Mihály Gábor kecs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| alias gti='git' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from fabric.api import env, local, run, require, cd, sudo | |
| import os | |
| from fabric.context_managers import cd | |
| env.project_name = 'weight' | |
| def prod(): | |
| "Use the actual webserver" |
kecs
/ rockyou_stat.py
Created
September 6, 2018 11:11
You have a password policy with special chars, you have rate limit, you want to know the most common special chars in passwords.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import re | |
| from collections import defaultdict | |
| d = defaultdict(int) | |
| with open('/usr/share/wordlists/rockyou.txt', 'r') as f: | |
| for l in f: | |
| for c in re.findall('\W', l[:-1]): | |
| d[c] += 1 | |
kecs
/ rockyou_subset_rules.py
Created
March 4, 2019 19:29
Password policy says eg. pass must contain 3 chr set from 4
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import re | |
| rules = ( | |
| re.compile('[a-z]'), | |
| re.compile('[A-Z]'), | |
| re.compile('[1-9]'), | |
| re.compile('[\!\+\-\@\.]'), | |
| ) |
kecs
/ add_php_calltrace.py
Created
March 11, 2019 13:13
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os, re, sys | |
| """ | |
| Recursively traverse a php repo, add a line that logs fn calls. | |
| Non overlapping matches! | |
| Arg: output file full path | |
| """ | |
| OUTFILE = sys.argv[1] |
kecs
/ map_reachable_phps.py
Created
March 22, 2019 09:15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests, time, os | |
| """ | |
| List all .php files in repo, send GET and POST to live url, print response if it is not 404 | |
| Start from repo root dir. | |
| Args: base_url_to_live_server | |
| """ | |
| COOKIES = {'SESSID': '', 'PHPSESSID': ''} |
kecs
/ log_php_fn_calls.py
Created
November 1, 2019 13:23
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys | |
| """ | |
| Recursively traverse a php repo, | |
| add a line that logs fn calls. | |
| Non overlapping matches. | |
| cd into project root. | |
| """ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| script=document.createElement('script');document.head.appendChild(script);script.src='https://ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js'; |
kecs
/ listLoadedScriptsFromConsole.js
Created
November 10, 2019 11:39
List scripts loaded by page from console
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| for(i=0;i<document.scripts.length;i++)console.log(document.scripts[i].src) |
kecs
/ get_scripts.py
Created
November 10, 2019 12:21
Download list of scripts loaded by site, greppable.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # pip install jsbeautifier requests | |
| import os | |
| import requests | |
| from jsbeautifier import beautify | |
| try: | |
| os.mkdir('js') | |
| except OSError: | |
| pass |
OlderNewer