Skip to content

Instantly share code, notes, and snippets.

View FrankSpierings's full-sized avatar

Frank Spierings FrankSpierings

47 followers · 1 following
View GitHub Profile
@FrankSpierings
FrankSpierings / _etc_filebeat_filebeat.yml
Created September 16, 2017 16:05
ELK indexing iptables messages (UFW)
### Add this specific input
- input_type: log
paths:
- /var/log/ufw.log
tags: ["iptables"]
@FrankSpierings
FrankSpierings / showObject.js
Created October 14, 2017 14:02
Javascript display an object
//Use this function to show an object's contents.
function showObject(obj) {
var result = null
if (obj && obj.constructor === Array) {
result = []
}
else if (obj === null) {
return null
}
else {
@FrankSpierings
FrankSpierings / Dockerfile
Last active January 11, 2018 08:33
Dockerfile - pwntools
FROM ubuntu:latest
MAINTAINER Frank Spierings
# Base setup
RUN dpkg --add-architecture i386 && \
apt-get update && apt-get upgrade -y && \
apt-get install libstdc++6:i386 -y
# Locales setup
RUN apt-get install locales -y && locale-gen en_US.UTF-8
@FrankSpierings
FrankSpierings / Default (Linux).sublime-keymap
Created April 27, 2018 13:41
Sublime Markdown - Macro - Request/Response
[
{ "keys": ["ctrl+alt+r"], "command": "run_macro_file", "args": {"file": "Packages/User/http_request_response.sublime-macro"} },
]
@FrankSpierings
FrankSpierings / README.md
Last active April 29, 2018 10:05
Wireshark over ssh

Wireshark over SSH

X11Forwarding (slow)

ssh username@servername -Y wireshark

Remote capture - packet forwarding (fast)

@FrankSpierings
FrankSpierings / install.sh
Created April 29, 2018 10:36
Install Docker in Kali (rolling)
curl -fsSL https://download.docker.com/linux/debian/gpg | sudo apt-key add -
sudo apt-key fingerprint 0EBFCD88
echo "Check the key: 9DC8 5822 9FC7 DD38 854A E2D8 8D81 803C 0EBF CD88"
sleep 10
echo "deb [arch=amd64] https://download.docker.com/linux/debian stretch stable" > /etc/apt/sources.list.d/docker.list
sudo apt-get update
sudo apt-get install docker-ce -y
@FrankSpierings
FrankSpierings / windapsearch-commands.sh
Last active July 6, 2018 09:50
windapsearch - notes
# cd /tmp/; git clone https://github.com/ropnop/windapsearch.git
# apt install python-ldap
# Find (nested) Domain Admins
windapsearch.py --dc-ip 10.0.0.1 -u 'user01@lab.test' -p "Password123!" --da
# Find computers and resolve
./windapsearch.py --dc-ip 10.0.0.1 -u 'user01@lab.test' -p "Password123!" -C -r
# Export all data and show in columns on the commandline
@FrankSpierings
FrankSpierings / frida-script-rr3.js
Last active August 15, 2018 14:43
Learning how to use Frida - Trying to modify Real Racing 3
function ProgressHack() {
progressObject = null
intProgress = Interceptor.attach(Module.findExportByName("libRealRacing3.so", "_ZNK10Characters14CareerProgress16IsStreamUnlockedEi"), {
onEnter: function(args) {
progressObject = args[0]
},
onLeave: function(result) {
}
});
@FrankSpierings
FrankSpierings / Out-EncryptedScript.py
Last active September 22, 2018 09:47
Out-EncryptedScript Python Edition. Encrypts content (like a script) and wraps a Powershell decryption routine around it.
#!/usr/bin/env python2
from Crypto.Cipher import AES
from base64 import b64encode
from Crypto.Protocol import KDF
from Crypto.Random import get_random_bytes
import sys
import argparse
import string
import random
@FrankSpierings
FrankSpierings / Hookers_and_blow.js
Created October 16, 2018 18:45
Javascript hooking a function
Function.prototype.clone = function() {
var that = this;
var name = this.name;
var hooked = function() {
console.trace('[' + name + '] Pre hook log: ' + JSON.stringify(arguments));
result = that.apply(this, arguments);
console.trace('[' + name + '] Post hook log: ' + JSON.stringify(result));
return result;
};
for(var key in this) {