # - Access to the feed (you need to provide a static IP address to | |
| # [email protected]) | |
| # | |
| import sys | |
| import zmq |
adulau
/ gist:c55225d2783b21ec1337cba079bcce23
Last active
May 22, 2017 09:36
Passive DNS output - iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| As of 15 May 2017: | |
| ~~~~ | |
| { | |
| "time_last": 1494861996, | |
| "rdata": "ns4.sinkhole.tech", | |
| "rrname": "iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com", | |
| "rrtype": "NS", | |
| "time_first": 1494819526, |