I hereby claim:
- I am zuphzuph on github.
- I am zuphzuph (https://keybase.io/zuphzuph) on keybase.
- I have a public key ASC0vWruvp5RO9z1C_KEvKraPDacVO9C8cCDU9gKcXS0Ugo
To claim this, I am signing this object:
zuphzuph
/ aws_ec2_to_json.go
Created
March 1, 2019 22:32
— forked from bbriggs/aws_ec2_to_json.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/csv" | |
| "encoding/json" | |
| "io/ioutil" | |
| "os" | |
| ) | |
| type Instance struct { |
zuphzuph
/ invoke-potato.ps1
Created
December 7, 2018 03:02
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-Potato | |
| { | |
| <# | |
| .SYNOPSIS | |
| Script leverages Reflective Potato and Invoke-ReflectivePEInjection to reflectively load Rotten Potato DLL directly into memory. This | |
| allows you to indirectly perform the Rotten Potato attack without having to touch the disk, or utilize any external loaders. | |
| The script takes a Shellcode parameter which will execute any arbitrary shellcode within the HostProc argument. Default is set to C:\Windows\System32\notepad.exe |
zuphzuph
/ checksvc.py
Created
October 19, 2018 22:29
— forked from wdormann/checksvc.py
Check for insecure services on Windows
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| import subprocess | |
| import ctypes | |
| # See: https://blogs.msmvps.com/erikr/2007/09/26/set-permissions-on-a-specific-service-windows/ | |
| svcinfo = {} | |
| nonadmin = ['AU', 'AN', 'BG', 'BU', 'DG', 'WD', 'IU', 'LG'] | |
| FNULL = open(os.devnull, 'w') |
zuphzuph
/ instant_oracle
Created
April 18, 2018 00:00
— forked from XC3pti0n/instant_oracle
Instant Oracle SQLPLus SDK +oci8
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ########### Build to attack Oracle in under 20 mins ########### | |
| [] Kali 2018.1 (64bit) | |
| root@kali:~# mkdir /opt/oracle | |
| root@kali:~# cd /opt/oracle | |
| root@kali:/opt/oracle# wget instantclient-basic-linux.x64-12.2.0.1.0.zip (68mb) | |
| root@kali:/opt/oracle# wget instantclient-sqlplus-linux.x64-12.2.0.1.0.zip (1mb) | |
| root@kali:/opt/oracle# wget instantclient-sdk-linux.x64-12.2.0.1.0.zip (1mb) | |
| [] Download from http://www.oracle.com/technetwork/database/features/instant-client/index-097480.html (x86_64) xce/orc |
zuphzuph
/ keybase.md
Created
October 6, 2017 08:23