EK_ jivoi

Mounting VirtualBox shared folders on Ubuntu Server 18.04 LTS (Bionic Beaver)

This guide will walk you through the steps on how to setup a VirtualBox shared folder inside your Ubuntu Server guest.

This guide assumes that you are using the following setup:

You could still make this guide work with other setups (possibly with some modifications to the commands and whatnot).

python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>

With Rubeus version with brute module:

This document outlines the steps to set up a one tunnel IPSec Site to site VPN on AWS and a VM on another cloud provider (Packet) running Strongswan.

(References:

(This can be any cloud provider. It does not have to be Packet)

	https://github.com/search?q=BROWSER_STACK_ACCESS_KEY= OR BROWSER_STACK_USERNAME= OR browserConnectionEnabled= OR BROWSERSTACK_ACCESS_KEY=&s=indexed&type=Code
	https://github.com/search?q=CHROME_CLIENT_SECRET= OR CHROME_EXTENSION_ID= OR CHROME_REFRESH_TOKEN= OR CI_DEPLOY_PASSWORD= OR CI_DEPLOY_USER=&s=indexed&type=Code
	https://github.com/search?q=CLOUDAMQP_URL= OR CLOUDANT_APPLIANCE_DATABASE= OR CLOUDANT_ARCHIVED_DATABASE= OR CLOUDANT_AUDITED_DATABASE=&s=indexed&type=Code
	https://github.com/search?q=CLOUDANT_ORDER_DATABASE= OR CLOUDANT_PARSED_DATABASE= OR CLOUDANT_PASSWORD= OR CLOUDANT_PROCESSED_DATABASE=&s=indexed&type=Code
	https://github.com/search?q=CONTENTFUL_PHP_MANAGEMENT_TEST_TOKEN= OR CONTENTFUL_TEST_ORG_CMA_TOKEN= OR CONTENTFUL_V2_ACCESS_TOKEN=&s=indexed&type=Code
	https://github.com/search?q=-DSELION_BROWSER_RUN_HEADLESS= OR -DSELION_DOWNLOAD_DEPENDENCIES= OR -DSELION_SELENIUM_RUN_LOCALLY=&s=indexed&type=Code
	https://github.com/search?q=ELASTICSEARCH_PASSWORD= OR ELASTICSEARCH_USERNAME= OR EMAIL_NOTIFI

	$ cat hashcat-markov-ends.sh
	#!/bin/bash

	# Ref: https://github.com/hashcat/hashcat/issues/1058

	echo "# A survey of the last string tried by hashcat's Markov for standard masks"
	echo -n '# hashcat version: '
	hashcat --version

	[ -f hashcat-markov-ends.list ] && rm hashcat-markov-ends.list

	#!/usr/bin/env python3
	"""
	Script used to pull down the current video descriptions from ippsec's youtube channel.
	The raw output still has a few HTML tags that need to be manually removed and there
	also seem to be multiple duplicates of videos that have been removed in the output
	saved as ippsec-details.txt
	"""
	import re
	import sys

	from distutils.core import setup
	import py2exe
	setup(
	name = ‘Meter’,
	description = ‘Python-based App’,
	version = ‘1.0’,
	console=[‘mrtp.py’],
	options = {‘py2exe’: {‘bundle_files’: 1,’packages’:’ctypes’,’includes’: ‘base64,sys,socket,struct,time,code,platform,getpass,shutil’,}},
	zipfile = None,
	)

	#!/usr/bin/env python

	# for more info: https://shenaniganslabs.io/2019/01/28/Wagging-the-Dog.html
	# this is a rough PoC

	# requirements for RCE:
	# - the attacker needs to either have or create an object with a service principal name
	# - the MSSQL server has to be running under the context of System/Network Service/a virtual account
	# - the MSSQL server has the WebClient service installed and running (not default on Windows Server hosts)
	# - NTLM has to be in use

	//Invoke-WebRequest in Powershell - manually whitelist legit content first:
	Mozilla/WindowsPowerShell/

	System.Net.WebClient.DownloadFile():
	None

	//Start-BitsTransfer - manually whitelist legit content first:
	Microsoft BITS/*

	//certutil.exe - manually whitelist legit content first: