I hereby claim:
- I am jaredcatkinson on github.
- I am jaredcatkinson (https://keybase.io/jaredcatkinson) on keybase.
- I have a public key whose fingerprint is E36F 8790 CAFF 1865 40C6 E2D5 2D79 10BE 8FC6 F83E
To claim this, I am signing this object:
Jared Atkinson jaredcatkinson
jaredcatkinson
/ Get-RegistryValue.ps1
Created
January 23, 2018 14:30
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-RegistryValue | |
| { | |
| [CmdletBinding(DefaultParameterSetName = 'HKLM')] | |
| param | |
| ( | |
| [Parameter(Mandatory = $true, ValueFromPipeline = $true)] | |
| [string[]] | |
| $Key, | |
| [Parameter()] |
jaredcatkinson
/ Get-SOHostData.ps1
Last active
February 24, 2024 15:17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-SOHostData | |
| { | |
| begin | |
| { | |
| try | |
| { | |
| Get-System | |
| } | |
| catch | |
| { |
jaredcatkinson
/ Add-ACECertificate.ps1
Last active
February 24, 2024 15:17
PowerShell script to query the ACE Certificate Authority (CA) for the CA's public key and add the public key to the system's local cert store
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Add-ACERootCertificate | |
| { | |
| param | |
| ( | |
| [Parameter(Mandatory = $true)] | |
| [string] | |
| $ServerIp, | |
| [Parameter()] | |
| [Int32] |
jaredcatkinson
/ ConvertFrom-EpochTime.ps1
Created
April 5, 2018 17:05
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function ConvertFrom-EpochTime | |
| { | |
| param | |
| ( | |
| [Parameter(Mandatory = $true)] | |
| [Double] | |
| $EpochTime | |
| ) | |
| $epochstart = Get-Date -Date 1/1/1970 |
jaredcatkinson
/ profile.ps1
Created
April 30, 2018 16:50
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Update-TypeData -TypeName Object -MemberType ScriptMethod -MemberName SizeOf -Value { | |
| param() | |
| if($this -is [type]) { | |
| $SizeOf = [System.Runtime.InteropServices.Marshal].GetMethod('SizeOf',[type[]]@([type])) | |
| } | |
| else { | |
| $SizeOf = [System.Runtime.InteropServices.Marshal].GetMethod('SizeOf',[type[]]@([Object])) | |
| } | |
| return $SizeOf.Invoke($null,@($this.psobject.BaseObject)) |
jaredcatkinson
/ Get-CurrentProcessIntegrityLevel.ps1
Last active
February 24, 2024 15:16
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Add-Type -AssemblyName System.ServiceModel | |
| $BF = [Reflection.BindingFlags]::NonPublic -bor [Reflection.BindingFlags]::Static | |
| $C1 = [ServiceModel.PeerNode].Assembly.GetType('System.ServiceModel.Channels.AppContainerInfo') | |
| $C2 = [ServiceModel.PeerNode].Assembly.GetType('System.ServiceModel.Activation.Utility') | |
| $M1 = $C1.GetMethod('GetCurrentProcessToken', $BF) | |
| $M2 = $C2.GetMethod('GetTokenInformation', $BF) | |
| $hT = $M1.Invoke($null, @()) | |
| $b = New-Object -TypeName byte[](28) | |
| $M2.Invoke($null, @($hT, 25, [byte[]]$b)) | |
| $IL = [Security.Principal.SecurityIdentifier]::new($b, 16).Value |
jaredcatkinson
/ Collect-SOData.ps1
Last active
February 24, 2024 15:16
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Collect-SOData | |
| { | |
| param | |
| ( | |
| [Parameter(Mandatory = $true)] | |
| [string] | |
| $FilePath | |
| ) | |
| $hostname = $env:COMPUTERNAME |
jaredcatkinson
/ kerberoasting-abstraction-map.yaml
Last active
February 24, 2024 15:15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| title: T1208 - Kerberoasting | |
| description: | |
| header : | |
| name : T1208 - Kerberoasting | |
| colspan : 5 | |
| background-color : #DCDCDC | |
| rows: | |
| - Row1 : | |
| name : Tools |
jaredcatkinson
/ ContextualEditDistance.ps1
Last active
February 24, 2024 15:15
This Gist is meant to be associated with a twitter thread describing a new approach to selecting the optimal set of variations given a finite set of tests. Make sure each of the associated scripts are loaded into you PowerShell session.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function ContextualEditDistance | |
| { | |
| <# | |
| http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.600.3601&rep=rep1&type=pdf | |
| https://github.com/chrislit/abydos/blob/344346a5fceb6acc631b3d24e16b73a303cece2c/abydos/distance/_higuera_mico.py | |
| #> | |
| [CmdletBinding()] | |
| param( | |
| [string] |
jaredcatkinson
/ keybase.md
Created
August 18, 2016 13:15
NewerOlder