Alexandre Dulaunoy adulau

## log4j_rce_check.py
#! /usr/bin/env python3

'''
    Needs Requests (pip3 install requests)

    Author: Marcello Salvati, Twitter: @byt3bl33d3r
    License: DWTFUWANTWTL (Do What Ever the Fuck You Want With This License)


    This should allow you to detect if something is potentially exploitable to the log4j 0day dropped on December 9th 2021.

## TAK_Resources.md

      
              1 file
            
          
              1 fork
            
          
              0 comments
            
          
              7 stars
            
          
                fieldmapper
                / TAK_Resources.md
            
            
              Last active
              April 7, 2024 12:10
            
              
                Team Awareness Kit (TAK) - related resources and links.
              
          
    NOTE: Merged with openTAKpickList.

'openTAKpickList' - Team Awareness Kit (TAK) - related resources and links.

This is a list of web resources, hardware and software that can be used in conjunction with the Team Awareness Kit (TAK) platform.
Official TAK Resources


TAK Product Center - New


## compression-algorithms.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                adulau
                / compression-algorithms.md
            
            
              Last active
              August 30, 2021 14:50
            
              
                List of compression algorithms
              
          
    Compression algorithms


https://bellard.org/nncp/ - NNCP: Lossless Data Compression with Neural Networks
https://www.byronknoll.com/cmix.html / https://github.com/byronknoll/cmix - CMIX cmix is a lossless data compression program aimed at optimizing compression ratio at the cost of high CPU/memory usage.
https://tukaani.org/xz/ - XZ (LZMA)
https://github.com/facebook/zstd - ZSTD

References


http://www.mattmahoney.net/dc/text.html


## collisionLSH.py
import tensorflow as tf #We need tensorflow 2.x
import numpy as np

#The hashlength in bits
hashLength = 256

def buildModel():
    #we can set the seed to simulate the fact that this network is known and doesn't change between runs
    #tf.random.set_seed(42)
    model = tf.keras.Sequential()

## hashlookup-circl-lu.md

      
              1 file
            
          
              1 fork
            
          
              0 comments
            
          
              21 stars
            
          
                adulau
                / hashlookup-circl-lu.md
            
            
              Last active
              December 16, 2023 17:13
            
              
                hashlookup.circl.lu - examples
              
          
    hashlookup.circl.lu

CIRCL hash lookup is a public API to lookup hash values against known database of files. NSRL RDS database is included. More database will be included in the future. The API is accessible via HTTP ReST API and the API is also described as an OpenAPI.
Get information about the hash lookup database (via ReST)

curl -X 'GET' \
  'https://hashlookup.circl.lu/info' \
 -H 'accept: application/json'


## SOLORIGATE_SUNBURST_TEARDROP.md

      
              1 file
            
          
              1 fork
            
          
              0 comments
            
          
              1 star
            
          
                jipegit
                / SOLORIGATE_SUNBURST_TEARDROP.md
            
            
              Last active
              December 22, 2020 16:30
            
              
                SOLORIGATE SUNBURST TEARDROP
              
          
    SOLORIGATE

This gist is not updated anymore.
Updated data: https://github.com/jipegit/IncidentsMindMaps/tree/main/SOLORIGATE_SUNBURST

  
## fetch_ghstars.md

      
              4 files
            
          
              0 forks
            
          
              0 comments
            
          
              12 stars
            
          
                dannguyen
                / fetch_ghstars.md
            
            
              Last active
              April 10, 2024 19:25
            
              
                fetch_ghstars.py: quick CLI script to fetch from Github API all of a user's starred repos and save it as raw JSON and wrangled CSV
              
          
    fetch_ghstars.py: quick CLI script to fetch and collate  from Github API all of a user's starred repos


Requires Python 3.6+
Creates a subdir 'ghstars-USERNAME' at the current working directory
the raw JSON of each page request is saved as: 01.json, 02.json 0n.json
A flattened, filtered CSV is also created: wrangled.csv

Example usage:

