leveryd leveryd

## keyword_encoder.py
import os


class Encoder(object):
    @staticmethod
    def chr_to_hex(i):
        """
        49 -> '\x31'
        :param i:
        :return:

## test_extrafile.go
// 需要先创建文件 touch file1.txt、file2.txt、file3.txt
package main

import (
        "fmt"
        "syscall"
        "os/exec"
        "os"
)

## padding_base64.py
import re
import base64


class GenerateBase64(object):
    @staticmethod
    def split_string_by_length(text, length):
        # 使用正则表达式匹配长度为指定值的子串
        pattern = f'.{{{length}}}'
        return [match.group(0) for match in re.finditer(pattern, text)]

## CVE-2019-11580.py
# this is python3 version poc for https://github.com/jas502n/CVE-2019-11580/blob/master/CVE-2019-11580.py

import requests
import sys

banner = '''\n   _______      ________    ___   ___  __  ___        __ __ _____  ___   ___
  / ____\ \    / /  ____|  |__ \ / _ \/_ |/ _ \      /_ /_ | ____|/ _ \ / _ \
 | |     \ \  / /| |__ ______ ) | | | || | (_) |______| || | |__ | (_) | | | |
 | |      \ \/ / |  __|______/ /| | | || |\__, |______| || |___ \ > _ <| | | |
 | |____   \  /  | |____    / /_| |_| || |  / /       | || |___) | (_) | |_| |

## parse_log.py
# coding:utf-8
import argparse
import base64
import json
import os
from enum import Enum


args = None

## asm开发记录-集成katana.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                leveryd
                / asm开发记录-集成katana.md
            
            
              Last active
              February 14, 2023 03:10
            
              
                asm开发记录-集成katana
              
          
    背景

刚写asm项目时，爬虫服务是通过service对外提供服务。
爬虫服务容器编排yaml文件见 https://github.com/leveryd-asm/asm/blob/f6c481efbe/templates/crawler.yaml
工作流中调用服务的例子见 https://github.com/leveryd-asm/asm/blob/f6c481efbe5820fb682bc1dc4113ec168cd2275e/templates/argo-workflow-template/argo-workflow-atom-template-crawler.yaml

但现在工作流中直接调用爬虫二进制文件

  
## proxify bug.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                leveryd
                / proxify bug.md
            
            
              Created
              January 10, 2023 02:59
            
          
    背景

中间有一段时间没有数据

如果重启proxify pod，es就会又有数据。就像图中那样
为什么会这样？


## webshell_bypass.php
<?php
error_reporting(E_ALL);
//设置无限请求超时时间
set_time_limit(0);

echo "<h2>TCP/IP Connection</h2>\n";

$ip = '127.0.0.1';
$port = 8099;

## reuse_port.c
#include <stdio.h>
#include <sys/socket.h>
#include <netdb.h>
#include <string.h>
#include <unistd.h>

int main(int argc, char **argv) {
    int listenfd, connfd;
    socklen_t clilen;
    struct sockaddr_in cliaddr, servaddr;

## nfqueue_backdoor.md

      
              1 file
            
          
              5 forks
            
          
              0 comments
            
          
              5 stars
            
          
                leveryd
                / nfqueue_backdoor.md
            
            
              Last active
              March 20, 2024 06:00
            
              
                nfqueue_backdoor.c
              
          
    // https://github.com/irontec/netfilter-nfqueue-samples/blob/master/sample-helloworld.c
#include <string.h>
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <netinet/in.h>
#include <linux/types.h>
#include <linux/netfilter.h>
#include <libnetfilter_queue/libnetfilter_queue.h>
	import os


	class Encoder(object):
	@staticmethod
	def chr_to_hex(i):
	"""
	49 -> '\x31'
	:param i:
	:return:
	// 需要先创建文件 touch file1.txt、file2.txt、file3.txt
	package main

	import (
	"fmt"
	"syscall"
	"os/exec"
	"os"
	)
	import re
	import base64


	class GenerateBase64(object):
	@staticmethod
	def split_string_by_length(text, length):
	# 使用正则表达式匹配长度为指定值的子串
	pattern = f'.{{{length}}}'
	return [match.group(0) for match in re.finditer(pattern, text)]
	# this is python3 version poc for https://github.com/jas502n/CVE-2019-11580/blob/master/CVE-2019-11580.py

	import requests
	import sys

	banner = '''\n _______ ________ ___ ___ __ ___ __ __ _____ ___ ___
	/ ____\ \ / / ____\| \|__ \ / _ \/_ \|/ _ \ /_ /_ \| ____\|/ _ \ / _ \
	\| \| \ \ / /\| \|__ ______ ) \| \| \| \|\| \| (_) \|______\| \|\| \| \|__ \| (_) \| \| \| \|
	\| \| \ \/ / \| __\|______/ /\| \| \| \|\| \|\__, \|______\| \|\| \|___ \ > _ <\| \| \| \|
	\| \|____ \ / \| \|____ / /_\| \|_\| \|\| \| / / \| \|\| \|___) \| (_) \| \|_\| \|
	# coding:utf-8
	import argparse
	import base64
	import json
	import os
	from enum import Enum


	args = None
	<?php
	error_reporting(E_ALL);
	//设置无限请求超时时间
	set_time_limit(0);

	echo "<h2>TCP/IP Connection</h2>\n";

	$ip = '127.0.0.1';
	$port = 8099;
	#include <stdio.h>
	#include <sys/socket.h>
	#include <netdb.h>
	#include <string.h>
	#include <unistd.h>

	int main(int argc, char **argv) {
	int listenfd, connfd;
	socklen_t clilen;
	struct sockaddr_in cliaddr, servaddr;