David Davidson 0x27

## ssh-backdoor.conf
# /etc/ssh-backdoor/ssh-backdoor.conf
REMOTE_BINDPORT=12345
REMOTE_HOST=user@example.com
REMOTE_PORT=22
LOCAL_HOST=localhost
LOCAL_PORT=22
SSH_KEY=/etc/ssh-backdoor/ssh-backdoor.key

## getting-started.md

      
              1 file
            
          
              28 forks
            
          
              8 comments
            
          
              152 stars
            
          
                joepie91
                / getting-started.md
            
            
              Last active
              June 5, 2024 07:46
            
              
                Getting started with Node.js
              
          
    "How do I get started with Node?" is a commonly heard question in #Node.js. This gist is an attempt to compile some of the answers to that question. It's a perpetual work-in-progress.
And if this list didn't quite answer your questions, I'm available for tutoring and code review! A donation is also welcome :)
Setting expectations

Before you get started learning about JavaScript and Node.js, there's one very important article you need to read: Teach Yourself Programming in Ten Years.
Understand that it's going to take time to learn Node.js, just like it would take time to learn any other specialized topic - and that you're not going to learn effectively just by reading things, or following tutorials or courses. _Get out there and build things!

  
## promises-reading-list.md

      
              1 file
            
          
              7 forks
            
          
              0 comments
            
          
              39 stars
            
          
                joepie91
                / promises-reading-list.md
            
            
              Last active
              June 25, 2023 09:12
            
              
                Promises (Bluebird) reading list
              
          
    Promises reading list

This is a list of examples and articles, in roughly the order you should follow them, to show and explain how promises work and why you should use them. I'll probably add more things to this list over time.
This list primarily focuses on Bluebird, but the basic functionality should also work in ES6 Promises, and some examples are included on how to replicate Bluebird functionality with ES6 promises. You should still use Bluebird where possible, though - they are faster, less error-prone, and have more utilities.
I'm available for tutoring and code review :)
You may reuse all gists for any purpose under the WTFPL / CC0 (whichever you prefer).

  
## mapping.json
{
  "masscan": {
    "order": 0,
    "template": "masscan-*",
    "settings": {
      "index": {
        "number_of_shards": "3",
        "number_of_replicas": "1"
      }
    },

## cve-2015-0240_samba_exploit.py
#!/usr/bin/python
"""
Exploit for Samba vulnerabilty (CVE-2015-0240) by sleepya

The exploit only targets vulnerable x86 smbd <3.6.24 which 'creds' is controlled by
ReferentID field of PrimaryName (ServerName). That means '_talloc_zero()'
in libtalloc does not write a value on 'creds' address.

Reference:
- https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/
	# /etc/ssh-backdoor/ssh-backdoor.conf
	REMOTE_BINDPORT=12345
	REMOTE_HOST=user@example.com
	REMOTE_PORT=22
	LOCAL_HOST=localhost
	LOCAL_PORT=22
	SSH_KEY=/etc/ssh-backdoor/ssh-backdoor.key
	{
	"masscan": {
	"order": 0,
	"template": "masscan-*",
	"settings": {
	"index": {
	"number_of_shards": "3",
	"number_of_replicas": "1"
	}
	},
	#!/usr/bin/python
	"""
	Exploit for Samba vulnerabilty (CVE-2015-0240) by sleepya

	The exploit only targets vulnerable x86 smbd <3.6.24 which 'creds' is controlled by
	ReferentID field of PrimaryName (ServerName). That means '_talloc_zero()'
	in libtalloc does not write a value on 'creds' address.

	Reference:
	- https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/