With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
Erik kernel-sanders
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # CVE-2019-6340 Drupal <= 8.6.9 REST services RCE PoC | |
| # 2019 @leonjza | |
| # Technical details for this exploit is available at: | |
| # https://www.drupal.org/sa-core-2019-003 | |
| # https://www.ambionics.io/blog/drupal8-rce | |
| # https://twitter.com/jcran/status/1099206271901798400 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| default['sshd']['sshd_config']['AuthenticationMethods'] = 'publickey,keyboard-interactive:pam' | |
| default['sshd']['sshd_config']['ChallengeResponseAuthentication'] = 'yes' | |
| default['sshd']['sshd_config']['PasswordAuthentication'] = 'no' |
TarlogicSecurity
/ kerberos_attacks_cheatsheet.md
Created
May 14, 2019 13:33
A cheatsheet with commands that can be used to perform kerberos attacks
SwitHak
/ 20190730-TLP-WHITE_URGENT11_VxWorks.MD
Last active
June 5, 2020 08:12
Tracking vendors responses to URGENT/11 VxWorks vulnerabilities (Last updated: 2020-02-21 1019 UTC)
Armis released new information about the vulnerabilities scope. The vulnerabilities impact more RTOS than expected.
- Some of the vulnerabilities discovered by Armis doesn't resides in VxWorks RTOS but in one part of it, the IP stack. This IP stack named IPNET stack comes from Interpeak AB, a company acquired by Wind River the editor of VxWorks RTOS, the 20th March 2006.
- Before been acquired by Wind River, the Interpeak AB company sold IP stacks to several customers of them. Interpeak AB sold 2 major IP stacks named IPNET & IPLITE, IPLITE is a light version of IPNET.
radiantly
/ README.md
Last active
November 12, 2021 23:24
— forked from lifehome/README.md
Cloudflare API v4 Dynamic DNS Update in Bash
This is a bash script to act as a Cloudflare DDNS client, useful replacement for ddclient.
- Put the
cfupdaterfiles to/usr/local/bin chmod +x /usr/local/bin/cfupdater- Create a systemd service unit at
/etc/systemd/system/, thecfupdate.serviceis shown as an example. - Create a systemd timer unit at the same location of the service unit, the
cfupdate.timeris shown as an example. sudo systemctl enable cfupdate.timersudo systemctl start cfupdate.timer
0xsha
/ CVE-2020-8515.go
Last active
March 30, 2024 20:52
CVE-2020-8515: DrayTek pre-auth remote root RCE
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| /* | |
| CVE-2020-8515: DrayTek pre-auth remote root RCE | |
| Mon Mar 30 2020 - 0xsha.io | |
| Affected: |
ustayready
/ google_lure.py
Last active
September 23, 2024 20:18
Generate phishing lures that exploit open-redirects from www.google.com using Google Docs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from __future__ import print_function | |
| import pickle | |
| import os.path | |
| from googleapiclient.discovery import build | |
| from google_auth_oauthlib.flow import InstalledAppFlow | |
| from google.auth.transport.requests import Request | |
| from apiclient import errors | |
| import re | |
| from bs4 import BeautifulSoup as Soup |
eladshamir
/ DnsTunnel.cs
Created
April 11, 2020 21:50
This simple program tunnels UDP DNS packets to a TCP port
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Net.Sockets; | |
| using System.Net; | |
| namespace DnsTunnel | |
| { | |
| class Program | |
| { | |
| static void OpenTunnel(int listenerPort, string targetHost, int targetPort) | |
| { |
ThunderGunExpress
/ SuRestore.cpp
Last active
June 21, 2020 10:19
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //https://decoder.cloud/2018/02/12/the-power-of-backup-operatos/ | |
| //https://github.com/decoder-it/BadBackupOperator/blob/master/SuBackup/SuBackup/SuBackup.cpp | |
| //https://docs.microsoft.com/en-us/windows/win32/services/writing-a-servicemain-function | |
| //https://docs.microsoft.com/en-us/windows/win32/vds/loading-vds | |
| //Replace system command with your code. If DewIt() does not run, check if the vds service is running, it should be on-demand. | |
| #define UNICODE | |
| #include <windows.h> | |
| #include <stdio.h> | |
| #include <Psapi.h> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "options": { | |
| "logger_snapshot_event_type": "true", | |
| "schedule_splay_percent": 10 | |
| }, | |
| "platform": "darwin", | |
| "schedule": { | |
| "authorized_keys": { | |
| "query": "SELECT * FROM users CROSS JOIN authorized_keys USING (uid);", |