I hereby claim:
- I am christophetd on github.
- I am christophetd (https://keybase.io/christophetd) on keybase.
- I have a public key ASDIKL2YxFhmFcG1s-aRvZ98jGemCEGwISz49sqQZYZA6go
To claim this, I am signing this object:
Christophe Tafani-Dereeper christophetd
christophetd
/ Dockerfile
Created
October 8, 2021 08:23
Reproducing CVE-2021-41773 (Apache 2.4.49 and 2.4.50) with Docker
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| FROM httpd:2.4.49-alpine | |
| COPY ./vulnerable-httpd.conf /usr/local/apache2/conf/httpd.conf |
christophetd
/ ai-optout-aws-organization.tf
Created
September 8, 2021 12:54
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Ensure the AI services opt-out policy type is enabled on the Organization | |
| resource "aws_organizations_organization" "organization" { | |
| enabled_policy_types = [ | |
| # ... | |
| "AISERVICES_OPT_OUT_POLICY" | |
| ] | |
| } | |
| # Create the AI opt-out policy | |
| resource "aws_organizations_policy" "ai-optout" { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <opml version="1.0"> | |
| <head> | |
| <title>Christophe subscriptions in feedly Cloud</title> | |
| </head> | |
| <body> | |
| <outline text="Security" title="Security"> | |
| <outline type="rss" text="Schneier on Security" title="Schneier on Security" xmlUrl="http://www.schneier.com/blog/index.rdf" htmlUrl="https://www.schneier.com/blog/"/> | |
| <outline type="rss" text="Rhino Security Labs" title="Rhino Security Labs" xmlUrl="http://www.rhinosecuritylabs.com/blog/feed/" htmlUrl="https://rhinosecuritylabs.com"/> |
christophetd
/ xor-ddos-decryption.py
Last active
January 5, 2024 17:13
Tool to decrypt configuration values and network communications of malwares of the Xor Ddos family
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import binascii | |
| import itertools | |
| # XORs two byte strings together | |
| def xor_bytes(bytes1, bytes2): | |
| return [ chr(ord(a) ^ b) for (a, b) in zip(bytes1, bytes2) ] | |
| # XORs a ciphertext with the malware's hardcoded key, and repeats it until it's long enough to match the ciphertext length. | |
| def decrypt(cipher, key_hex = 'BB2FA36AAA9541F0'): | |
| key_bytes = [ ord(a) for a in key_hex ] |
christophetd
/ namemash.py
Created
April 1, 2017 09:20
— forked from superkojiman/namemash.py
Creating a user name list for brute force attacks.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import sys | |
| if __name__ == "__main__": | |
| if len(sys.argv) != 2: | |
| print "usage: %s names.txt" % (sys.argv[0]) | |
| sys.exit(0) | |
| for line in open(sys.argv[1]): | |
| name = ''.join([c for c in line if c == " " or c.isalpha()]) |
christophetd
/ cfg
Created
September 29, 2015 07:17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| CFG_DIR="/cfg" | |
| if [ -z $EDITOR ]; then | |
| EDITOR=`which vim` | |
| fi | |
| sudo $EDITOR $CFG_DIR/$1 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo add-apt-repository ppa:webupd8team/java | |
| sudo apt-get update | |
| sudo apt-get install oracle-java8-installer | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo add-apt-repository ppa:webupd8team/java | |
| sudo apt-get update | |
| sudo apt-get install oracle-java8-installer |
christophetd
/ gist:430775c9d53cda61eb84
Created
August 28, 2015 09:41
JDK8 installation commands under Ubuntu
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo add-apt-repository ppa:webupd8team/java | |
| sudo apt-get update | |
| sudo apt-get install oracle-java8-installer |
NewerOlder