With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| qemu-system-aarch64 -smp 2 -m 1024 -M virt -bios QEMU_EFI.fd -nographic \ | |
| -device virtio-blk-device,drive=image \ | |
| -drive if=none,id=image,file=xenial-server-cloudimg-arm64-uefi1.img \ | |
| -device virtio-blk-device,drive=cloud \ | |
| -drive if=none,id=cloud,file=cloud.img \ | |
| -netdev user,id=user0 -device virtio-net-device,netdev=user0 -redir tcp:2222::22 \ | |
| -cpu cortex-a57 |
lithackr
/ InstallUtil-Shellcode-cs
Created
May 17, 2017 04:19
From https://gist.github.com/subTee/408d980d88515a539672
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Net; | |
| using System.Diagnostics; | |
| using System.Reflection; | |
| using System.Configuration.Install; | |
| using System.Runtime.InteropServices; | |
| /* | |
| Author: Casey Smith, Twitter: @subTee | |
| License: BSD 3-Clause |
merlinxcy
/ kerberos_attacks_cheatsheet.md
Created
September 17, 2021 02:27
— forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
yulewei
/ btrace-users-guide.md
Last active
December 2, 2021 04:16
7MinSec
/ mostly_painless_cuckoo_sandbox_install.md
Last active
July 21, 2022 02:27
Mostly painless Cuckoo Sandbox install
I had a heck of a time getting a Cuckoo sandbox running, and below I hope to help you get one up and running relatively quickly by detailing out the steps and gotchas I stumbled across along the way. I mention this in the references at the end of this gist, but what you see here is heavily influenced by this article from Nviso
- Setup a Ubuntu 16.04 64-bit desktop VM (download here) in VMWare with the following properties:
- 100GB hard drive
- 2 procs
- 8 gigs of RAM
rsudip90
/ nullHandle.go
Last active
February 1, 2023 03:34
How I handled the null possible value in a sql database row in golang?
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "database/sql" | |
| "encoding/json" | |
| "fmt" | |
| "reflect" | |
| "time" | |
| "github.com/go-sql-driver/mysql" |
geyslan
/ shell_bind_tcp.asm
Last active
October 7, 2023 10:00
Shell Bind TCP in Assembly (Linux/x86) - forlife
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ; This is a snippet of the original file in https://github.com/geyslan/SLAE/blob/master/1st.assignment/shell_bind_tcp.asm | |
| global _start | |
| section .text | |
| _start: | |
| ; syscalls (/usr/include/asm/unistd_32.h) | |
| ; socketcall numbers (/usr/include/linux/net.h) |
JoshuaChi
/ kafka集群安全认证配置.md
Created
July 4, 2019 03:10
— forked from fuyuntt/kafka集群安全认证配置.md
These are the steps I used to get Ubuntu ARM aarch64 running with QEMU on OSX.
Get Ubuntu Image and QEMU EFI:
wget https://cloud-images.ubuntu.com/releases/16.04/release/ubuntu-16.04-server-cloudimg-arm64-uefi1.img
wget https://releases.linaro.org/components/kernel/uefi-linaro/latest/release/qemu64/QEMU_EFI.fd
xpn
/ env_var_spoofing_poc.cpp
Created
June 6, 2020 21:25
A very rough x64 POC for spoofing environment variables (similar to argument spoofing) with a focus on setting the COMPlus_ETWEnabled=0 var used to disable ETW in .NET
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // A very rough x64 POC for spoofing environment variables similar to argument spoofing with a focus on | |
| // setting the COMPlus_ETWEnabled=0 var for disabling ETW in .NET. | |
| // | |
| // Works by launching the target process suspended, reading PEB, updates the ptr used to store environment variables, | |
| // and then resuming the process. | |
| // | |
| // (https://blog.xpnsec.com/hiding-your-dotnet-complus-etwenabled/) | |
| #define INJECT_PARAM L"COMPlus_ETWEnabled=0\0\0\0" | |
| #define INJECT_PARAM_LEN 43 |
OlderNewer