Adam Bouhmad AdamBouhmad

## scrape-sitemap.sh
#!/bin/sh

SITEMAP=$1

if [ "$SITEMAP" = "" ]; then
    echo "Usage: $0 http://domain.com/sitemap.xml"
	exit 1
fi

XML=`wget -O - --quiet $SITEMAP`

## Users.csv

          
            Joe
            Smith
            123456
            147852

            
              Bill
              Jones
              987654
              369852

            
              Steve
              Miller
              654321
              852147

## packer-ami-id
packer build packer.json 2>&1 | sudo tee output.txt
tail -2 output.txt | head -2 | awk 'match($0, /ami-.*/) { print substr($0, RSTART, RLENGTH) }' > sudo ami.txt

## learning-computer-security.md

      
              1 file
            
          
              42 forks
            
          
              1 comment
            
          
              114 stars
            
          
                nfarrar
                / learning-computer-security.md
            
            
              Last active
              April 2, 2024 04:33
            
              
                Learning Computer Security
              
          
    Learning Computer Security

About This Guide

This is an opinionated guide to learning about computer security (independently of a university or training program), starting with the absolute basics (suitable for someone without any exposure to or knowledge of computer security) and moving into progressively more difficult subject matter.
It seems that most people don't realize how much information is actually available on the internet. People love to share (especially geeks) and everything you need to become well versed in computer security is already available to you (and mostly for free). However, sometimes knowing where to start is the hardest part - which is the problem that this guide is intended to address. Therefore, this guide can accuratley be described as a 'guide to guides', with additional recommendations on effective learning and execises, based on my own experiences.
Many of the free resources are the best resources and this guide focuses on them. It is intended to provided a comprehensive

  
## google-dorks

"          _                      _          "
"   _     /||       .   .        ||\     _   "
"  ( }    \||D    '   '     '   C||/    { %  "
" | /\__,=_[_]   '  .   . '       [_]_=,__/\ |"
" |_\_  |----|                    |----|  _/_|"
" |  |/ |    |                    |    | \|  |"
" |  /_ |    |                    |    | _\  |"

	It is all fun and games until someone gets hacked!

## vault-ec2-auth.sh
#!/bin/bash
#
# vault-ec2-auth.sh
#   Authenticates an EC2 instance to Hashicorp Vault
#

# configuration stored in environment variables in /etc/vault/client.conf
# expected configuration (defaults are selected below if none is specified):
#   VAULT_ADDR = url of vault server
#   VAULT_ROLE = role name to authenticate as

## MIRRworkshop.md

      
              1 file
            
          
              3 forks
            
          
              11 comments
            
          
              7 stars
            
          
                mzbat
                / MIRRworkshop.md
            
            
              Last active
              May 17, 2023 20:19
            
              
                Mock Interview & Resume Review Workshop
              
          
    Mock Interview & Resume Review Workshop

##Background
September 2016, I tweeted that I'd volunteer time to help a few people at DerbyCon who struggle with anxiety during interviews. I'd just come off of a 2 week hiring sprint and saw a lot of candidates with great technical skills who failed miserably when it came to answering "soft" questions. I thought spending a couple of hours with struggling folks at DerbyCon would be a simple way to give back to the community that's given me so much.
Response was overwhelming and it became pretty clear that the community needed more help than I would be able to give in a few short hours. I published 2 Google forms - One for volunteers to help and the other for participants. Somewhere along the way, DerbyCon organizers caught wind of the project and generously offered a room to conduct mock interviews and resume reviews. Just like that, a workshop was born.
I'm setting up this Gist with the hope that sharing my format, forms, guidelines, and lessons learned will insp

  
## Wannacrypt0r-FACTSHEET.md

      
              1 file
            
          
              158 forks
            
          
              267 comments
            
          
              713 stars
            
          
                rain-1
                / Wannacrypt0r-FACTSHEET.md
            
            
              Last active
              March 10, 2024 11:03
                — forked from Epivalent/Wannacrypt0r-FACTSHEET.md
            
          
    WannaCry|WannaDecrypt0r NSA-Cyberweapon-Powered Ransomware Worm


Virus Name: WannaCrypt, WannaCry, WanaCrypt0r, WCrypt, WCRY
Vector: All Windows versions before Windows 10 are vulnerable if not patched for MS-17-010. It uses EternalBlue MS17-010 to propagate.
Ransom: between $300 to $600. There is code to 'rm' (delete) files in the virus. Seems to reset if the virus crashes.
Backdooring: The worm loops through every RDP session on a system to run the ransomware as that user. It also installs the DOUBLEPULSAR backdoor. It corrupts shadow volumes to make recovery harder. (source: malwarebytes)
Kill switch: If the website www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com is up the virus exits instead of infecting the host. (source: malwarebytes). This domain has been sinkholed, stopping the spread of the worm. Will not work if proxied (source).

update: A minor variant of the viru

  
## eternalblue8_exploit.py
#!/usr/bin/python
# This file has no update anymore. Please see https://github.com/worawit/MS17-010
from impacket import smb, ntlm
from struct import pack
import sys
import socket

'''
EternalBlue exploit for Windows 8 and 2012 by sleepya
The exploit might FAIL and CRASH a target system (depended on what is overwritten)

## client.hs
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE PatternSynonyms #-}

import           Control.Applicative
import           Control.Lens
import           Control.Monad

import           Data.ByteString (ByteString)
import qualified Data.ByteString.Lazy as BSL
import qualified Data.IORef as IORef
	#!/bin/sh

	SITEMAP=$1

	if [ "$SITEMAP" = "" ]; then
	echo "Usage: $0 http://domain.com/sitemap.xml"
	exit 1
	fi

	XML=`wget -O - --quiet $SITEMAP`
Joe	Smith	123456	147852
Bill	Jones	987654	369852
Steve	Miller	654321	852147
	packer build packer.json 2>&1 \| sudo tee output.txt
	tail -2 output.txt \| head -2 \| awk 'match($0, /ami-.*/) { print substr($0, RSTART, RLENGTH) }' > sudo ami.txt

	" _ _ "
	" _ /\|\| . . \|\|\ _ "
	" ( } \\|\|D ' ' ' C\|\|/ { % "
	" \| /\__,=_[_] ' . . ' [_]_=,__/\ \|"
	" \|_\_ \|----\| \|----\| _/_\|"
	" \| \|/ \| \| \| \| \\| \|"
	" \| /_ \| \| \| \| _\ \|"

	It is all fun and games until someone gets hacked!
	#!/bin/bash
	#
	# vault-ec2-auth.sh
	# Authenticates an EC2 instance to Hashicorp Vault
	#

	# configuration stored in environment variables in /etc/vault/client.conf
	# expected configuration (defaults are selected below if none is specified):
	# VAULT_ADDR = url of vault server
	# VAULT_ROLE = role name to authenticate as
	#!/usr/bin/python
	# This file has no update anymore. Please see https://github.com/worawit/MS17-010
	from impacket import smb, ntlm
	from struct import pack
	import sys
	import socket

	'''
	EternalBlue exploit for Windows 8 and 2012 by sleepya
	The exploit might FAIL and CRASH a target system (depended on what is overwritten)
	{-# LANGUAGE OverloadedStrings #-}
	{-# LANGUAGE PatternSynonyms #-}

	import Control.Applicative
	import Control.Lens
	import Control.Monad

	import Data.ByteString (ByteString)
	import qualified Data.ByteString.Lazy as BSL
	import qualified Data.IORef as IORef