Each of these commands will run an ad hoc http static server in your current (or specified) directory, available at http://localhost:8000. Use this power wisely.
$ python -m SimpleHTTPServer 8000
jonz-secops-offsec jonz-secops
jonz-secops
/ cvemap_wrapper.ps1
Created
February 2, 2024 07:32
— forked from LuemmelSec/cvemap_wrapper.ps1
cvemap wrapper
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Run cvemap with our desired flags and output to json | |
| # I needed to run this with cvemap version 0.0.2 as 0.0.3 broke the ability to pipe to a file for whatever reason | |
| .\cvemap.exe -severity=critical -severity=high -es '> 0.01' -poc=true -l 1000 -json > new_vulns.json | |
| # Paths to the JSON files | |
| $newJsonFilePath = "new_vulns.json" | |
| $databaseJsonFilePath = "cve_database.json" | |
| # Read the newly fetched JSON file | |
| $newJsonContent = Get-Content -Path $newJsonFilePath | ConvertFrom-Json |
jonz-secops
/ cloud_metadata.txt
Created
August 31, 2023 21:29
— forked from jhaddix/cloud_metadata.txt
Cloud Metadata Dictionary useful for SSRF Testing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## AWS | |
| # from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories | |
| http://169.254.169.254/latest/user-data | |
| http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME] | |
| http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME] | |
| http://169.254.169.254/latest/meta-data/ami-id | |
| http://169.254.169.254/latest/meta-data/reservation-id | |
| http://169.254.169.254/latest/meta-data/hostname | |
| http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key |
jonz-secops
/ shodan_query_notebook.ipynb
Created
August 22, 2023 22:52
— forked from Cdaprod/shodan_query_notebook.ipynb
Shodan Query Notebook and Visualization
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
jonz-secops
/ PowerShell Command Line Logging
Created
August 4, 2023 18:02
— forked from gfoss/PowerShell Command Line Logging
Detect and alert on nefarious PowerShell command line activity
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PowerShell Audit Logging for LogRhythm SIEM - 2015 | |
| # For detecting dangerous PowerShell Commands/Functions | |
| Log Source Type: | |
| MS Event Log for Win7/Win8/2008/2012 - PowerShell | |
| Add this file to your PowerShell directory to enable verbose command line audit logging | |
| profile.ps1 | |
| $LogCommandHealthEvent = $true | |
| $LogCommandLifeCycleEvent = $true |
jonz-secops
/ web-servers.md
Last active
June 26, 2023 16:55
— forked from willurd/web-servers.md
Big list of http static server one-liners
jonz-secops
/ GitHub-Forking.md
Created
May 22, 2023 20:59
— forked from Chaser324/GitHub-Forking.md
GitHub Standard Fork & Pull Request Workflow
Whether you're trying to give back to the open source community or collaborating on your own projects, knowing how to properly fork and generate pull requests is essential. Unfortunately, it's quite easy to make mistakes or not know what you should do when you're initially learning the process. I know that I certainly had considerable initial trouble with it, and I found a lot of the information on GitHub and around the internet to be rather piecemeal and incomplete - part of the process described here, another there, common hangups in a different place, and so on.
In an attempt to coallate this information for myself and others, this short tutorial is what I've found to be fairly standard procedure for creating a fork, doing your work, issuing a pull request, and merging that pull request back into the original project.
Just head over to the GitHub page and click the "Fork" button. It's just that simple. Once you've done that, you can use your favorite git client to clone your repo or j
jonz-secops
/ Base64_CheatSheet.md
Created
April 10, 2023 18:06
— forked from Neo23x0/Base64_CheatSheet.md
Learning Aid - Top Base64 Encodings Table
| Base64 Code | Mnemonic Aid | Decoded* | Description |
|---|---|---|---|
JAB |
🗣 Jabber | $. |
Variable declaration (UTF-16) |
TVq |
📺 Television | MZ |
MZ header |
SUVY |
🚙 SUV | IEX |
PowerShell Invoke Expression |
SQBFAF |
🐣 Squab favorite | I.E. |
PowerShell Invoke Expression (UTF-16) |
SQBuAH |
🐣 Squab uahhh | I.n. |
PowerShell Invoke string (UTF-16) e.g. Invoke-Mimikatz |
PAA |
💪 "Pah!" | <. |
Often used by Emotet (UTF-16) |
jonz-secops
/ oauthServer.go
Created
March 16, 2023 23:29
— forked from invokethreatguy/oauthServer.go
A mini OAuth server for Azure
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "crypto/tls" | |
| "fmt" | |
| "io/ioutil" | |
| "net/http" | |
| "net/url" | |
| "strings" | |
| ) |
jonz-secops
/ Windows Defender Exclusions VS 2019.ps1
Created
July 14, 2022 14:51
— forked from Braytiner/Windows Defender Exclusions VS 2019.ps1
Adds Windows Defender exclusions for Visual Studio 2019
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $userPath = $env:USERPROFILE | |
| $pathExclusions = New-Object System.Collections.ArrayList | |
| $processExclusions = New-Object System.Collections.ArrayList | |
| $pathExclusions.Add('C:\source\repos') > $null | |
| $pathExclusions.Add('C:\Windows\Microsoft.NET') > $null | |
| $pathExclusions.Add('C:\Windows\assembly') > $null | |
| $pathExclusions.Add($userPath + '\AppData\Local\Microsoft\VisualStudio') > $null | |
| $pathExclusions.Add($userPath + '\AppData\Local\Microsoft\VisualStudio Services') > $null | |
| $pathExclusions.Add($userPath + '\AppData\Local\GitCredentialManager') > $null |
jonz-secops
/ Advanced queries for Logseq
Created
July 4, 2022 20:38
— forked from houshuang/Advanced queries for Logseq
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - This page is a collection of some of the Advanced queries from the [[Datalog]] channel on the [[Logseq/Discord]] server. #datalog | |
| id:: 61db13f4-75e8-4f87-ad60-3ac3479c5fc8 | |
| - ### Resources | |
| - [link: The first message on the datalog channel](https://discord.com/channels/725182569297215569/743139225746145311/743139795865174119) | |
| - [link: Logseq docs - Advanced queries](https://docs.logseq.com/#/page/advanced%20queries) | |
| - [link: Logseq datascript schema](https://gist.github.com/tiensonqin/9a40575827f8f63eec54432443ecb929) | |
| - [link: Logseq frontend db model](https://github.com/logseq/logseq/blob/master/src/main/frontend/db/model.cljs) | |
| - [link: How to Graph Your Data - talk by Paula Gearon](https://youtu.be/tbVwmFBnfo4) | |
| - [link: Domain modelling with datalog - talk by Norbert Wojtowicz](https://youtu.be/oo-7mN9WXTw) | |
| - [link: Athens Research ClojureFam](https://github.com/athensresearch/ClojureFam) |
NewerOlder