jborean93’s gists

jborean93 / Invoke-AsScheduledJob.ps1

Created August 23, 2024 04:39

Invokes a PowerShell script as a scheduled task changing the logon type to a BATCH logon.

	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Function Invoke-AsScheduledJob {
	<#
	.SYNOPSIS
	Runs a scriptblock as a scheduled job.

	.DESCRIPTION
	This is a helper function to run PowerShell code as a scheduled task.

jborean93 / smb_list_shares.py

Last active August 9, 2024 11:09

List SMB shares using smbprotocol library

	#!/usr/bin/env python3
	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)
	# PYTHON_ARGCOMPLETE_OK

	# Big thanks to pysmb for help with the RPC structures
	# https://github.com/miketeo/pysmb

	from __future__ import annotations

jborean93 / parse_openssh_key.py

Last active July 28, 2024 01:57

Parses an OpenSSH Private Key file

jborean93 / Split-ExeArgument.ps1

Last active August 19, 2024 19:40

Splits the input string using the Win32 argument splitter

	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	#Requires -Module Ctypes

	Function Split-ExeArgument {
	[OutputType([string])]
	[CmdletBinding()]
	param (
	[Parameter(Mandatory, ValueFromPipeline)]

jborean93 / libvirt-network-dns.py

Created June 3, 2024 00:34

Script that can automatically configure DNS domain resolvers for systemd-resolved on QEMU network adapters

	#!/usr/bin/python

	import os.path
	import subprocess
	import sys
	import xml.etree.ElementTree as ET

	def main():
	iface = sys.argv[1]
	hook_case = sys.argv[2]

jborean93 / Get-FileProcess.ps1

Created May 30, 2024 23:18

Gets the process ids that has the requested file(s) opened

	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	#Requires -Module Ctypes
	#Requires -Version 7.3

	Function Get-FileProcess {
	<#
	.SYNOPSIS
	Get the process that has opened the requested file.

jborean93 / WinVerifyTrust-Catalog.ps1

Created May 21, 2024 04:53

Test code to testing WinVerifyTrust with a catalog file.

	ctypes_struct WINTRUST_DATA {
	[int]$cbStruct
	[IntPtr]$pPolicyCallbackData
	[IntPtr]$pSIPClientData
	[int]$dwUIChoice
	[int]$fdwRevocationChecks
	[int]$dwUnionChoice
	[IntPtr]$pCatalog
	[int]$dwStateAction
	[IntPtr]$hWVTStateData

jborean93 / Get-SignedCatalogFile.ps1

Last active September 13, 2024 00:34

Gets the signed catalog file details from the provided paths

	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	#Requires -Modules Ctypes
	#Requires -Version 7.3

	Function Get-SignedCatalogFile {
	<#
	.SYNOPSIS
	Gets the .cat file for the specified file.

jborean93 / rdp-execute.py

Created March 6, 2024 06:54

POC for running processes over RDP - Very WIP

	# Copyright: (c) 2024, Jordan Borean (@jborean93) <[email protected]>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	"""POC for running exe's over RDP

	This is a very rough attempt at trying to run an exe using a headless RDP
	connection. It aims to be able to provide an interactive console session as
	well as a headless one.

	Requires aardwolf - https://github.com/skelsec/aardwolf as a Python dependency.

jborean93 / ansible-kinit.py

Created February 23, 2024 00:55

POC for Ansible callback that calls kinit

	# Copyright (c) 2024 Jordan Borean
	# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)

	from __future__ import annotations

	DOCUMENTATION = """
	name: kinit
	type: aggregate
	short_description: POC to run kinit on a playbook run.
	description:

Jordan Borean jborean93