  
## unc1878_indicators.txt
# C2 FQDNs
first seen fqdn
2019-12-11 23:37:10	updatemanagir.us
2019-12-20 17:51:05	cmdupdatewin.com
2019-12-26 18:03:27	scrservallinst.info
2020-01-10 00:33:57	winsystemupdate.com
2020-01-11 23:16:41	jomamba.best
2020-01-13 05:13:43	updatewinlsass.com
2020-01-16 11:38:53	winsysteminfo.com
2020-01-20 05:58:17	livecheckpointsrs.com

## fastapi_websocket_redis_pubsub.py
"""
Usage:

Make sure that redis is running on localhost (or adjust the url)
Install uvicorn or some other asgi server https://asgi.readthedocs.io/en/latest/implementations.html

    pip install -u uvicorn

Install dependencies

## Base64_CheatSheet.md

      
              1 file
            
          
              43 forks
            
          
              6 comments
            
          
              263 stars
            
          
                Neo23x0
                / Base64_CheatSheet.md
            
            
              Last active
              March 10, 2024 09:15
            
              
                Learning Aid - Top Base64 Encodings Table
              
          
    Base64 Patterns - Learning Aid


Base64 Code
Mnemonic Aid
Decoded*
Description


JAB
🗣 Jabber
$.
Variable declaration (UTF-16), e.g. JABlAG4AdgA for $env:


TVq
📺 Television
MZ
MZ header


SUVY
🚙 SUV
IEX
PowerShell Invoke Expression


SQBFAF
🐣 Squab favorite
I.E.
PowerShell Invoke Expression (UTF-16)


SQBuAH
🐣 Squab uahhh
I.n.
PowerShell Invoke string (UTF-16) e.g. Invoke-Mimikatz


PAA
💪 "Pah!"
&lt;.
Often used by Emotet (UTF-16)
	#! /usr/bin/env python3

	'''
	Needs Requests (pip3 install requests)

	Author: Marcello Salvati, Twitter: @byt3bl33d3r
	License: DWTFUWANTWTL (Do What Ever the Fuck You Want With This License)


	This should allow you to detect if something is potentially exploitable to the log4j 0day dropped on December 9th 2021.
	import tensorflow as tf #We need tensorflow 2.x
	import numpy as np

	#The hashlength in bits
	hashLength = 256

	def buildModel():
	#we can set the seed to simulate the fact that this network is known and doesn't change between runs
	#tf.random.set_seed(42)
	model = tf.keras.Sequential()
	# C2 FQDNs
	first seen fqdn
	2019-12-11 23:37:10 updatemanagir.us
	2019-12-20 17:51:05 cmdupdatewin.com
	2019-12-26 18:03:27 scrservallinst.info
	2020-01-10 00:33:57 winsystemupdate.com
	2020-01-11 23:16:41 jomamba.best
	2020-01-13 05:13:43 updatewinlsass.com
	2020-01-16 11:38:53 winsysteminfo.com
	2020-01-20 05:58:17 livecheckpointsrs.com
	"""
	Usage:

	Make sure that redis is running on localhost (or adjust the url)
	Install uvicorn or some other asgi server https://asgi.readthedocs.io/en/latest/implementations.html

	pip install -u uvicorn

	Install dependencies
Base64 Code	Mnemonic Aid	Decoded*	Description
`JAB`	🗣 Jabber	`$.`	Variable declaration (UTF-16), e.g. `JABlAG4AdgA` for `$env:`
`TVq`	📺 Television	`MZ`	MZ header
`SUVY`	🚙 SUV	`IEX`	PowerShell Invoke Expression
`SQBFAF`	🐣 Squab favorite	`I.E.`	PowerShell Invoke Expression (UTF-16)
`SQBuAH`	🐣 Squab uahhh	`I.n.`	PowerShell Invoke string (UTF-16) e.g. `Invoke-Mimikatz`
`PAA`	💪 "Pah!"	`<.`	Often used by Emotet (UTF-16)