| #!/bin/bash | |
| # Note: you might prefer latexmk -c since latexmk is great. It doesn't clean all of these, but see | |
| # https://tex.stackexchange.com/questions/83341/clean-bbl-files-with-latexmk-c/83386#83386 | |
| exts="-blx.aux -blx.bib -blx.bib .acn .acr .alg .algorithms .aux .bbl .bcf .blg .brf .dvi .fdb_latexmk .fls .glg"\ | |
| " .glo .gls .glsdefs .idx .ilg .ind .ist .keys .listing .loa .lof .log .lol .lot .maf .mtc .mtc0 .mw .nav .nlo"\ | |
| " .out .pdfsync .ptc .pyg .run.xml .snm .synctex.gz .syntex.gz(busy) .tdo .thm .toc .vrb .xdy" | |
| for x in "${@:-.}"; do |
This is a small tool using Tinyscript and PyBots for downloading a .git folder left on a Web server. Note that this tool does NOT rely on Directory Indexing.
$ pip install pybots tinyscript
$ wget https://gist.githubusercontent.com/dhondta/7511710facb5eecc575e133ec60ed87c/raw/git-web-recovery.py && chmod +x git-web-recovery.py && sudo mv git-web-recovery.py /usr/bin/git-web-recovery
This is a set of tools using Tinyscript in order to download resources from pentesteracademy.com and compress videos.
pta-downloader.py: allows to download resources given some course identifiers while compressing downloaded videos if needed.video-compressor.py: allows to compress videos a posteriori.This tool relies on wget and ffmpeg and takes a session cookie on pentesteracademy.com as a first positional argument and then multiple course identifiers as next positional arguments (for a sequential download of multiple tools). A compression ratio can be specified or compression (with default ratio 30) can be enabled for compressing videos. Check out the examples at the end of the help message to see the different usages.
This is a small tool using Tinyscript and pypdf or pikepdf to bruteforce the password of a PDF given an alphabet (defaults to printables) and a length (default is 8).
$ pip install pypdf tinyscript
$ wget https://gist.githubusercontent.com/dhondta/efe84a92e4dfae3b6c14932c73ab2577/raw/pdf-password-bruteforcer.py && chmod +x pdf-password-bruteforcer.py && sudo mv pdf-password-bruteforcer.py /usr/bin/pdf-password-bruteforcer
This is a Tinyscript wrapper for this Gist, working with Python 2 and 3.
$ pip install tinyscript
$ wget https://gist.githubusercontent.com/dhondta/0224d42a6f9dde00247ff8646f4e89aa/raw/evil-pickle-maker.py && chmod +x evil-pickle-maker.py && sudo mv evil-pickle-maker.py /usr/bin/evil-pickle-maker
This is an automation of this exploit using Tinyscript and Pybots for getting config settings or user properties.
This script is the modification of this excellent project, a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles, to make it support dictionary attack. This is published as a Gist as the related PR was refused (for a reason I completely understand) and with the consent of the author.
For the main options, please refer to the original project. You can provide a wordlist of master passwords for a dictionary attack as follows:
$ python firefox_decrypt_modified.py -w passwords.lst l1u1xh65.defaultThis is a variation of this exploit using Tinyscript and Pybots for uploading a shell.
Simple arguments lexer for parsing a line of arguments and keyword-arguments.
The ValueLexer evaluates strings (delimited by single or double quotes), booleans, floats, integers and also binary, octal or hexadecimal (to an integer).
The ArgumentsLexer ensures that the input line of arguments has the form:
arg1 arg2 ... argN kw1=val1 kw2=val2 ... kwM=valM
This Tinyscript-based tool implements the Solitaire Encryption Algorithm of Bruce Schneier.
$ pip install tinyscript
$ wget https://gist.githubusercontent.com/dhondta/1858f406fc55e5e5d440ff26432ad0a4/raw/solitaire-cipher.py && chmod +x solitaire-cipher.py && sudo mv solitaire-cipher.py /usr/bin/solitaire-cipher
