Spencer McIntyre zeroSteiner
zeroSteiner
/ AdvancedHTTPServer.py
Last active
December 10, 2015 22:29
A set of classes to make creating HTTP servers with common features such as threading, SSL, basic authentication, 301 redirects, and RPC servers simple.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| # | |
| # AdvancedHTTPServer.py | |
| # | |
| # Redistribution and use in source and binary forms, with or without | |
| # modification, are permitted provided that the following conditions are | |
| # met: | |
| # | |
| # * Redistributions of source code must retain the above copyright |
zeroSteiner
/ firebird_dos.py
Last active
December 14, 2015 13:29
Firebird Denial of Service Proof of Concept
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """ | |
| firebird_dos.py | |
| Discovered: 1-31-2013 | |
| By: Spencer McIntyre (zeroSteiner) | |
| SecureState Research and Innovation Team | |
| www.securestate.com | |
zeroSteiner
/ eapbrute.py
Last active
December 15, 2015 18:19
EAP brute forcing utility The mschapext module is not available.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- coding: utf-8 -*- | |
| # | |
| # eapbrute.py | |
| # | |
| # Redistribution and use in source and binary forms, with or without | |
| # modification, are permitted provided that the following conditions are | |
| # met: | |
| # | |
| # * Redistributions of source code must retain the above copyright | |
| # notice, this list of conditions and the following disclaimer. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| import os | |
| import select | |
| import threading | |
| class PTYConnector(threading.Thread): | |
| def __init__(self): | |
| super(PTYConnector, self).__init__() |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| # tested on BT 5 MSF SVN version: 12900, 12963, 13473 | |
| # pcaprub must be installed | |
| # this module is old and probably doesn't work with the newest | |
| # versions of Metasploit | |
| class Metasploit3 < Msf::Auxiliary | |
| include Msf::Exploit::Remote::Capture |
zeroSteiner
/ lianja_sql_bof.py
Created
May 22, 2013 12:55
Lianja SQL Server Stack Buffer Overflow Proof of Concept
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """ | |
| lianja_sql_bof.py | |
| Discovered: 5-20-2013 | |
| By: Spencer McIntyre (zeroSteiner) | |
| SecureState Research and Innovation Team | |
| www.securestate.com | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # -*- coding: utf-8 -*- | |
| # | |
| # rdesktop-gui | |
| # | |
| # Redistribution and use in source and binary forms, with or without | |
| # modification, are permitted provided that the following conditions are | |
| # met: | |
| # | |
| # * Redistributions of source code must retain the above copyright |
zeroSteiner
/ odbc_trace_parser.py
Last active
July 26, 2016 16:45
Parse ODBC Trace logs into a more easily usable format.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| # | |
| # odbc_trace_parser.py | |
| # | |
| # Copyright 2013 Spencer McIntyre <[email protected]> | |
| # | |
| # Redistribution and use in source and binary forms, with or without | |
| # modification, are permitted provided that the following conditions are | |
| # met: |
zeroSteiner
/ zenoss_graph_pt.rb
Last active
December 23, 2015 06:49
Zenoss Custom Graph Point Python Injection
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## | |
| # This file is part of the Metasploit Framework and may be subject to | |
| # redistribution and commercial restrictions. Please see the Metasploit | |
| # web site for more information on licensing and terms of use. | |
| # http://metasploit.com/ | |
| ## | |
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote |
zeroSteiner
/ disable_emet.asm
Created
October 14, 2013 15:50
This stub will cripple EMET 4.0 by setting the ExploitAction to AuditOnly and configuring it to not log events. The api_call function originated from Stephen Fewer.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [BITS 32] | |
| ; This stub will cripple EMET 4.0 by setting the ExploitAction to AuditOnly | |
| ; and configuring it to not log events. The api_call function originated from | |
| ; Stephen Fewer. | |
| global _start | |
| _start: | |
| xor ebx,ebx ; Zero EBX |
OlderNewer