D@rkR4y. darkr4y

🎯

Self-Introspection

cyber sec enthusiast. now its time to pentest! ٩(•̤̀ᵕ•̤́๑)

hemashushu / configuration.nix

Created May 5, 2025 15:05

NixOS configuration reference 2025-05

	# Edit this configuration file to define what should be installed on
	# your system. Help is available in the configuration.nix(5) man page
	# and in the NixOS manual (accessible by running ‘nixos-help’).

	{ config, pkgs, lib, ... }:

	{
	imports = [
	# Include the results of the hardware scan.
	./hardware-configuration.nix

ThePirateWhoSmellsOfSunflowers / netdumper.py

Last active July 1, 2025 14:39

This script perform a netsync attack. No SMB involved

	from impacket.dcerpc.v5 import epm, rpcrt, transport, nrpc, samr
	from impacket.uuid import bin_to_uuidtup
	from impacket.crypto import SamDecryptNTLMHash
	from impacket.nt_errors import STATUS_MORE_ENTRIES
	from impacket.dcerpc.v5.rpcrt import DCERPCException
	from binascii import unhexlify, hexlify
	from random import randbytes
	import sys
	import argparse

freefirex / setup.sh

Created February 14, 2025 19:18

softether vpn setup script

	#!/bin/bash

	if [ $(id -u) -ne 0 ]; then
	echo "This script must be run as root"
	exit
	fi

	# Function to prompt for input and ensure it's not blank (except for domain)
	prompt_input() {
	local var_name="$1"

devanshbatham / GitHub-Actions-Attack-Vectors.md

Last active March 15, 2025 21:41

GitHub Actions Attack Vectors

Security Issue	Trigger

x86matthew / keylogger.cpp

Created January 16, 2025 12:03

olafhartong / GetTracelogProviderSecurity.ps1

Created January 3, 2025 14:08

	### USAGE:
	###
	### GetTracelogProviderSecurity.ps1 (to get all provider info)
	###
	### GetTracelogProviderSecurity.ps1 -ProviderName f2e68291-2367-5d51-3488-46f7a0e3f2cf
	### (to get the info for 1 provider guid)
	##
	#
	# Provider: f2e68291-2367-5d51-3488-46f7a0e3f2cf
	# Control Flags: 45076

ThePirateWhoSmellsOfSunflowers / atexec_rpc.py

Last active May 23, 2025 03:40

	#!/usr/bin/env python
	# Impacket - Collection of Python classes for working with network protocols.
	#
	# Copyright Fortra, LLC and its affiliated companies
	#
	# All rights reserved.
	#
	# This software is provided under a slightly modified version
	# of the Apache Software License. See the accompanying LICENSE file
	# for more information.

ThePirateWhoSmellsOfSunflowers / lsarlookupsids3.py

Created November 22, 2024 13:01

Perform a lsarlookupsids3 with a trust account, it uses netlogon as SSP (see [MS-NRPC] 3.3)

	from impacket.dcerpc.v5 import epm, lsad, rpcrt, transport, lsat, ndr, nrpc
	from impacket.uuid import bin_to_uuidtup
	from binascii import unhexlify
	from random import randbytes
	import sys

	# Perform a lsarlookupsids3 with a trust account, it uses netlogon as SSP (see [MS-NRPC] 3.3)
	# Pure TCP RPC is used (ncacn_ip_tcp option)
	# RC4 is used here because to use AES, impacket must be patched
	# Tested with impacket 0.12.0 on GOAD

jborean93 / New-ScheduledTaskSession.ps1

Last active April 7, 2025 18:56

Creates a PSSession that targets a scheduled task process

	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Function New-ScheduledTaskSession {
	<#
	.SYNOPSIS
	Creates a PSSession for a process running as a scheduled task.

	.DESCRIPTION
	Creates a PSSession that can be used to run code inside a scheduled task

Dump-GUY / hint_calls.py

Created March 18, 2024 07:30

Modified version of Willi Ballenthin IDA Plugin hint_calls.py ported to support Python2/3 and IDA>=7.4 (tested IDA 7.7, 8.4)

	'''
	IDA plugin to display the calls and strings referenced by a function as hints.

	Installation: put this file in your %IDADIR%/plugins/ directory.
	Author: Willi Ballenthin <[email protected]>
	Licence: Apache 2.0
	'''
	import idc
	import idaapi
	import idautils