I hereby claim:
- I am dustyfresh on github.
- I am derp (https://keybase.io/derp) on keybase.
- I have a public key whose fingerprint is 69C5 ABC4 2885 6A65 DC2B ADD8 C815 5E72 9837 5525
To claim this, I am signing this object:
dustyfresh
/ keybase.md
Last active
September 29, 2015 02:42
dustyfresh
/ spiderfoot-Dockerfile
Created
October 8, 2015 11:17
Modified SpiderFoot Dockerfile for pulling latest spiderfoot version
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # Spiderfoot Dockerfile | |
| # | |
| # http://www.spiderfoot.net | |
| # | |
| # Originally written by: Michael Pellon <m@pellon.io> | |
| # | |
| # https://github.com/smicallef/spiderfoot/blob/master/Dockerfile | |
| # | |
| # This Dockerfile has been updated to download the latest version |
dustyfresh
/ nogoldenkeys.md
Last active
October 21, 2015 01:12
just say no to weakened + backdoored crypto
___________
|
| just say no
| to weakened
|+ backdoored
| crypto 🔑
|___________
(\__/) ||
(•ㅅ•) ||
I was in need of some web shells for some security research I was conducting. I found w0rms.com which has a nice selection of shells that can be downloaded to accomodate my need to test some malicious PHP code in my application.
As expected every shell on w0rms.com is backdoored (backdoor the backdoors eh?).
$ curl -s http://w0rms.com/indir/AnonGhost2015.txt | grep -i w0rms
<SCRIPT SRC=http://w0rms.com/sayac.js></SCRIPT>
dustyfresh
/ node-debian-docker.md
Last active
December 11, 2015 06:01
Nodejs in a Debian Jessie environment packaged in a docker container.
Dockerfile:
FROM debian:jessie
MAINTAINER dustyfresh, https://github.com/dustyfresh
RUN apt-get update && \
apt-get install --yes curl build-essential && \
curl -sL https://deb.nodesource.com/setup_5.x | bash - && \
apt-get install --yes nodejs
dustyfresh
/ keybase.md
Created
December 28, 2015 18:08
I hereby claim:
- I am dustyfresh on github.
- I am derp (https://keybase.io/derp) on keybase.
- I have a public key ASCCdFILYZ1h6aehRyCkCQxy7fzK4RZnTDtqNd5HLTb4GAo
To claim this, I am signing this object:
{
dustyfresh
/ lol_KeRanger.sh
Last active
March 9, 2016 03:03
KeRanger ransomware removal script for OSX
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # @dustyfresh | |
| # | |
| # March 2016 | |
| # | |
| if [[ ! -e "/Applications/Transmission.app/Contents/Resources/General.rtf" || ! -e "/Volumes/Transmission/Transmission.app/Contents/Resources/General.rtf" ]]; then | |
| echo "Yay. This machine is not infected." | |
| else |
dustyfresh
/ howdyneighbor.js
Last active
March 9, 2016 18:11
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env node | |
| /* | |
| howdyneighbor.js - playing with the libnmap NodeJS module. This identifies | |
| neighboring machines on the same network and tells you if they are | |
| leaving any interesting ports open. It's really good for finding routers :) | |
| @dustyfresh, license for this gist is WTFPL [ http://www.wtfpl.net/ ] | |
| OSX INSTALL INSTRUCTIONS: | |
| $ npm i requests |
dustyfresh
/ unlockedws.py
Last active
April 20, 2016 16:23
Run this when you find an unlocked OS X workstation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| # This is a friendly reminder that you should lock your computer. | |
| # | |
| # Moves mouse cursor to random location and taunts the unsuspecting user | |
| # | |
| # | |
| # Run like ninja: | |
| # python <(curl -s https://gist.githubusercontent.com/dustyfresh/2b836ff3a207fc02f50105f5902db2f4/raw/91354fcb70b63fbd6eebf92da9dcd1608560729e/unlockedws.py) & | |
| # | |
| # <@dustyfresh> |
dustyfresh
/ fierce.pl
Created
April 24, 2016 00:43
RSnake's fierce.pl DNS enumeration & zone transfer script
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/perl | |
| ######################################### | |
| # Fierce v1.0.3 - Beta 03/23/2008 | |
| # By RSnake http://ha.ckers.org/fierce/ | |
| # Threading by IceShaman | |
| # Zone transfer and additional patches by Jabra | |
| ######################################### | |
| use strict; #warnings off after testing |
OlderNewer