Daniel Miller bonsaiviking

## newnym.pl
#!/usr/bin/perl

use strict;
use warnings;
use HTTP::Daemon;
use IO::Socket;

my $torport=9051;
my $password="footor";
my $good = HTTP::Response->new(

## mcafee-epo-agent.nse
-- mcafee-epo-agent.nse V0.0.2, checks if ePO agent is running
-- Developed by Didier Stevens and Daniel Miller
-- https://DidierStevens.com
-- Use at your own risk
--
-- History:
--   2012/05/31: Start
--   2012/06/01: extracting data from XML; tested with ePO 4.5 and 4.6
--   2012/06/05: V0.0.2 convertion to version script by Daniel Miller
--   2012/06/20: new portrule by Daniel Miller

## gist:3077294
$ nmap --script dns-zone-transfer --script-args dns-zone-transfer.domain=zonetransfer.me -p 53 -Pn $(dig +short zonetransfer.me NS | head -1)

Starting Nmap 6.02 ( http://nmap.org ) at 2012-07-09 10:50 CDT
Nmap scan report for ns12.zoneedit.com. (209.62.64.46)
Host is up (0.033s latency).
rDNS record for 209.62.64.46: ns12.zoneedit.com
PORT   STATE SERVICE
53/tcp open  domain
| dns-zone-transfer:
| zonetransfer.me.                                SOA    ns16.zoneedit.com. soacontact.zoneedit.com.

## slammer.nse
local nmap = require "nmap"
local shortport = require "shortport"
local bin = require "bin"

description = [[Sends the SQL Slammer worm to a host.
If vulnerable, it will attempt to propagate to other IP addresses.
DO NOT RUN THIS SCRIPT ON THE INTERNET. For use in closed environments
for educational purpose only.]]

license = "Same as Nmap--See http://nmap.org/book/man-legal.html"

## cipherstrength.pl
#!/usr/bin/perl

use strict;
use warnings;
use 5.012;

my %kex_scores = (
    NULL => 0,
    anon => 0,
    EXPORT => 40,

## printbomb.nse
description = [[
Print a bunch of pages.
]]

author = "Daniel Miller"

license = "Same as Nmap--See http://nmap.org/book/man-legal.html"

categories = {"intrusive", "dos"}

## headless.pl
#!/usr/bin/perl -an

# One-liner version:
# lsof -d txt,0,1,2 | perl -anE'push@g,$F[1]if$F[4]eq"CHR"and$F[8]=~/^.dev.[pt]t[sy]/;$t{$F[1]}=$_ if$F[3]eq"txt"and$F[8]=~/^.(usr.)?bin.((b|d)?a|z|k|c|tc)*sh/;END{delete$t{$_}for@g;say values%t}'

# store the PID of processes that use a PTY/TTY for STDIN, STDOUT, or STDERR
push @g, $F[1] if $F[4] eq "CHR" and $F[8]=~/^.dev.[pt]t[sy]/;

# Store the whole line if the txt file descriptor is a shell
$t{$F[1]}=$_ if $F[3] eq "txt" and $F[8]=~/^.(usr.)?bin.((b|d)?a|z|k|c|tc)*sh/;

## test.nse
description = [[Minimal framework for testing NSE scripts. Modify as needed.]]

author = "Daniel Miller"

license = "Same as Nmap--See http://nmap.org/book/man-legal.html"

categories = {"testing"}

prerule = function() return true end

## aes.py
#My AES implementation
# By Daniel Miller

def xor(s1, s2):
    return tuple(a^b for a,b in zip(s1, s2))

class AES(object):
    class __metaclass__(type):
        def __init__(cls, name, bases, classdict):
            cls.Gmul = {}

## sha1.py
#!/usr/bin/env python

import struct

def leftrotate(i, n):
    return ((i << n) & 0xffffffff) | (i >> (32 - n))

class SHA1(object):
    def __init__(self, data=""):
        self.h = [
	#!/usr/bin/perl

	use strict;
	use warnings;
	use HTTP::Daemon;
	use IO::Socket;

	my $torport=9051;
	my $password="footor";
	my $good = HTTP::Response->new(
	-- mcafee-epo-agent.nse V0.0.2, checks if ePO agent is running
	-- Developed by Didier Stevens and Daniel Miller
	-- https://DidierStevens.com
	-- Use at your own risk
	--
	-- History:
	-- 2012/05/31: Start
	-- 2012/06/01: extracting data from XML; tested with ePO 4.5 and 4.6
	-- 2012/06/05: V0.0.2 convertion to version script by Daniel Miller
	-- 2012/06/20: new portrule by Daniel Miller
	$ nmap --script dns-zone-transfer --script-args dns-zone-transfer.domain=zonetransfer.me -p 53 -Pn $(dig +short zonetransfer.me NS \| head -1)

	Starting Nmap 6.02 ( http://nmap.org ) at 2012-07-09 10:50 CDT
	Nmap scan report for ns12.zoneedit.com. (209.62.64.46)
	Host is up (0.033s latency).
	rDNS record for 209.62.64.46: ns12.zoneedit.com
	PORT STATE SERVICE
	53/tcp open domain
	\| dns-zone-transfer:
	\| zonetransfer.me. SOA ns16.zoneedit.com. soacontact.zoneedit.com.
	local nmap = require "nmap"
	local shortport = require "shortport"
	local bin = require "bin"

	description = [[Sends the SQL Slammer worm to a host.
	If vulnerable, it will attempt to propagate to other IP addresses.
	DO NOT RUN THIS SCRIPT ON THE INTERNET. For use in closed environments
	for educational purpose only.]]

	license = "Same as Nmap--See http://nmap.org/book/man-legal.html"
	description = [[
	Print a bunch of pages.
	]]

	author = "Daniel Miller"

	license = "Same as Nmap--See http://nmap.org/book/man-legal.html"

	categories = {"intrusive", "dos"}
	#!/usr/bin/perl -an

	# One-liner version:
	# lsof -d txt,0,1,2 \| perl -anE'push@g,$F[1]if$F[4]eq"CHR"and$F[8]=~/^.dev.[pt]t[sy]/;$t{$F[1]}=$_ if$F[3]eq"txt"and$F[8]=~/^.(usr.)?bin.((b\|d)?a\|z\|k\|c\|tc)*sh/;END{delete$t{$_}for@g;say values%t}'

	# store the PID of processes that use a PTY/TTY for STDIN, STDOUT, or STDERR
	push @g, $F[1] if $F[4] eq "CHR" and $F[8]=~/^.dev.[pt]t[sy]/;

	# Store the whole line if the txt file descriptor is a shell
	$t{$F[1]}=$_ if $F[3] eq "txt" and $F[8]=~/^.(usr.)?bin.((b\|d)?a\|z\|k\|c\|tc)*sh/;
	description = [[Minimal framework for testing NSE scripts. Modify as needed.]]

	author = "Daniel Miller"

	license = "Same as Nmap--See http://nmap.org/book/man-legal.html"

	categories = {"testing"}

	prerule = function() return true end
	#My AES implementation
	# By Daniel Miller

	def xor(s1, s2):
	return tuple(a^b for a,b in zip(s1, s2))

	class AES(object):
	class __metaclass__(type):
	def __init__(cls, name, bases, classdict):
	cls.Gmul = {}
	#!/usr/bin/env python

	import struct

	def leftrotate(i, n):
	return ((i << n) & 0xffffffff) \| (i >> (32 - n))

	class SHA1(object):
	def __init__(self, data=""):
	self.h = [