I hereby claim:
- I am jaredcatkinson on github.
- I am jaredcatkinson (https://keybase.io/jaredcatkinson) on keybase.
- I have a public key whose fingerprint is E36F 8790 CAFF 1865 40C6 E2D5 2D79 10BE 8FC6 F83E
To claim this, I am signing this object:
function Get-RegistryValue | |
{ | |
[CmdletBinding(DefaultParameterSetName = 'HKLM')] | |
param | |
( | |
[Parameter(Mandatory = $true, ValueFromPipeline = $true)] | |
[string[]] | |
$Key, | |
[Parameter()] |
function Get-SOHostData | |
{ | |
begin | |
{ | |
try | |
{ | |
Get-System | |
} | |
catch | |
{ |
function Add-ACERootCertificate | |
{ | |
param | |
( | |
[Parameter(Mandatory = $true)] | |
[string] | |
$ServerIp, | |
[Parameter()] | |
[Int32] |
function ConvertFrom-EpochTime | |
{ | |
param | |
( | |
[Parameter(Mandatory = $true)] | |
[Double] | |
$EpochTime | |
) | |
$epochstart = Get-Date -Date 1/1/1970 |
Update-TypeData -TypeName Object -MemberType ScriptMethod -MemberName SizeOf -Value { | |
param() | |
if($this -is [type]) { | |
$SizeOf = [System.Runtime.InteropServices.Marshal].GetMethod('SizeOf',[type[]]@([type])) | |
} | |
else { | |
$SizeOf = [System.Runtime.InteropServices.Marshal].GetMethod('SizeOf',[type[]]@([Object])) | |
} | |
return $SizeOf.Invoke($null,@($this.psobject.BaseObject)) |
Add-Type -AssemblyName System.ServiceModel | |
$BF = [Reflection.BindingFlags]::NonPublic -bor [Reflection.BindingFlags]::Static | |
$C1 = [ServiceModel.PeerNode].Assembly.GetType('System.ServiceModel.Channels.AppContainerInfo') | |
$C2 = [ServiceModel.PeerNode].Assembly.GetType('System.ServiceModel.Activation.Utility') | |
$M1 = $C1.GetMethod('GetCurrentProcessToken', $BF) | |
$M2 = $C2.GetMethod('GetTokenInformation', $BF) | |
$hT = $M1.Invoke($null, @()) | |
$b = New-Object -TypeName byte[](28) | |
$M2.Invoke($null, @($hT, 25, [byte[]]$b)) | |
$IL = [Security.Principal.SecurityIdentifier]::new($b, 16).Value |
function Collect-SOData | |
{ | |
param | |
( | |
[Parameter(Mandatory = $true)] | |
[string] | |
$FilePath | |
) | |
$hostname = $env:COMPUTERNAME |
--- | |
title: T1208 - Kerberoasting | |
description: | |
header : | |
name : T1208 - Kerberoasting | |
colspan : 5 | |
background-color : #DCDCDC | |
rows: | |
- Row1 : | |
name : Tools |
function ContextualEditDistance | |
{ | |
<# | |
http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.600.3601&rep=rep1&type=pdf | |
https://github.com/chrislit/abydos/blob/344346a5fceb6acc631b3d24e16b73a303cece2c/abydos/distance/_higuera_mico.py | |
#> | |
[CmdletBinding()] | |
param( | |
[string] |
I hereby claim:
To claim this, I am signing this object: