There are at least two valid, signed TLS certificates that are bundled with publicly available Netgear device firmware.
These certificates are trusted by browsers on all platforms, but will surely be added to revocation lists shortly.
The firmware images that contained these certificates along with their private keys were publicly available for download through Netgear's support website, without authentication; thus anyone in the world could have retrieved these keys.
| Base64 Code | Mnemonic Aid | Decoded* | Description |
|---|---|---|---|
JAB |
🗣 Jabber | $. |
Variable declaration (UTF-16), e.g. JABlAG4AdgA for $env: |
TVq |
📺 Television | MZ |
MZ header |
SUVY |
🚙 SUV | IEX |
PowerShell Invoke Expression |
SQBFAF |
🐣 Squab favorite | I.E. |
PowerShell Invoke Expression (UTF-16) |
SQBuAH |
🐣 Squab uahhh | I.n. |
PowerShell Invoke string (UTF-16) e.g. Invoke-Mimikatz |
PAA |
💪 "Pah!" | <. |
Often used by Emotet (UTF-16) |
| #!/usr/bin/python | |
| # -*- coding: utf8 -*- | |
| # | |
| # Author: Arno0x0x, Twitter: @Arno0x0x | |
| # | |
| import argparse | |
| from Crypto.Cipher import AES | |
| import pyscrypt | |
| from base64 import b64encode |
| #!/usr/bin/env python | |
| #DiabloHorn https://diablohorn.com | |
| #raw python pcap creater | |
| #based on | |
| # http://askldjd.com/2014/01/15/a-reasonably-fast-python-ip-sniffer/ | |
| #additional references | |
| # http://www.kanadas.com/program-e/2014/08/raw_socket_communication_on_li.html | |
| import sys | |
| import time |
| Yokogawa;CENTUM CS 3000 DCS;CENTUM:CENTUM | |
| Yokogawa;EJX910A Multivariable Transmitter HART Communication Type;YOKOGAWA. (to release the Write Protect mode) | |
| Yokogawa;WT 3000 Driver;anonymous:blank (Ethernet access) | |
| Yokogawa;DX1000/DX1000N/DX2000 Advanced;Administrator 1:Admin1 etc./ User 1:User01 etc. | |
| Yokogawa;YFGW410 gateway;admin:!admin | |
| Wonderware;System Platform/Archestra;administrator:blank | |
| Wonderware;Intouch;Administrator:Wonderware | |
| Wonderware;Historian;SQL Server Login: aadbo:pwddbo, wwdbo:pwddbo, aaAdmin:pwAdmin, wwAdmin:wwAdmin, aaPower:pwPower, wwPower:wwPower, aaUser:pwUser, wwUser:wwUser | |
| Westermo;TDW 33;no password, just return, Hardcoded password: n3Y9kA6otYZu8, (?? TD-36) | |
| Westermo;MRD-305-DIN/MRD-310/MRD-315/MRD-330/MRD-355/MRD-350/MRD-455;admin:westermo |
I use Windows 8.1 for Docker.
After installation when I tried to run docker, for example docker run hello-world from cmd I received the following error:
C:\Program Files\Docker Toolbox\docker.exe: An error occurred trying to connect: Post http://%2F%2F.%2Fpipe%2Fdocker_engine/v1.23/containers/create: open //./pipe/docker_engine: The system cannot find the file specified..
See 'C:\Program Files\Docker Toolbox\docker.exe run --help'.
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <meta content="Hans-Peter Buniat" name="author"> | |
| <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> | |
| <title>Form-Submit Popunder</title> | |
| <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js"></script> | |
| </head> | |
| <body> | |
| <form id="testSubmit" action="http://www.google.com"> |