Niels Hofmans hazcod
hazcod
/ CVE-2021-36934.bat
Created
July 22, 2021 11:32
CVE-2021-36934 manual mitigation in commandprompt.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| echo > CVE-2021-36934 fixer | |
| echo See https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36934 | |
| echo Deleting current shadow copies... | |
| vssadmin delete shadows /all /quiet | |
| echo Fixing privilege issue... | |
| icacls %windir%\system32\config\*.* /inheritance:e | |
| echo Creating brand new shadow copy... |
hazcod
/ gist:e50779fa6403364d1ceee1c9ecb3f552
Last active
July 22, 2021 11:34
disables the printer spooler (disables local and remote printing) to fix PrintNightmare vulnerabilities.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <wap-provisioningdoc id="1162DF07-F217-449B-95F8-FB85A34D3CA5" name="windows-printerspooler-disable"> | |
| <characteristic type="com.airwatch.winrt.registryoperation" uuid="3fa91319-eac0-4a16-9d10-093ba845b698"> | |
| <parm RegistryPath="HKLM\SYSTEM\CurrentControlSet\Services\Spooler" Action="Replace"> | |
| <Value Name="Start" Data="4" Type="DWORD" /> | |
| </parm> | |
| </characteristic> | |
| </wap-provisioningdoc> |
hazcod
/ psycopg2-with-reconnects.py
Created
May 28, 2021 13:40
This helper class helps you use Psycopg but with connection reattempts.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class PGDB(): | |
| LIMIT_RETRIES = 5 | |
| def __init__(self, user:str, password:str, host:str, port:int, database:str, sslmode:str, reconnect:bool): | |
| self.user = user | |
| self.password = password | |
| self.host = host | |
| self.port = port | |
| self.database = database | |
| self._connection = None |
hazcod
/ zap-header-inject-script.js
Created
October 9, 2020 11:59
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function sendingRequest(origMsg, initiator, helper) | |
| { | |
| // skip if it isn't for the API scope | |
| if (! origMsg.getRequestHeader().getHostName().contains("mywebapi")) { return; } | |
| var httpRequestHeader = origMsg.cloneAll().getRequestHeader(); | |
| // add the Accept header if not exists | |
| if (origMsg.getRequestHeader().getHeader("Accept") == null) | |
| { |
hazcod
/ MTLSBackendHandler.java
Created
September 24, 2020 11:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package tls.netty; | |
| import io.netty.channel.Channel; | |
| import io.netty.channel.ChannelFutureListener; | |
| import io.netty.channel.ChannelHandlerContext; | |
| import io.netty.channel.ChannelInboundHandlerAdapter; | |
| public class MTLSBackendHandler | |
| extends ChannelInboundHandlerAdapter | |
| { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| type TTLMap struct { | |
| TTL time.Duration | |
| data sync.Map | |
| } | |
| type expireEntry struct { | |
| ExpiresAt time.Time | |
| Value interface{} | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #### systemd script (/etc/systemd/system/plexdrive.service): | |
| [Unit] | |
| Description=Plexdrive | |
| AssertPathIsDirectory=/media/plex/ | |
| After=network-online.target | |
| ### CONFIGURED FOR MAX ~58GB of MEMORY (change max-chunks to lower) | |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "options": { | |
| "disable_audit": false, | |
| "disable_events": false, | |
| "enable_mouse_events": false, | |
| "enable_keyboard_events": false, | |
| "events_max": 10000, | |
| "events_expiry": 3600, | |
| "read_max": 52428800, | |
| "logger_event_type": false, |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| type="$1" | |
| PLEXSCAN="/Applications/Plex Media Server.app/Contents/MacOS/Plex Media Scanner" | |
| if [ "$type" != "Series" ] && [ "$type" != "Movies" ]; then | |
| echo "Unknown type: $type" | |
| exit 1 | |
| fi |
hazcod
/ port-scanner.go
Last active
April 21, 2020 15:57
Simple port scanner. Scans full host in 24sec.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "context" | |
| "fmt" | |
| "github.com/pkg/errors" | |
| "net" | |
| "strings" | |
| "sync" | |
| "syscall" |