Skip to content

Instantly share code, notes, and snippets.

View dustyfresh's full-sized avatar
👽

Dustin dustyfresh

👽
138 followers · 103 following
View GitHub Profile
@dustyfresh
dustyfresh / honey.py
Last active September 15, 2020 16:42
quick and simple honeypot in python3 using scapy, and raw sockets file logging
#!/usr/bin/env python3
import argparse
import threading
from threading import Thread
from scapy.all import *
import logging
import socket
import chardet
def listen():
@dustyfresh
dustyfresh / yara-code-audit.md
Created January 3, 2017 00:19
using YARA for finding bugs in PHP

YARA bad PHP code signatures

$ cat code_audit.yar
rule PHP_INFOLEAK
{
    strings:
        $leak1 = /phpinfo\s?\(|show_source\s?\(|highlight_file\s?\(/
    condition:
        $leak1
}
@dustyfresh
dustyfresh / clicker.rs
Created January 28, 2017 23:07
click fast!
/* cargo.toml
[package]
name = "clicker"
version = "0.1.0"
authors = ["dustyfresh"]
[dependencies]
keystroke = "*"
kernel32-sys = "*"
user32-sys = "*"
@dustyfresh
dustyfresh / shrill-bread
Created February 21, 2017 22:20
codename shrill-bread botnet. Tracking with HoneyPress
> db.payloads.find({codename: 'shrill-bread'}).pretty()
{
"_id" : ObjectId("58a7b6935bfab60010aaf5de"),
"requests" : {
"1427a2c8-f585-11e6-b9ae-0242ac11000d" : {
"attack_meta" : {
"target_type" : "wp-login",
"target_name" : "unknown"
},
"time" : "1487386259",
@dustyfresh
dustyfresh / 403.html
Created March 21, 2017 19:10
403 page for random project :)
<html>
<head>
<style>
@import url(//fontlibrary.org/face/effects-eighty);
$font: 'EffectsEighty';
* {
-webkit-font-smoothing: antialiased;
overflow: hidden;
}
@dustyfresh
dustyfresh / 7z.base64
Created August 3, 2017 21:12
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
@dustyfresh
dustyfresh / reggit.py
Created September 10, 2017 15:27
register reddit accounts using selenium (splinter). Changes exit node after each account creation and also uses random user agent.
#!/usr/bin/env python
import time
from splinter import Browser
from faker import Faker
import random
from stem import Signal
from stem.control import Controller
from fake_useragent import UserAgent
class Reggit():
@dustyfresh
dustyfresh / Pasta_Logger.py
Last active September 14, 2017 18:57
That one time I tried to hack pasta from Olive Garden's PastaPass.com site
#!/usr/bin/env python
'''
Script to log the PastaPass.com drop
'''
import json
import requests
import time
import datetime
import sys
@dustyfresh
dustyfresh / .conkyrc
Created November 21, 2017 14:22
My conkyrc file. WOEID for Austin is 201198989. You will need to change this ID for different weather.
# Conky settings #
background yes
update_interval 1
double_buffer yes
no_buffers yes
imlib_cache_size 10
# Window specifications #
gap_x 0
gap_y 0
@dustyfresh
dustyfresh / nginx-load-scripts-mitigation.conf
Last active March 19, 2025 14:48
nginx rule to mitigate DoS attack on WordPress load-scripts.php
# https://baraktawily.blogspot.fr/2018/02/how-to-dos-29-of-world-wide-websites.html
# https://wpvulndb.com/vulnerabilities/9021
location ~* ^/wp-admin/load-scripts\.php$ {
if ( $query_string ~* "^.{1024,}$" ) {
return 444;
}
}