cmbaughman

#!/bin/bash

while true;
do 
  printf "$(awk -v c="$(tput cols)" -v s="$RANDOM" 'BEGIN{srand(s);while(--c>=0){printf("\xe2\x96\\%s",sprintf("%o",150+int(10*rand())));}}')";
done

cmbaughman

Simple Ubuntu Server Setup

---

Create a user

NOTE: You must use public key based authentication.

1. Create user adduser testuser
2. Grant sudo usermod -aG sudo testuser
3. ufw enable/disable

cmbaughman

Installing Java on Debian flavors (including Ubuntu) of Linux

1. Go here: Oracle Java JDK Downloads and download the file called: jdk-11.0.6_linux-x64_bin.deb preferably into a directory called Downloads in your home directory.
2. Open a terminal
3. Type: cd ~/Downloads to change into your downloads directory
4. Run the command: sudo apt install jdk-11.0.6_linux-x64_bin.deb
5. After the install is finished, run the command: update-alternatives --config java
6. Select the version of java by typing the number beside the one that looks like /usr/lib/jvm/java-11-oracle/bin/java.
7. Restart

cmbaughman

How to set up passwordless ssh,scp, and rsync

Setup

1. Install the application sshpass:

sudo apt install sshpass

2. Make sure to set in your ~/.ssh/config file the following options to prevent ssh from using your pubkey:

cmbaughman

sudo apt autoremove
sudo apt clean
sudo apt-get autoclean
sudo journalctl --vacuum-time=3d
rm -rf ~/.cache/thumbnails/*

set -eu
snap list --all | awk '/disabled/{print $1, $3}' |
    while read snapname revision; do
        snap remove "$snapname" --revision="$revision"

cmbaughman

#/usr/bin/bash
# strings to look for in our file
# Note: you could just parse the whole file. But if you put in a bad password your IP 
# could end up on the bad guy list
declare -a badstrings=("Failed password for invalid user"
                "input_userauth_request: invalid user"
                "pam_unix(sshd:auth): check pass; user unknown"
                "input_userauth_request: invalid user"
                "does not map back to the address"
                "pam_unix(sshd:auth): authentication failure"

cmbaughman

$Hso = New-Object Net.HttpListener
$Hso.Prefixes.Add("http://+:8000/")
$Hso.Start()
While ($Hso.IsListening) {
    $HC = $Hso.GetContext()
    $HRes = $HC.Response
    $HRes.Headers.Add("Content-Type","text/plain")
    $Buf = [Text.Encoding]::UTF8.GetBytes((GC (Join-Path $Pwd ($HC.Request).RawUrl)))
    $HRes.ContentLength64 = $Buf.Length
    $HRes.OutputStream.Write($Buf,0,$Buf.Length)

cmbaughman

<HTML>

<HEAD>

<script>

try {

a=new ActiveXObject('Wscript.Shell');

cmbaughman

#!/usr/bin/env python2
#============================================================================================================#
#======= Simply injects a JavaScript Payload into a GIF. ====================================================#
#======= or it creates a JavaScript Payload as a GIF.    ====================================================#
#======= The resulting GIF must be a valid (not corrupted) GIF. =============================================#
#======= Author: marcoramilli.blogspot.com ==================================================================#
#======= Version: PoC (don't even think to use it in development env.) ======================================#
#======= Disclaimer: ========================================================================================#
#THIS IS NOT PEP3 FORMATTED
#THIS SOFTWARE IS PROVIDED BY THE AUTHOR "AS IS" AND ANY EXPRESS OR

cmbaughman

$ curl -s https://ipvigilante.com/$(curl -s https://ipinfo.io/ip) | jq '.data.latitude, .data.longitude, .data.city_name, .data.country_name'