Skip to content

Instantly share code, notes, and snippets.

View kipyegonmark's full-sized avatar

Mark Koskei kipyegonmark

View GitHub Profile
@kipyegonmark
kipyegonmark / .gitignore
Created January 24, 2019 08:23 — forked from octocat/.gitignore
Some common .gitignore configurations
# Compiled source #
###################
*.com
*.class
*.dll
*.exe
*.o
*.so
# Packages #
@kipyegonmark
kipyegonmark / netcat.md
Last active March 22, 2018 11:31
Filesharing through netcat

On target machine (192.168.0.10)

$ nc -l -p 9999 > log.txt

On OSX target machine

$ nc -l 9999 > log.txt

On source machine

@kipyegonmark
kipyegonmark / renew-certificate.service
Last active July 16, 2016 13:04
Let's Encrypt certificate update using systemd timers
[Unit]
Description=Renew Let's Encrypt certificates
[Service]
Type=simple
ExecStart=renew-certificate.sh
# Simulate fake processes of analysis sandbox/VM that some malware will try to evade
# This just spawn ping.exe with different names (wireshark.exe, vboxtray.exe, ...)
# It's just a PoC and it's ugly as f*ck but hey, if it works...
# Usage: .\fake_sandbox.ps1 -action {start,stop}
param([Parameter(Mandatory=$true)][string]$action)
$fakeProcesses = @("wireshark.exe", "vmacthlp.exe", "VBoxService.exe",
"VBoxTray.exe", "procmon.exe", "ollydbg.exe", "vmware-tray.exe",

As others have noted, README should be simple and short, but a good README can save time especially if it's for something like command-line parameter parsing library.

Here's what I think it should include:

name of the projects and all sub-modules and libraries (sometimes they are named different and very confusing to new users)
descriptions of all the project, and all sub-modules and libraries
5-line code snippet on how its used (if it's a library)
copyright and licensing information (or "Read LICENSE")
instruction to grab the documentation

instructions to install, configure, and to run the programs

@kipyegonmark
kipyegonmark / android-apk-analysis.md
Last active October 3, 2016 08:21
This is a list of tools that I use to assess and reverse engineer Android apps

android-apk-analysis

Specialised tools

  • Android SDK
  • sqlite3
  • drozer - "Comprehensive security and attack framework for Android."
  • apktool - "A tool for reverse engineering Android apk files"
  • dex2jar - "Tools to work with android .dex and java .class files"
  • bytecode viewer - A Java reverse engineering suite
@kipyegonmark
kipyegonmark / gitignore-add.md
Created March 16, 2016 13:03
Adding a .gitignore to an existing repo. Source to original link -> http://monkeyhacks.com/link/adding-a-gitignore-to-an-existing-repo

First commit any outstanding code changes, and then, run this command:

git rm -r --cached

This removes everything from theindex, then just run:

git add

Commit it:

@kipyegonmark
kipyegonmark / squid.conf
Created March 12, 2016 16:18
Sample configuration for squid proxy server. Source here -> https://calomel.org/squid.html
#
### Calomel.org Squid squid.conf
#
########### squid.conf ###########
#
## interface, port and proxy type
#http_port 10.10.10.1:8080 transparent
http_port 10.10.10.1:8080
## general options
#!/usr/bin/env python
# Mysshkey
# Version 0.0.3
# Bill Scheel <[email protected]>
# January 1, 2007
# Released under the GPL License- http://www.fsf.org/licensing/licenses/gpl.txt
#
import sys, string, glob, os, re, exceptions, traceback, pxssh, pexpect, getpass
# System Functions Do Not Touch
@kipyegonmark
kipyegonmark / password-root-reset.md
Created March 7, 2016 17:13
Root password reset on jailbroken iOS device
  1. open /etc/master.password
  2. generate password hash Example perl -e "print crypt($password,$salt);"
  3. change the hash for the desired user
  4. success \o/