r00t-3xp10it
/ b64torot13.ps1
Last active
October 13, 2022 01:22
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| .SYNOPSIS | |
| Author: r00t-3xp10it | |
| Adapted from: @Markus Fleschut | |
| Helper - execute rot13 cipher! | |
| .DESCRIPTION | |
| Decrypting '$Base64_Key' context ::FromBase64String API have trigger AMS1 string detection | |
| while i was trying to run meterpeter.ps1 C2 to create the Payload.ps1 (client), This demo | |
| script demonstrates how detection can be bypassed, simple by decrypting at runtime the ROT13 |
r00t-3xp10it
/ SelfElevatingScript.ps1
Last active
July 21, 2023 23:41
Relaunch PS1 as an elevated process
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| If(-not([Security.Principal.WindowsPrincipal][Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator)) | |
| { | |
| <# | |
| .SYNOPSIS | |
| Helper - Relaunch PS1 as an elevated process | |
| .DESCRIPTION | |
| If a script needs to be run elevated, then you can ensure it will | |
| only ever be run elevated by including this function within the script. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* Prints env vars from Netlify deploy settings UI to | |
| * the JavaScript console. | |
| * | |
| * Usage: go to the build & deploy settings section of | |
| * a Netlify site, then run this script. | |
| */ | |
| const envVars = $("#section-environment").querySelectorAll("dl"); | |
| const output = [].reduce.call(envVars, (str, dl) => { | |
| const name = dl.querySelector("dt").innerText; |
doanhtu-bmt
/ ProcessManager.html
Last active
August 3, 2022 15:29
Example for HTML Application - Process Manager
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <html> | |
| <head> | |
| <HTA:APPLICATION ID="Process Manager" ICON="Yahoo.ico" MAXIMIZEBUTTON="yes" border="yes" BORDERSTYLE="normal" CAPTION="yes" showInTaskbar="yes" innerBorder="yes" scroll="no" singleInstance="yes" selection="no" version="1.0" /> | |
| <title>Process Manager</title> | |
| <style> | |
| #processTable { | |
| font-family: arial, sans-serif; | |
| font-size: 10pt; | |
| border-collapse: collapse; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #c { | |
| position: absolute; | |
| left: 0; | |
| top: 0; | |
| width: 100%; | |
| height: 100%; | |
| display: block; | |
| z-index: -1; | |
| } | |
| *[data-diagram] { |
RickStrahl
/ MinimalApiAspNetStartup.cs
Last active
October 11, 2021 02:21
Minimal API Startup in 6.0 for ASP.NET Core application - Auto-Refresh not working for Razor
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using LicensingService.Configuration; | |
| using Microsoft.AspNetCore.Authentication.Cookies; | |
| using Newtonsoft.Json.Serialization; | |
| using Westwind.Licensing; | |
| using Westwind.Utilities.Data; | |
| var builder = WebApplication.CreateBuilder(args); | |
| var services = builder.Services; | |
| var configuration = builder.Configuration; | |
| var host = builder.Host; |
u1f992
/ full-auto-cookie-clicker.js
Last active
April 22, 2023 05:33
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $Results = ([adsisearcher]"(&(objectCategory=computer)(userAccountControl:1.2.840.113556.1.4.803:=8192))").FindAll() | % { | |
| $Entry = $_.GetDirectoryEntry() | |
| $SAM = $Entry.samAccountName[0] | |
| $DN = $Entry.distinguishedName[0] | |
| try { | |
| $Cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2 @($Entry.userCertificate) | |
| $Exp = $Cert.GetExpirationDateString() |
r00t-3xp10it
/ enc-rot13.ps1
Last active
October 13, 2022 02:56
Encrypt or decrypt strings using ROT13 cipher.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| .SYNOPSIS | |
| Encrypt or decrypt strings using ROT13 cipher. | |
| Author: r00t-3xp10it | |
| Adapted from: @Markus Fleschut (github) | |
| Tested Under: Windows 10 (19042) x64 bits | |
| Required Dependencies: none | |
| Optional Dependencies: none | |
| PS cmdlet Dev version: v1.4.9 |