The security features of Barebox are:
- Signed images
- Signed "state variables" (shared with the kernel)
Guillaume Quéré gquere
gquere
/ vault_get_secrets.py
Last active
October 28, 2022 07:07
Recursively dump Hashicorp Vault secrets
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import argparse | |
| import urllib3 | |
| import requests | |
| import json | |
| import sys | |
| # SUPPRESS WARNINGS ############################################################ | |
| urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning) |
gquere
/ openldap2john.py
Last active
November 17, 2020 14:38
Convert OpenLDAP hashes to a format john the ripper can understand
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Convert OpenLDAP hashes to a format john the ripper can understand | |
| import sys | |
| import base64 | |
| with open(sys.argv[1], 'r') as f: | |
| lines = f.readlines() | |
| for line in lines: | |
| line = line.rstrip("\n") |
gquere
/ openldap2hashcat.py
Last active
April 17, 2022 14:06
Convert OpenLDAP hashes to a format Hashcat can understand
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Convert OpenLDAP hashes to a format Hashcat can understand | |
| import sys | |
| import base64 | |
| with open(sys.argv[1], 'r') as f: | |
| lines = f.readlines() | |
| for line in lines: | |
| line = line.rstrip("\n") |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Network | |
| ======= | |
| DNS 53 | |
| DHCP server 67 | |
| DHCP client 68 | |
| NTP 123 | |
| Auth | |
| ==== | |
| TACACS 49 |
gquere
/ shitmantec.py
Created
February 12, 2021 11:56
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import sys | |
| import re | |
| import random | |
| import base64 | |
| with open(sys.argv[1], "rb") as f: | |
| lines = f.readlines() | |
| obfuscated_lines = b"" |
gquere
/ barebox_advisory.md
Last active
August 30, 2021 15:47
gquere
/ shitmantec.md
Last active
February 21, 2022 09:38
gquere
/ gist:045638b9959f4b3e119ea01d8d6ff856
Last active
March 27, 2023 14:00
patrol password encryption
./pconfig +get -p <port> -host <host> | grep defaultAccount
gquere
/ weblogic_password.decrypt.py
Last active
January 22, 2025 09:53
Weblogic password decrypt python
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # python3 port from https://github.com/L-codes/ctf-scripts/blob/master/crypto/weblogic_password.py | |
| # /console/ login account | |
| # -i ~/wls<VERSION>/user_projects/domains/<DOMAIN_NAME>/security/SerializedSystemIni.dat | |
| # -f ~/wls<VERSION>/user_projects/domains/<DOMAIN_NAME>/config/config.xml | |
| from Cryptodome.Cipher import ARC2, AES, DES3 | |
| from Cryptodome.Hash import SHA | |
| import struct | |
| import re |
gquere
/ fortigate_decrypt.py
Last active
August 15, 2023 17:27
Decrypt FortiGate configuration secrets CVE-2019-6693
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| from Cryptodome.Cipher import AES | |
| import base64 | |
| import sys | |
| key = b'Mary had a littl' | |
| data = base64.b64decode(sys.argv[1]) | |
| iv = data[0:4] + b'\x00' * 12 |