https://www.youtube.com/playlist?list=PLKK11Ligqitg9MOX3-0tFT1Rmh3uJp7kA
MrRunt1me affilares
affilares
/ resources.md
Created
June 6, 2021 13:17
— forked from muff-in/resources.md
A curated list of Assembly Language / Reversing / Malware Analysis -resources
affilares
/ cluster.py
Created
March 18, 2021 12:05
— forked from defparam/cluster.py
Gist of the Day: Turbo Intruder Cluster Bomb with SmartFiltering
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Gist of the Day: Turbo Intruder Cluster Bomb with SmartFiltering | |
| # Author: Evan Custodio (@defparam) | |
| # | |
| # MIT License | |
| # Copyright 2021 Evan Custodio | |
| # | |
| # Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: | |
| # | |
| # The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. | |
| # |
affilares
/ gcp_enum.sh
Created
March 1, 2021 16:50
— forked from carnal0wnage/gcp_enum.sh
use the gcloud utilities to enumerate as much access as possible from a GCP service account json file. see blog post: <to insert>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # gcloud auth activate-service-account --key-file=85.json | |
| # gcloud projects list | |
| project="my-project" | |
| space="" | |
| echo "gcloud auth list" | |
| gcloud auth list | |
| echo -e "$space" |
affilares
/ pickle-payload.py
Created
February 21, 2021 17:00
— forked from mgeeky/pickle-payload.py
Python's Pickle Remote Code Execution payload template.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| # | |
| # Pickle deserialization RCE payload. | |
| # To be invoked with command to execute at it's first parameter. | |
| # Otherwise, the default one will be used. | |
| # | |
| import cPickle | |
| import sys | |
| import base64 |
affilares
/ CGI fuzzing.txt
Created
February 9, 2021 09:15
— forked from saurabh96216/CGI fuzzing.txt
CGI wordlist
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| TiVoConnect?Command=QueryServer | |
| TiVoConnect?Command=QueryContainer&Container=/&Recurse=Yes | |
| cgi-bin/cart32.exe | |
| cgi-bin/classified.cgi | |
| cgi-bin/download.cgi | |
| cgi-bin/flexform.cgi | |
| cgi-bin/flexform | |
| cgi-bin/lwgate.cgi | |
| cgi-bin/LWGate.cgi | |
| cgi-bin/lwgate |
affilares
/ 01.bash_shortcuts_v2.md
Created
February 2, 2021 09:29
— forked from tuxfight3r/01.bash_shortcuts_v2.md
Bash keyboard shortcuts
affilares
/ JavascriptRecon.md
Created
January 20, 2021 04:43
My Javascript Recon Process - BugBounty
affilares
/ static_dynamic_ios_inspection.md
Created
November 19, 2020 17:24
— forked from rustymagnet3000/ios_introspection.md
Static and Dynamic iOS inspection
affilares
/ root_bypass.js
Created
November 19, 2020 07:01
— forked from pich4ya/root_bypass.js
Bypass Android Root Detection / Bypass RootBeer - August 2019
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // $ frida -l antiroot.js -U -f com.example.app --no-pause | |
| // CHANGELOG by Pichaya Morimoto ([email protected]): | |
| // - I added extra whitelisted items to deal with the latest versions | |
| // of RootBeer/Cordova iRoot as of August 6, 2019 | |
| // - The original one just fucked up (kill itself) if Magisk is installed lol | |
| // Credit & Originally written by: https://codeshare.frida.re/@dzonerzy/fridantiroot/ | |
| // If this isn't working in the future, check console logs, rootbeer src, or libtool-checker.so | |
| Java.perform(function() { | |
| var RootPackages = ["com.noshufou.android.su", "com.noshufou.android.su.elite", "eu.chainfire.supersu", |
affilares
/ openvas-automate.sh
Created
October 24, 2020 16:44
— forked from mgeeky/openvas-automate.sh
OpenVAS automation script.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # OpenVAS automation script. | |
| # Mariusz B. / mgeeky, '17 | |
| # v0.2 | |
| # | |
| trap ctrl_c INT | |
| # --- CONFIGURATION --- |