Hacks and Hops ACK-J

## Syscall.py
import subprocess
def runcommand(cmd):
    proc = subprocess.Popen(cmd,
                            stdout=subprocess.PIPE,
                            stderr=subprocess.PIPE,
                            shell=True,
                            universal_newlines=True)
    std_out, std_err = proc.communicate()
    return proc.returncode, std_out, std_err

## auto_cname.sh
while read line; do dig @1.1.1.1 +short "$line" cname >> out.txt; done < <(assetfinder -subs-only domain.com)

## metrix_block.py
from shodan import Shodan

api = Shodan('API-KEY')
results = api.search('isp:"ThreatMetrix Inc." port:443 Bad Request')

for banner in results['matches']:
    # Only care about services that use SSL
    if 'ssl' in banner:
        print(banner['ssl']['cert']['subject']['CN'])

## ThreatMetrixData.txt
agent_publickey = 3059301306072a8648ce3d020106082a8648ce3d03010703420004f2b81b1902a771c8c24f09c6bd8be647d33bd139269856418a42c5a78343d943a03ac2173529a816f797a803563de6ecdd25572ce09af8c081c02303bac0c4d3
agent_publickey_hash = 525f76180e55012341ffe12bcfb5587adad1b920
agent_publickey_hash_result = not found
agent_publickey_hash_type = web:ecdsa
agent_type = browser_computer
alert_id = 9598
api_call_datetime = 2019-12-16 15:24:42.595
api_key = fioxxxxxxxxxx370
api_site_id = api101.qa2.sac.
api_type = session-query

## ThreatMetrixEndpoints.txt
*.caesarscasino.com
*.credit24.com
*.credit24.com.au
*.creditea.com
*.fashionette.de
*.hapipozyczki.pl
*.ideafinancial.com
*.mohegansuncasino.com
*.online-metrix.net
*.qa.threatmetrix.com

## parrot_kali_install.sh
#!/bin/bash
# System Updates
sudo apt-get update -y
sudo apt-get full-upgrade --fix-missing -y
sudo apt-get autoremove -y
#sudo parrot-upgrade

# Alias to Fix Virtual Box issues
# alias FixVM="killall /usr/bin/VBoxClient 2> /dev/null; /usr/bin/VBoxClient --clipboard && /usr/bin/VBoxClient --seamless && /usr/bin/VBoxClient --vmsvga && /usr/bin/VBoxClient --draganddrop && /usr/bin/VBoxClient --checkhostversion"

## Churn.exp
#!/usr/bin/expect -f
if {[llength $argv] != 5} {
  puts stderr "Usage: Pass an amount and a priority as arguments!"
  exit 1
}
set walletName [lindex $argv 0];
set network [lindex $argv 1];
set REMOTE_NODE [lindex $argv 2];
set PORT [lindex $argv 3];
set address [lindex $argv 4];

## Send_DKIM_Email.py
import dkim # pip3 install dkimpy
import smtplib
import time
from email.mime.multipart import MIMEMultipart
from email.mime.text import MIMEText
from email.utils import formatdate

# Set params
destination = "TODO" # Victim SMTP server
smtp = "TODO" # Victim email

## Reconstruct_Private_RSA_Key.py
#!/usr/bin/python3

# The following code was written by Wulf on #crypto (Libera)

from math import gcd
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.asymmetric.rsa import (
    RSAPublicNumbers,
    RSAPrivateNumbers,
    rsa_crt_iqmp,

## DKIM_Check.py
import dns.resolver
import sys
from tld import get_fld

def get_root_domain(domain):
    return get_fld(domain, fix_protocol=True)

def check_dmarc(domain):
    try:
        answers = dns.resolver.resolve(f'_dmarc.{domain}', 'TXT')
	import subprocess
	def runcommand(cmd):
	proc = subprocess.Popen(cmd,
	stdout=subprocess.PIPE,
	stderr=subprocess.PIPE,
	shell=True,
	universal_newlines=True)
	std_out, std_err = proc.communicate()
	return proc.returncode, std_out, std_err
	from shodan import Shodan

	api = Shodan('API-KEY')
	results = api.search('isp:"ThreatMetrix Inc." port:443 Bad Request')

	for banner in results['matches']:
	# Only care about services that use SSL
	if 'ssl' in banner:
	print(banner['ssl']['cert']['subject']['CN'])
	agent_publickey = 3059301306072a8648ce3d020106082a8648ce3d03010703420004f2b81b1902a771c8c24f09c6bd8be647d33bd139269856418a42c5a78343d943a03ac2173529a816f797a803563de6ecdd25572ce09af8c081c02303bac0c4d3
	agent_publickey_hash = 525f76180e55012341ffe12bcfb5587adad1b920
	agent_publickey_hash_result = not found
	agent_publickey_hash_type = web:ecdsa
	agent_type = browser_computer
	alert_id = 9598
	api_call_datetime = 2019-12-16 15:24:42.595
	api_key = fioxxxxxxxxxx370
	api_site_id = api101.qa2.sac.
	api_type = session-query
	*.caesarscasino.com
	*.credit24.com
	*.credit24.com.au
	*.creditea.com
	*.fashionette.de
	*.hapipozyczki.pl
	*.ideafinancial.com
	*.mohegansuncasino.com
	*.online-metrix.net
	*.qa.threatmetrix.com
	#!/bin/bash
	# System Updates
	sudo apt-get update -y
	sudo apt-get full-upgrade --fix-missing -y
	sudo apt-get autoremove -y
	#sudo parrot-upgrade

	# Alias to Fix Virtual Box issues
	# alias FixVM="killall /usr/bin/VBoxClient 2> /dev/null; /usr/bin/VBoxClient --clipboard && /usr/bin/VBoxClient --seamless && /usr/bin/VBoxClient --vmsvga && /usr/bin/VBoxClient --draganddrop && /usr/bin/VBoxClient --checkhostversion"
	#!/usr/bin/expect -f
	if {[llength $argv] != 5} {
	puts stderr "Usage: Pass an amount and a priority as arguments!"
	exit 1
	}
	set walletName [lindex $argv 0];
	set network [lindex $argv 1];
	set REMOTE_NODE [lindex $argv 2];
	set PORT [lindex $argv 3];
	set address [lindex $argv 4];
	import dkim # pip3 install dkimpy
	import smtplib
	import time
	from email.mime.multipart import MIMEMultipart
	from email.mime.text import MIMEText
	from email.utils import formatdate

	# Set params
	destination = "TODO" # Victim SMTP server
	smtp = "TODO" # Victim email
	#!/usr/bin/python3

	# The following code was written by Wulf on #crypto (Libera)

	from math import gcd
	from cryptography.hazmat.backends import default_backend
	from cryptography.hazmat.primitives.asymmetric.rsa import (
	RSAPublicNumbers,
	RSAPrivateNumbers,
	rsa_crt_iqmp,
	import dns.resolver
	import sys
	from tld import get_fld

	def get_root_domain(domain):
	return get_fld(domain, fix_protocol=True)

	def check_dmarc(domain):
	try:
	answers = dns.resolver.resolve(f'_dmarc.{domain}', 'TXT')