| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| # Copyright: (c) 2019, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| # Script to search for updates in the Microsoft Update Catalog. Works on both Python 2 and 3 but requires BeautifulSoup | |
| # to be installed - https://www.crummy.com/software/BeautifulSoup/#Download | |
| import contextlib | |
| import datetime |
This is to try and document the behaviour around PowerShellGet/PSResourceGet code signing publisher behaviour.
The following code can be used to set up this scenario. This must be run as an administrator in Windows PowerShell.
Note: PowerShell uses implicit remoting for the New-SelfSignedCertificate which breaks the constains serialization. You must run this on Windows PowerShell.
| # Copyright: (c) 2019, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| import uuid | |
| from contextlib import contextmanager | |
| from io import BytesIO | |
| from smbprotocol.connection import Connection | |
| from smbprotocol.session import Session | |
| from smbprotocol.open import CreateDisposition, FileAttributes, FilePipePrinterAccessMask, ImpersonationLevel, Open, \ |
| # Copyright: (c) 2024, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| """POC for running exe's over RDP | |
| This is a very rough attempt at trying to run an exe using a headless RDP | |
| connection. It aims to be able to provide an interactive console session as | |
| well as a headless one. | |
| Requires aardwolf - https://github.com/skelsec/aardwolf as a Python dependency. |
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| # PYTHON_ARGCOMPLETE_OK | |
| # Copyright: (c) 2021 Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| import argparse | |
| import base64 | |
| import datetime |
| #!/usr/bin/env python | |
| # -*- coding: utf-8 -*- | |
| # PYTHON_ARGCOMPLETE_OK | |
| # Copyright: (c) 2020 Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| """ | |
| Script that can read a Wireshark capture .pcapng for a WinRM exchange and decrypt the messages. Currently only supports | |
| exchanges that were authenticated with NTLM. This is really a POC, a lot of things are missing like NTLMv1 support, |
| # Copyright: (c) 2022, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| Function Get-WTSSessionInfo { | |
| <# | |
| .SYNOPSIS | |
| Enumerates sessions on a Windows host. | |
| .DESCRIPTION | |
| Enumerates all the sessions available on a Windows host through the WTSEnumerateSessionsExW API. |
| # Copyright: (c) 2021, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| Function Get-RegKeyInfo { | |
| <# | |
| .SYNOPSIS | |
| Gets details about a registry key. | |
| .DESCRIPTION | |
| Gets very low level details about a registry key. |
| # Copyright: (c) 2024, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| Function Test-Tls { | |
| [CmdletBinding()] | |
| param ( | |
| [Parameter(Mandatory)] | |
| [string] | |
| $HostName, |
| # Copyright: (c) 2018, Jordan Borean (@jborean93) <jborean93@gmail.com> | |
| # MIT License (see LICENSE or https://opensource.org/licenses/MIT) | |
| Add-Type -TypeDefinition @' | |
| using Microsoft.Win32.SafeHandles; | |
| using System; | |
| using System.Collections.Generic; | |
| using System.Runtime.ConstrainedExecution; | |
| using System.Runtime.InteropServices; |