Syed Umar Arfeen Anon-Exploiter

## decode.py
#!/usr/bin/python3

from codecs import encode

import base64
import argparse
import re
import pycipher

# pycipher import Atbash

## btc-pricing.py
# Get USD price of BTC (changing) per minute in your discord server!
# Just replace the webhook_url variable and create a cron as you see fit.

#!/usr/bin/python3

import requests
import json

# BTCPRICE=`curl -s https://api.coindesk.com/v1/bpi/currentprice/USD.json | jp bpi.USD.rate | cut -d '"' -f2`
# JSON="{\"content\": \"Current price of BTC is: **$BTCPRICE** USD\"}"

## gob.sh
gobuster dir -w /usr/share/wordlists/dirb/common.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirb/big.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirb/big.txt -u http://10.10.10.37/ -x php,jsp,rb,py,js,asp,aspx,zip,sql,tar,txt,key,doc,docx,html,jar,groovy,back,xml,ini,inc,config,json,yml,conf,cgi -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirb/common.txt -u http://54.164.63.113/ -x php,jsp,rb,py,js,asp,aspx,zip,sql,tar,txt,key,doc,docx,html,jar,groovy,back,xml,ini,inc,config,json,yml,conf,cgi -k -l -e -b 404 -t 80

## .bashrc
# ~/.bashrc: executed by bash(1) for non-login shells.
# see /usr/share/doc/bash/examples/startup-files (in the package bash-doc)
# for examples

# If not running interactively, don't do anything
case $- in
    *i*) ;;
      *) return;;
esac

## youtube-playlist-reverse.py
import os

playlist 	= "https://www.youtube.com/user/..."
command 	= f"youtube-dl -j --flat-playlist --playlist-reverse {playlist} | jq -r '.id' | sed 's_^_https://youtu.be/_'"

output 		= os.popen(command).read()
print(output)

ytUrls 		= []

## .zshrc
# ~/.zshrc file for zsh non-login shells.
# see /usr/share/doc/zsh/examples/zshrc for examples

setopt autocd              # change directory just by typing its name
#setopt correct            # auto correct mistakes
setopt interactivecomments # allow comments in interactive mode
setopt ksharrays           # arrays start at 0
setopt magicequalsubst     # enable filename expansion for arguments of the form ‘anything=expression’
setopt nonomatch           # hide error message if there is no match for the pattern
setopt notify              # report the status of background jobs immediately

## commands.matlab
sudo apt-get -y update && \
	sudo apt-get -y upgrade && \
	sudo apt install software-properties-common && \
	sudo add-apt-repository multiverse && \
	sudo dpkg --add-architecture i386 && \
	sudo apt-get -y update && \
	sudo apt-get -y upgrade && \
	sudo systemctl reboot

sudo apt-get -y install steamcmd && \

## jwtBuster.py
from sys import argv

import json
import jwt


JWTSECRET 	= "jwtSecretKeyEncryption"
PRIVATEKEY 	= """-----BEGIN RSA PRIVATE KEY-----
MIIEogIBAAKCAQEAnzyis1ZjfNB0bBgKFMSvvkTtwlvBsaJq7S5wA+kzeVOVpVWw
kWdVha4s38XM/pa/yr47av7+z3VTmvDRyAHcaT92whREFpLv9cj5lTeJSibyr/Mr

## cronjob.sh
#!/bin/bash

archiveName=OSWE-`date +%d_%m_%Y`.tar.gz
cd /home/$USER/

# Cronjob:
# 00 15 * * * /path/cronjob.sh | tee /tmp/cronLogs.txt

tar -czvf $archiveName OSWE/
mv $archiveName /path/ -v

## firebase_apiKeys_testing.html
<!DOCTYPE html>
<html>
<head>
	<title></title>
</head>
<body>

    <script src="https://www.gstatic.com/firebasejs/7.6.1/firebase-app.js"></script>

    <!-- If you enabled Analytics in your project, add the Firebase SDK for Analytics -->
	#!/usr/bin/python3

	from codecs import encode

	import base64
	import argparse
	import re
	import pycipher

	# pycipher import Atbash
	# Get USD price of BTC (changing) per minute in your discord server!
	# Just replace the webhook_url variable and create a cron as you see fit.

