Ivo Damjanovic idnovic

## gist:5122366
wget --no-check-certificate --content-disposition https://github.com/joyent/node/tarball/v0.7.1
# --no-check-cerftificate was necessary for me to have wget not puke about https
curl -LJO https://github.com/joyent/node/tarball/v0.7.1

## seedutil.md

      
              1 file
            
          
              16 forks
            
          
              5 comments
            
          
              66 stars
            
          
                pookjw
                / seedutil.md
            
            
              Last active
              July 6, 2023 02:47
            
              
                Enroll macOS Beta Seed without profile installation
              
          
    seedutil

Enroll macOS Beta Seed without profile installation
Usage

$ sudo /System/Library/PrivateFrameworks/Seeding.framework/Versions/A/Resources/seedutil 
usage: seedutil enroll SEED_PROGRAM
    seedutil unenroll

seedutil current

  
## Windows Defender Exclusions VS 2017.ps1
$userPath = $env:USERPROFILE
$pathExclusions = New-Object System.Collections.ArrayList
$processExclusions = New-Object System.Collections.ArrayList

$pathExclusions.Add('C:\Windows\Microsoft.NET') > $null
$pathExclusions.Add('C:\Windows\assembly') > $null
$pathExclusions.Add($userPath + '\AppData\Local\Microsoft\VisualStudio') > $null
$pathExclusions.Add('C:\ProgramData\Microsoft\VisualStudio\Packages') > $null
$pathExclusions.Add('C:\Program Files (x86)\MSBuild') > $null
$pathExclusions.Add('C:\Program Files (x86)\Microsoft Visual Studio 14.0') > $null

## dkms-module-signing.md

      
              4 files
            
          
              10 forks
            
          
              12 comments
            
          
              44 stars
            
          
                dojoe
                / dkms-module-signing.md
            
            
              Last active
              April 24, 2024 18:50
            
              
                Make DKMS sign kernel modules on installation, with full script support and somewhat distro independent
              
          
    On systems with UEFI Secure Boot enabled, recent Linux kernels will only load signed modules, so it's about time DKMS grew the capability to sign modules it's building.
These scripts are extended and scriptified variants of https://computerlinguist.org/make-dkms-sign-kernel-modules-for-secure-boot-on-ubuntu-1604.html and https://askubuntu.com/questions/760671/could-not-load-vboxdrv-after-upgrade-to-ubuntu-16-04-and-i-want-to-keep-secur/768310#768310 and add some error checking, a passphrase around your signing key, and support for compressed modules.
dkms-sign-module is a wrapper for the more generic sign-modules which can also be used outside of DKMS.
Installation


Create a directory under /root, say /root/module-signing, put the three scripts below in there and make them executable: chmod u+x one-time-setup sign-modules dkms-sign-module


## 55-bytes-of-css.md

      
              1 file
            
          
              114 forks
            
          
              32 comments
            
          
              2135 stars
            
          
                JoeyBurzynski
                / 55-bytes-of-css.md
            
            
              Last active
              July 20, 2024 05:29
            
              
                58 bytes of css to look great nearly everywhere
              
          
    58 bytes of CSS to look great nearly everywhere

When making this website, i wanted a simple, reasonable way to make it look good on most displays. Not counting any minimization techniques, the following 58 bytes worked well for me:
main {
  max-width: 38rem;
  padding: 2rem;
  margin: auto;
}

  
## Base64_CheatSheet.md

      
              1 file
            
          
              43 forks
            
          
              6 comments
            
          
              265 stars
            
          
                Neo23x0
                / Base64_CheatSheet.md
            
            
              Last active
              July 5, 2024 17:29
            
              
                Learning Aid - Top Base64 Encodings Table
              
          
    Base64 Patterns - Learning Aid


Base64 Code
Mnemonic Aid
Decoded*
Description


JAB
🗣 Jabber
$.
Variable declaration (UTF-16), e.g. JABlAG4AdgA for $env:


TVq
📺 Television
MZ
MZ header


SUVY
🚙 SUV
IEX
PowerShell Invoke Expression


SQBFAF
🐣 Squab favorite
I.E.
PowerShell Invoke Expression (UTF-16)


SQBuAH
🐣 Squab uahhh
I.n.
PowerShell Invoke string (UTF-16) e.g. Invoke-Mimikatz


PAA
💪 "Pah!"
&lt;.
Often used by Emotet (UTF-16)


## bad_cpu.py
import time
import psutil
import multiprocessing as mp
from multiprocessing import Process

def f(thread, duty, freq, q):
    p = psutil.Process()
    p.cpu_affinity([thread])

    while True:

