Johnathan Miranda johnnymiranda

## README.md

      
              1 file
            
          
              107 forks
            
          
              28 comments
            
          
              353 stars
            
          
                developius
                / README.md
            
            
              Last active
              April 25, 2024 22:15
            
              
                Setup SSH keys for use with GitHub/GitLab/BitBucket etc
              
          
    Create a new repository, or reuse an existing one.
Generate a new SSH key:
ssh-keygen -t rsa -C "your_email@example.com"

Copy the contents of the file ~/.ssh/id_rsa.pub to your SSH keys in your GitHub account settings (https://github.com/settings/keys).
Test SSH key:

  
## linuxprivchecker.py
#!/usr/env python

###############################################################################################################
## [Title]: linuxprivchecker.py -- a Linux Privilege Escalation Check Script
## [Author]: Mike Czumak (T_v3rn1x) -- @SecuritySift
##-------------------------------------------------------------------------------------------------------------
## [Details]:
## This script is intended to be executed locally on a Linux box to enumerate basic system info and
## search for common privilege escalation vectors such as world writable files, misconfigurations, clear-text
## passwords and applicable exploits.

## Get-DownloadedPEHashes.ps1
function Get-DownloadedPEHashes
{
    [CmdletBinding()]
    Param(
        [Parameter(Mandatory=$true, Position=0)]
        [String]$Path,
        [Switch]$Recursive = $true
    )

    if (!$Path.EndsWith('\'))

## Kali_Desktop_Environments_Installation_and_Removal.md

      
              1 file
            
          
              40 forks
            
          
              27 comments
            
          
              112 stars
            
          
                jayluxferro
                / Kali_Desktop_Environments_Installation_and_Removal.md
            
            
              Last active
              May 14, 2024 20:33
            
              
                Kali Desktop Environments Installation and Removal
              
          
XFCE Desktop


How to install XFCE Desktop Environment in Kali Linux:

Command:
apt-get install kali-defaults kali-root-login desktop-base xfce4 xfce4-places-plugin xfce4-goodies
How to remove XFCE in Kali Linux:

Command:

  
## cloud_metadata.txt
## AWS
# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories

http://169.254.169.254/latest/user-data
http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/ami-id
http://169.254.169.254/latest/meta-data/reservation-id
http://169.254.169.254/latest/meta-data/hostname
http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key

## run.js
/*
  Developer: Marzavec ( https://github.com/marzavec )
  Description: A simple browser-based subdomain bruteforcing script, using DoH providers. Developed as a 5 minute hack, just to see it's preformance. Many improvements could be made, such as adding error handling or informing the user when the script is done.
  Usage: Open the browsers dev console (usually F12), paste this script, change the `rootTld`, press enter to run. Ezpz.
*/

const rootTld = 'lyka.pro'; // change to your target's root tld

// url to newline seperated wordlist
const wordlistUrl = 'https://raw.githubusercontent.com/rbsec/dnscan/master/subdomains.txt';

## List of API endpoints & objects
0
00
01
02
03
1
1.0
10
100
1000

## 00-Pop!_OS-first-steps.md

      
              3 files
            
          
              1 fork
            
          
              0 comments
            
          
              1 star
            
          
                ubergesundheit
                / 00-Pop!_OS-first-steps.md
            
            
              Last active
              October 21, 2022 15:04
            
          
    73# First steps after installing Pop!_OS 19.10
Using ansible. Installs pyenv, nvm, keybase, keeweb, vs codium, riot-web, golang
Packages

Upgrade & install basics
sudo apt-get update && sudo apt-get upgrade -y

  
## Github bash generated search links (from hunter.sh)


echo ""
echo "************ Github Dork Links (must be logged in) *******************"
echo ""
echo "  password"
echo "https://github.com/search?q=%22$1%22+password&type=Code"
echo "https://github.com/search?q=%22$without_suffix%22+password&type=Code"
echo ""
echo " npmrc _auth"

## CVE-2020-5902.md

      
              1 file
            
          
              19 forks
            
          
              0 comments
            
          
              54 stars
            
          
                cihanmehmet
                / CVE-2020-5902.md
            
            
              Last active
              January 29, 2024 12:34
            
              
                BIGIP CVE-2020-5902 Exploit POC 
              
          
    🚨BIGIP CVE-2020-5902 Exploit POC 🔥🧱🔨👀


Shodan Seaarch

title:"Big-IP&reg;" org:"Organization Name"
http.title:"BIG-IP&reg;- Redirect" org:"Organization Name"
http.favicon.hash:-335242539 "3992" org:"Organization Name"

🔸LFI
	#!/usr/env python

	###############################################################################################################
	## [Title]: linuxprivchecker.py -- a Linux Privilege Escalation Check Script
	## [Author]: Mike Czumak (T_v3rn1x) -- @SecuritySift
	##-------------------------------------------------------------------------------------------------------------
	## [Details]:
	## This script is intended to be executed locally on a Linux box to enumerate basic system info and
	## search for common privilege escalation vectors such as world writable files, misconfigurations, clear-text
	## passwords and applicable exploits.
	function Get-DownloadedPEHashes
	{
	[CmdletBinding()]
	Param(
	[Parameter(Mandatory=$true, Position=0)]
	[String]$Path,
	[Switch]$Recursive = $true
	)

	if (!$Path.EndsWith('\'))
	## AWS
	# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories

	http://169.254.169.254/latest/user-data
	http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
	http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
	http://169.254.169.254/latest/meta-data/ami-id
	http://169.254.169.254/latest/meta-data/reservation-id
	http://169.254.169.254/latest/meta-data/hostname
	http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key
	/*
	Developer: Marzavec ( https://github.com/marzavec )
	Description: A simple browser-based subdomain bruteforcing script, using DoH providers. Developed as a 5 minute hack, just to see it's preformance. Many improvements could be made, such as adding error handling or informing the user when the script is done.
	Usage: Open the browsers dev console (usually F12), paste this script, change the `rootTld`, press enter to run. Ezpz.
	*/

	const rootTld = 'lyka.pro'; // change to your target's root tld

	// url to newline seperated wordlist
	const wordlistUrl = 'https://raw.githubusercontent.com/rbsec/dnscan/master/subdomains.txt';


	echo ""
	echo "********** Github Dork Links (must be logged in) *****************"
	echo ""
	echo " password"
	echo "https://github.com/search?q=%22$1%22+password&type=Code"
	echo "https://github.com/search?q=%22$without_suffix%22+password&type=Code"
	echo ""
	echo " npmrc _auth"