	#!/usr/bin/python3

	import requests
	import json

	# BTCPRICE=`curl -s https://api.coindesk.com/v1/bpi/currentprice/USD.json \| jp bpi.USD.rate \| cut -d '"' -f2`
	# JSON="{\"content\": \"Current price of BTC is: $BTCPRICE USD\"}"
	gobuster dir -w /usr/share/wordlists/dirb/common.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
	gobuster dir -w /usr/share/wordlists/dirb/big.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
	gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
	gobuster dir -w /usr/share/wordlists/dirb/big.txt -u http://10.10.10.37/ -x php,jsp,rb,py,js,asp,aspx,zip,sql,tar,txt,key,doc,docx,html,jar,groovy,back,xml,ini,inc,config,json,yml,conf,cgi -k -l -e -b 404 -t 80
	gobuster dir -w /usr/share/wordlists/dirb/common.txt -u http://54.164.63.113/ -x php,jsp,rb,py,js,asp,aspx,zip,sql,tar,txt,key,doc,docx,html,jar,groovy,back,xml,ini,inc,config,json,yml,conf,cgi -k -l -e -b 404 -t 80
	# ~/.bashrc: executed by bash(1) for non-login shells.
	# see /usr/share/doc/bash/examples/startup-files (in the package bash-doc)
	# for examples

	# If not running interactively, don't do anything
	case $- in
	i) ;;
	*) return;;
	esac
	import os

	playlist = "https://www.youtube.com/user/..."
	command = f"youtube-dl -j --flat-playlist --playlist-reverse {playlist} \| jq -r '.id' \| sed 's_^_https://youtu.be/_'"

	output = os.popen(command).read()
	print(output)

	ytUrls = []
	# ~/.zshrc file for zsh non-login shells.
	# see /usr/share/doc/zsh/examples/zshrc for examples

	setopt autocd # change directory just by typing its name
	#setopt correct # auto correct mistakes
	setopt interactivecomments # allow comments in interactive mode
	setopt ksharrays # arrays start at 0
	setopt magicequalsubst # enable filename expansion for arguments of the form ‘anything=expression’
	setopt nonomatch # hide error message if there is no match for the pattern
	setopt notify # report the status of background jobs immediately
	sudo apt-get -y update && \
	sudo apt-get -y upgrade && \
	sudo apt install software-properties-common && \
	sudo add-apt-repository multiverse && \
	sudo dpkg --add-architecture i386 && \
	sudo apt-get -y update && \
	sudo apt-get -y upgrade && \
	sudo systemctl reboot

	sudo apt-get -y install steamcmd && \
	from sys import argv

	import json
	import jwt


	JWTSECRET = "jwtSecretKeyEncryption"
	PRIVATEKEY = """-----BEGIN RSA PRIVATE KEY-----
	MIIEogIBAAKCAQEAnzyis1ZjfNB0bBgKFMSvvkTtwlvBsaJq7S5wA+kzeVOVpVWw
	kWdVha4s38XM/pa/yr47av7+z3VTmvDRyAHcaT92whREFpLv9cj5lTeJSibyr/Mr
	#!/bin/bash

	archiveName=OSWE-`date +%d_%m_%Y`.tar.gz
	cd /home/$USER/

	# Cronjob:
	# 00 15 * * * /path/cronjob.sh \| tee /tmp/cronLogs.txt

	tar -czvf $archiveName OSWE/
	mv $archiveName /path/ -v
	<!DOCTYPE html>
	<html>
	<head>
	<title></title>
	</head>
	<body>

	<script src="https://www.gstatic.com/firebasejs/7.6.1/firebase-app.js"></script>

	<!-- If you enabled Analytics in your project, add the Firebase SDK for Analytics -->