Skip to content

Instantly share code, notes, and snippets.

@hwahab
hwahab / opera-vpn.md
Created April 25, 2016 01:30 — forked from spaze/opera-vpn.md
Opera VPN behind the curtains is just a proxy, here's how it works

When setting up (that's immediately when user enables it in settings) Opera VPN sends few API requests to https://api.surfeasy.com to obtain credentials and proxy IPs, see below, also see The Oprah Proxy.

The browser then talks to a proxy de0.opera-proxy.net (when VPN location is set to Germany), it's IP address can only be resolved from within Opera when VPN is on, it's 185.108.219.42 (or similar, see below). It's an HTTP/S proxy which requires auth.

When loading a page with Opera VPN enabled, the browser sends a lot of requests to de0.opera-proxy.net with Proxy-Authorization request header.

The Proxy-Authorization header decoded: CC68FE24C34B5B2414FB1DC116342EADA7D5C46B:9B9BE3FAE674A33D1820315F4CC94372926C8210B6AEC0B662EC7CAD611D86A3 (that's sha1(device_id):device_password, where device_id and device_password come from the POST /v2/register_device API call, please note that this decoded header is from another Opera installation and thus contains

@hwahab
hwahab / file
Created September 26, 2016 22:08
freedom_public
{"0.20405438774173623":"-----BEGIN PGP PUBLIC KEY BLOCK-----\r\nCharset: UTF-8\r\n\r\nxv8AAABSBAAAAAATCCqGSM49AwEHAgMEUqeXEfHQh4vouiXT8F5np+kB+DA9dxVE\r\nq+NJ1gClzkvh63IvErBpOcA5QVzhrBW8H64jy5WP6PDOxVMhUvik183/AAAACDxn\r\naXRodWI+wv8AAACOBBATCABA/wAAAAWCV+mcYf8AAAACiwn/AAAACZDjDNE9iMNl\r\nbv8AAAAFlQgJCgv/AAAABJYDAQL/AAAAApsD/wAAAAKeAQAAHagBANztqiw97x22\r\nkOLHRh2sZbBFAIXJd6DPojpgc4hSXYdrAQD/7hlTetRO0tO3dLchyPHHCLj+6vKl\r\nVq1DPgw+rOqZHM7/AAAAVgQAAAAAEggqhkjOPQMBBwIDBHA1nVP9XUW7y1omfY1z\r\nS9FCrxZpRSWIoIDy48+TOkanBmcvUuO85ixFqtsagGi5D+ghSazJxc8XptjIOkmU\r\nkXoDAQgHwv8AAABtBBgTCAAf/wAAAAWCV+mcYf8AAAAJkOMM0T2Iw2Vu/wAAAAKb\r\nDAAAtf4BAJonVEBuC4UHj5/bylpmqEb+tK4chJBSZBQNLB03PAv/AQCE6dGp6K/3\r\niWRIueR4B9GflorGkp9LMTZ2vWIpMzFHEA==\r\n=gq+W\r\n-----END PGP PUBLIC KEY BLOCK-----\r\n"}

Notes on Shadow Brokers EQGRP-LiT

credit: @GossiTheDog: "If you want to setup FUZZBUNCH (the Equation exploit framework) you need Win7 VM + Python 2.6 + Pywin 2.6, then python fb.py for shell"
h/t @x0rz @DEYCrypt @hackerfantastic

HOW 2 SETUP + INSTALL FUZZBUNCH & DANDERSPRITZ

context: https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translation
writeup: https://www.trustedsec.com/blog/equation-group-dump-analysis-full-rce-win7-fully-patched-cobalt-strike/
decrypted files: https://github.com/x0rz/EQGRP_Lost_in_Translation

@hwahab
hwahab / vsftpd.conf
Created September 20, 2017 16:26 — forked from yuikns/vsftpd.conf
Example config file /etc/vsftpd/vsftpd.conf
# Example config file /etc/vsftpd/vsftpd.conf
#
# The default compiled in settings are fairly paranoid. This sample file
# loosens things up a bit, to make the ftp daemon more usable.
# Please see vsftpd.conf.5 for all compiled in defaults.
#
# READ THIS: This example file is NOT an exhaustive list of vsftpd options.
# Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's
# capabilities.
#
@hwahab
hwahab / mds_backup.sh
Created February 16, 2018 20:15 — forked from martinholovsky/mds_backup.sh
Check Point MDS backup script
#!/bin/bash
#
# Check Point automatic MDS backup script with upload to SSH(SCP)/FTP server
# Author: Martin Cmelik (cm3l1k1) 11.1.2010 (updated coding convention 5.1.2015)
# License: GNU General Public License version 3
#
# THE SCRIPT IS PROVIDED AS IS, WITHOUT WARRANTY OF ANY KIND,
# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
@hwahab
hwahab / sources.list
Created June 22, 2019 02:31 — forked from pichuang/sources.list
Kali Linux source.list /etc/apt/sources.list
deb http://kali.cs.nctu.edu.tw/ /kali main contrib non-free
deb http://kali.cs.nctu.edu.tw/ /wheezy main contrib non-free
deb http://kali.cs.nctu.edu.tw/kali kali-dev main contrib non-free
deb http://kali.cs.nctu.edu.tw/kali kali-dev main/debian-installer
deb-src http://kali.cs.nctu.edu.tw/kali kali-dev main contrib non-free
deb http://kali.cs.nctu.edu.tw/kali kali main contrib non-free
deb http://kali.cs.nctu.edu.tw/kali kali main/debian-installer
deb-src http://kali.cs.nctu.edu.tw/kali kali main contrib non-free
deb http://kali.cs.nctu.edu.tw/kali-security kali/updates main contrib non-free
deb-src http://kali.cs.nctu.edu.tw/kali-security kali/updates main contrib non-free
@hwahab
hwahab / README.md
Created February 6, 2023 14:22 — forked from magnetikonline/README.md
Enable LDAP over SSL (LDAPS) for Microsoft Active Directory servers.

Enable LDAP over SSL (LDAPS) for Microsoft Active Directory servers

Microsoft active directory servers will default to offer LDAP connections over unencrypted connections (boo!).

The steps below will create a new self signed certificate appropriate for use with and thus enabling LDAPS for an AD server. Of course the "self-signed" portion of this guide can be swapped out with a real vendor purchased certificate if required.

Steps have been tested successfully with Windows Server 2012R2, but should work with Windows Server 2008 without modification. Requires a working OpenSSL install (ideally Linux/OSX) and (obviously) a Windows Active Directory server.

@hwahab
hwahab / x11vnc_server_on_startup.txt
Created July 5, 2024 15:57 — forked from YourFriendCaspian/x11vnc_server_on_startup.txt
Configure your system to have x11vnc running at startup.
## Ubuntu 15.04 – Configure your system to have x11vnc running at startup. ##
Hello World,
If you are following us, you probably remember that we wrote already a post about this topic
(see Ubuntu 14.10 – Configure your sytem to have x11vnc running at startup).
Since Ubuntu 15.04 is using systemd, the instructions found in the previous post are not applicable anymore.
Some of our readers had issues after upgrading to Ubuntu 15.04.
The x11VNC is not running at startup anymore.