Alex Chapman ajxchapman

## README.md

      
              1 file
            
          
              9 forks
            
          
              9 comments
            
          
              33 stars
            
          
                ajxchapman
                / README.md
            
            
              Last active
              May 1, 2024 06:32
            
              
                Install Windows on Digital Ocean droplet
              
          
    TL;DR


Guide from https://glitchwitch.io/blog/2018-09/windows-10-on-digitalocean/
Download Windows ISO from https://www.microsoft.com/en-us/software-download/windows10ISO

Steps


Create a build droplet with 4GB RAM
Install QEMU and run the Windows 10 installation ISO

$ apt-get update && apt-get install qemu -y
$ qemu-img create -f raw windows10.img 16G

  
## burp_scopes.py
import json
import re
import sys

scopes = []
f = sys.stdin
if len(sys.argv) == 2:
    f = open(sys.argv[1])
scopes_defs = [x.strip().lower() for x in f.readlines() if len(x.strip())]

## README.md

      
              6 files
            
          
              4 forks
            
          
              0 comments
            
          
              10 stars
            
          
                ajxchapman
                / README.md
            
            
              Last active
              October 22, 2023 16:05
            
              
                Scripts developed for solving HackerOne H1-702 2019 CTF
              
          
    Scripts developed for solving HackerOne H1-702 2019 CTF


image_extract.py performs character extraction on targetted against the HackerOne H1-702 CTF announcement image
decrypt_sqli.py performs blind sqli data extraction with encrypted payloads targetting against the FliteThermostat API
timing_attack.py performs an HTTP piplining based timing against the FliteThermostat Backend
wordlist_generator.py generates wordlists from a give corpus or set of corpuses
httplib.py performs efficient asynchronous HTTP requests against the FliteThermostat Backend


## README.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                ajxchapman
                / README.md
            
            
              Created
              January 15, 2019 22:41
            
              
                Linux Gateway with WPAD and PAC
              
          
    Linux Gateway with WPAD and PAC

Simple setup to create a Linux gateway on Ubuntu 18.04 that provides WPAD settings via DHCP option 252.
systemctl disable systemd-resolved.service
systemctl stop systemd-resolved
apt update
apt install dnsmasq
unlink /etc/resolv.conf
echo "nameserver 8.8.8.8" > /etc/resolv.conf

  
## burp_extract.py
import base64
import os
import sys

search = " ".join(sys.argv[2:]) or None

path = None
with open(sys.argv[1]) as f:
    for line in f:
        if '<path>' in line:

## hexdump.c
// https://gist.github.com/richinseattle/c527a3acb6f152796a580401057c78b4
#include <stdio.h>
#include <ctype.h>

#ifndef HEXDUMP_COLS
#define HEXDUMP_COLS 16
#endif

void hexdump(void *mem, unsigned int len)
{

## h1_stats.py
import re
import requests
import sys

TOKEN="*x-csrf-token Header*"
COOKIE="*__Host-session Cookie*"
USERNAME="*HackerOne Username*"

bugs = []
pages = 1

## client.go
package main

import (
	"fmt"
	"net"
	"os"
)

func connect() {
	c, err := net.Dial("tcp4", fmt.Sprintf("%s:4444", os.Args[1]))

## wireshark_install.ahk
#NoEnv  ; Recommended for performance and compatibility with future AutoHotkey releases.
; #Warn  ; Enable warnings to assist with detecting common errors.
SendMode Input  ; Recommended for new scripts due to its superior speed and reliability.
SetWorkingDir %A_ScriptDir%  ; Ensures a consistent starting directory.
SetTitleMatchMode, RegEx

Run, "Wireshark-win64-3.2.6.exe"

WinWait, Wireshark [\d\.]+ 64-bit Setup,, 30
Loop, 7

## README.md

      
              1 file
            
          
              1 fork
            
          
              1 comment
            
          
              1 star
            
          
                ajxchapman
                / README.md
            
            
              Last active
              April 17, 2020 00:09
            
              
                CVE-2019-5418 Demo
              
          
    CVE-2019-5418 Demo

Build Docker container:
Dockerfile
FROM ruby:2.5
RUN apt-get update -qq && apt-get install -y nodejs postgresql-client
RUN mkdir /myapp
WORKDIR /myapp
COPY Gemfile /myapp/Gemfile
	import json
	import re
	import sys

	scopes = []
	f = sys.stdin
	if len(sys.argv) == 2:
	f = open(sys.argv[1])
	scopes_defs = [x.strip().lower() for x in f.readlines() if len(x.strip())]
	import base64
	import os
	import sys

	search = " ".join(sys.argv[2:]) or None

	path = None
	with open(sys.argv[1]) as f:
	for line in f:
	if '<path>' in line:
	// https://gist.github.com/richinseattle/c527a3acb6f152796a580401057c78b4
	#include <stdio.h>
	#include <ctype.h>

	#ifndef HEXDUMP_COLS
	#define HEXDUMP_COLS 16
	#endif

	void hexdump(void *mem, unsigned int len)
	{
	import re
	import requests
	import sys

	TOKEN="x-csrf-token Header"
	COOKIE="__Host-session Cookie"
	USERNAME="HackerOne Username"

	bugs = []
	pages = 1
	package main

	import (
	"fmt"
	"net"
	"os"
	)

	func connect() {
	c, err := net.Dial("tcp4", fmt.Sprintf("%s:4444", os.Args[1]))
	#NoEnv ; Recommended for performance and compatibility with future AutoHotkey releases.
	; #Warn ; Enable warnings to assist with detecting common errors.
	SendMode Input ; Recommended for new scripts due to its superior speed and reliability.
	SetWorkingDir %A_ScriptDir% ; Ensures a consistent starting directory.
	SetTitleMatchMode, RegEx

	Run, "Wireshark-win64-3.2.6.exe"

	WinWait, Wireshark [\d\.]+ 64-bit Setup,, 30
	Loop, 7