- Recon
- Find vuln
- Exploit
- Document it
Unicornscans in cli, nmap in msfconsole to help store loot in database.
c4ri0c4
/ msgrpc_ssh_version.py
Created
December 18, 2017 00:45
— forked from syndrowm/msgrpc_ssh_version.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import sys | |
| import msfrpc | |
| import time | |
| if __name__ == '__main__': | |
| # Create a new instance of the Msfrpc client with the default options | |
| client = msfrpc.Msfrpc({}) | |
| # Login to the msf server using the password "abc123" |
c4ri0c4
/ how-to-oscp-final.md
Created
January 3, 2018 00:06
— forked from unfo/how-to-oscp-final.md
c4ri0c4
/ oscp_links.md
Created
January 3, 2018 00:17
— forked from natesubra/oscp_links.md
Useful OSCP Links
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| OSCP Handy Commands | |
| Nmap Full Web Vulnerable Scan: | |
| mkdir /usr/share/nmap/scripts/vulscan | |
| cd /usr/share/nmap/scrripts/vulscan | |
| wget http://www.computec.ch/projekte/vulscan/download/nmap_nse_vulscan-2.0.tar.gz && tar xzf nmap_nse_vulscan-2.0.tar.gz |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| OSCP Handy Commands | |
| Nmap Full Web Vulnerable Scan: | |
| mkdir /usr/share/nmap/scripts/vulscan | |
| cd /usr/share/nmap/scrripts/vulscan | |
| wget http://www.computec.ch/projekte/vulscan/download/nmap_nse_vulscan-2.0.tar.gz && tar xzf nmap_nse_vulscan-2.0.tar.gz |
c4ri0c4
/ oscp_recon.sh
Created
January 3, 2018 00:22
— forked from r00tpgp/oscp_recon.sh
Some script I found on the web for preparation of my OSCP exam, I modified it to include more functions for enumeration.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ################################################### | |
| # Recon Script | |
| # | |
| # Version: v2_08102016 | |
| # Created By: Seclyn | |
| # Description: For initial recon of network/hosts. | |
| # Mod by: r00t.pgp | |
| # | |
| ################################################### |
c4ri0c4
/ vpn.sh
Created
January 3, 2018 02:12
— forked from kawaxi/vpn.sh
Small script to Initiate session on a VPN
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/expect -f | |
| cd "lab-connection" | |
| spawn openvpn OS-213**-OSCP.ovpn | |
| expect "Enter Auth Username:" { | |
| send "OS-213**\n" | |
| } | |
| expect "Enter Auth Password:" { | |
| send "mypass\n" |
c4ri0c4
/ msgrpc_ssh_version.py
Created
June 18, 2018 02:05
— forked from carnal0wnage/msgrpc_ssh_version.py
python script to connect to a metasploit msgrpc instance, setup and run an auxilary module.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import sys | |
| import msfrpc | |
| import time | |
| if __name__ == '__main__': | |
| # Create a new instance of the Msfrpc client with the default options | |
| client = msfrpc.Msfrpc({}) | |
| # Login to the msf server using the password "abc123" |
c4ri0c4
/ rapid_config.py
Created
August 21, 2018 22:14
— forked from Demonslay335/rapid_config.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| Extract Rapid 2.0 ransomware config from encrypter or decrypter | |
| Author: @demonslay335 | |
| """ | |
| import os, sys, string, re, binascii, base64, argparse | |
| # https://stackoverflow.com/a/17197027/1301139 | |
| def strings(filename, min=4, max=10000): | |
| with open(filename, "rb") as f: # Python 2.x |
c4ri0c4
/ ntlmdecoder.py
Created
January 12, 2024 10:03
— forked from aseering/ntlmdecoder.py
NTLM auth-string decoder
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| ## Decodes NTLM "Authenticate" HTTP-Header blobs. | |
| ## Reads the raw blob from stdin; prints out the contained metadata. | |
| ## Supports (auto-detects) Type 1, Type 2, and Type 3 messages. | |
| ## Based on the excellent protocol description from: | |
| ## <http://davenport.sourceforge.net/ntlm.html> | |
| ## with additional detail subsequently added from the official protocol spec: | |
| ## <http://msdn.microsoft.com/en-us/library/cc236621.aspx> | |
| ## |
OlderNewer