## extract-firmware.md

      
              1 file
            
          
              1 fork
            
          
              35 comments
            
          
              17 stars
            
          
                startergo
                / extract-firmware.md
            
            
              Last active
              July 1, 2024 07:30
            
              
                Extract Firmware from OS X installer
              
          
Download the full installer:

softwareupdate --list-full-installers
Finding available software
Software Update found the following full installers:
* Title: macOS Ventura, Version: 13.1, Size: 11931164KiB, Build: 22C65
* Title: macOS Ventura, Version: 13.0.1, Size: 11866460KiB, Build: 22A400
* Title: macOS Ventura, Version: 13.0, Size: 11866804KiB, Build: 22A380
* Title: macOS Monterey, Version: 12.6.2, Size: 12104568KiB, Build: 21G320
* Title: macOS Monterey, Version: 12.6.1, Size: 12108491KiB, Build: 21G217


## update_flatpak_cli.py
#!/usr/bin/env python3
"""Flatpak CLI Shortcut Generator

A simple no-argument tool that generates launchers with traditional non-flatpak
command names for your installed Flatpak applications in ~/.local/bin/flatpak.

Does full collision detection and warns you if you forgot to add its output
directory to your PATH. Also overrules the command-line specified in the
``.desktop`` file if the Flatpak maintainer didn't include support for
command-line arguments.

## Workstation-Takeover.md

      
              1 file
            
          
              91 forks
            
          
              9 comments
            
          
              251 stars
            
          
                gladiatx0r
                / Workstation-Takeover.md
            
            
              Last active
              June 23, 2024 22:01
            
              
                From RPC to RCE - Workstation Takeover via RBCD and MS-RPChoose-Your-Own-Adventure
              
          
    Overview

In the default configuration of Active Directory, it is possible to remotely take over Workstations (Windows 7/10/11) and possibly servers (if Desktop Experience is installed) when their WebClient service is running. This is accomplished in short by;

Triggering machine authentication over HTTP via either MS-RPRN or MS-EFSRPC (as demonstrated by @tifkin_). This requires a set of credentials for the RPC call.
Relaying that machine authentication to LDAPS for configuring RBCD
RBCD takeover

The caveat to this is that the WebClient service does not automatically start at boot. However, if the WebClient service has been triggered to start on a workstation (for example, via some SharePoint interactions), you can remotely take over that system. In addition, there are several ways to coerce the WebClient service to start remotely which I cover in a section below.
	wget --no-check-certificate --content-disposition https://github.com/joyent/node/tarball/v0.7.1
	# --no-check-cerftificate was necessary for me to have wget not puke about https
	curl -LJO https://github.com/joyent/node/tarball/v0.7.1
	$userPath = $env:USERPROFILE
	$pathExclusions = New-Object System.Collections.ArrayList
	$processExclusions = New-Object System.Collections.ArrayList

	$pathExclusions.Add('C:\Windows\Microsoft.NET') > $null
	$pathExclusions.Add('C:\Windows\assembly') > $null
	$pathExclusions.Add($userPath + '\AppData\Local\Microsoft\VisualStudio') > $null
	$pathExclusions.Add('C:\ProgramData\Microsoft\VisualStudio\Packages') > $null
	$pathExclusions.Add('C:\Program Files (x86)\MSBuild') > $null
	$pathExclusions.Add('C:\Program Files (x86)\Microsoft Visual Studio 14.0') > $null
Base64 Code	Mnemonic Aid	Decoded*	Description
`JAB`	🗣 Jabber	`$.`	Variable declaration (UTF-16), e.g. `JABlAG4AdgA` for `$env:`
`TVq`	📺 Television	`MZ`	MZ header
`SUVY`	🚙 SUV	`IEX`	PowerShell Invoke Expression
`SQBFAF`	🐣 Squab favorite	`I.E.`	PowerShell Invoke Expression (UTF-16)
`SQBuAH`	🐣 Squab uahhh	`I.n.`	PowerShell Invoke string (UTF-16) e.g. `Invoke-Mimikatz`
`PAA`	💪 "Pah!"	`<.`	Often used by Emotet (UTF-16)
	import time
	import psutil
	import multiprocessing as mp
	from multiprocessing import Process

	def f(thread, duty, freq, q):
	p = psutil.Process()
	p.cpu_affinity([thread])

	while True:
	#!/usr/bin/env python3
	"""Flatpak CLI Shortcut Generator

	A simple no-argument tool that generates launchers with traditional non-flatpak
	command names for your installed Flatpak applications in ~/.local/bin/flatpak.

	Does full collision detection and warns you if you forgot to add its output
	directory to your PATH. Also overrules the command-line specified in the
	``.desktop`` file if the Flatpak maintainer didn't include support for
	command-line arguments.