| ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDKsydz5gVrN3Ixi1qC2otXfjs1gs9CQFHKLE+C6RRClzCSxdb7midOkAtm7cY3WQXUxeuBzy+i7+GlLCm8rub8TSg5Mx3K1IiEW2WQe7i5fL+fQwCT1W8IKa7q5V5oYOALNvIcjs2tfdMQQjPQlWaeWl21p5wgdT8oeczpx+hGLR4ipTc/KFFnj3gDQ0BiYezoPG06oZG7f7skOlfDK9M9WbDEwmhtqR4KyRIYQbsyTMGKmVidXnoSVgA7YBH6zjJUSlbURlm0G21+U79KH5SY/k5jprsQ6WHmzz/0SieYpikH2n9bmbd8/oazRX7agduD3ky+WjP2S9CYK3asVr6l [email protected] |
| [-] root is allowed to execute all programs as any user. | |
| [-] %sudo is allowed to execute all programs as any user. | |
| [-] %admin is allowed to execute ALL with no password. | |
| [*] alan is allowed to execute /bin/ls, /bin/kill on ALL as root, bin : operator, system. |
You can use the above script with parallel to speed up the process. You need to do some prep work first.
split -n 100 domains.txt domains_ls -l domains_* | awk '{ print $9 }' > dom_files.txtparallel -a dom_files.txt -j 10 ./strip.pycat *_strip.txt > domains_stripped.txt
| #!/usr/bin/env python3 | |
| import sys | |
| import dns.resolver | |
| import dns.reversename | |
| import dns.zone | |
| import dns.exception | |
| TIMEOUT = 15.0 |
| #!/usr/env/bin python3 | |
| import requests | |
| import re | |
| import hashlib | |
| import sys | |
| tag_re = re.compile(r'<.*?>') | |
| if len(sys.argv) != 2: |
| # The goal of this script is to complete a three-way handshake with a netcat listener on port 8888. Tcpdump | |
| # shows the SYN packet being sent but I'm getting a RST/ACK instead of a SYN/ACK packet from netcat. I've | |
| # configured Iptables to drop any RST packets where the source and destination are the same as the server's | |
| # IP address, but the output from iptables -L -nv shows the rule is not being hit. Any ideas what is going on? | |
| # | |
| # I think I've decided that scapy is good for processing pcaps or gathering stats while sniffing traffic but | |
| # for actually sending packets, it sucks. I know I can create the socket with Python and use the stream with | |
| # Scapy but I really don't want to do that. | |
| # Suppress Scapy IPv6 warning |
| # I was testing a web app recently where each POST request updated the session cookie | |
| # and generated a new CSRF token in a hidden input field in the body of the response. | |
| # By default, Burp's Session handling rules will only use the cookie jar for Spider | |
| # and Scanner. I modified the rules to use the cookie jar for Intruder and Repeater | |
| # as well. In addition, Burp will only update the cookie jar from Proxy and Scanner | |
| # so I had to allow Repeater, Spider, and Intruder to update the cookie jar as well. | |
| # This allowed me to use a fresh cookie with each request as required by the app. | |
| # | |
| # To get a fresh CSRF token with each request I had to write an extension. The | |
| # extension processes any responses that it receives from any tool except Proxy and |
| from scapy.all import * | |
| http = IP(dst="10.0.2.15)/TCP(dport=80)/"GET /index.html HTTP/1.0\r\n\r\n" | |
| send(http) | |
| sendp(http, iface="eth0") |
| #!/bin/sh | |
| if [ "$#" -ne 1 ]; then | |
| echo "Usage: bust.sh URL" | |
| exit 1 | |
| fi | |
| APPTEST_DIR="/Users/shaywood/apptest" | |
| DISC="$APPTEST_DIR/fuzzdb/discovery/PredictableRes" |
| #!/usr/bin/env python | |
| import requests | |
| import random | |
| import json | |
| import os | |
| token = '' | |
| cookie = '' | |
| server = '' |