Skip to content

Instantly share code, notes, and snippets.

View michelep's full-sized avatar
🎯
Focusing

Michele "O-Zone" michelep

🎯
Focusing
View GitHub Profile
@michelep
michelep / convert.sh
Created December 29, 2023 14:35
Quick and dirty bash script to convert all .heic files in a directory to .jpg format
#!/bin/bash
# Set quality of JPEG files: value 0 (min) to 100 (max)
QUALITY=100
for file in *.heic; do
if [ -f "$file" ]; then
fname=$(basename "$file" .heic)
heif-convert -q$QUALITY $file $fname.jpg
fi
@michelep
michelep / ransomware_dls.txt
Last active December 13, 2023 19:05
Ransomware DLS
Hunters International - https://hunters55rdxciehoqzwv7vgyv6nt37tbwax2reroyzxhou7my5ejyid.onion/
Play - http://k7kg3jqxang3wh7hnmaiokchk7qoebupfgoik6rha6mjpzwupwtj25yd.onion
Monti - http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/
BianLian - http://bianlianlbc5an4kgnay3opdemgcryg2kpfcbgczopmm3dnbz3uaunad.onion/
Rhysida - http://rhysidafohrhyy2aszi7bm32tnjat5xri65fopcxkdfxhi4tidsg7cad.onion/
LockBit 3.0 - http://lockbitapt6vx57t3eeqjofwgcglmutr3a35nygvokja5uuccip4ykyd.onion/
LockBit 3.0 2 - http://lockbit7z2jwcskxpbokpemdxmltipntwlkmidcll2qirbu7ykg46eyd.onion/
Alphv - http://alphvmmm27o3abo3r2mlmjrpdmzle3rykajqc5xsj7j7ejksbpsa36ad.onion/?page=1
Snatch - http://hl66646wtlp2naoqnhattngigjp5palgqmbwixepcjyq5i534acgqyad.onion/
Vice Society - http://vsociethok6sbprvevl4dlwbqrzyhxcxaqpvcqt5belwvsuxaxsutyad.onion/
@michelep
michelep / rt4_passwd.sh
Created October 17, 2023 12:57
RT4 password change script
#!/bin/bash
echo "=========================="
echo "RT4 password change script"
echo "=========================="
read -p "Username: " username
if [ ${#username} -lt 2 ]; then
echo "No valid username entered."
exit
fi
read -p "New password for $username: " -s password
@michelep
michelep / rt-manteinance.sh
Created August 22, 2023 09:52
rt-shredder manteinance script
#!/bin/bash
# Make sure to be in the right directory (fit to your RT4 installation)
cd /opt/rt4
# Get the current year
current_year=$(date +'%Y')
# Subtract two years from the current year
two_years_before=$((current_year - 2))
@michelep
michelep / gist:baf8f99afc4aee00a179f9fd780dd862
Created August 19, 2023 14:25
Search Engines for Cybersecurity Researchers
https://www.dehashed.com/ View leaked credentials
https://www.exploit-db.com/ Archive of various exploits
https://pulsedive.com/ Search for threat intelligence
https://otx.alienvault.com/ Extensive threat intelligence feed
https://securitytrails.com/ Extensive DNS data
https://www.zoomeye.org/ Gather information about targets
https://buckets.grayhatwarfare.com/ Search public S3 buckets
https://grep.app/ Search across a half million git repos
https://crt.sh/ Search for certs that have been logged by CT
https://dorksearch.com/ Really fast Google dorking
@michelep
michelep / gist:b21f00107714be0a7befbaa2ba70c19a
Created June 13, 2023 13:10
Linux MINT resize encrypted LVS partition
-shrink root
$ sudo cryptsetup luksOpen /dev/sda1/ mint-vg
$ sudo lvs
$ sudo lvresize -L -1.2G --resizefs mint-vg/root
-expand swap
$ sudo lvresize -l +100%FREE /dev/mint-vg/swap_1
$ sudo mkswap /dev/mint-vg/swap_1
$ sudo lvs
$ reboot
@michelep
michelep / megabackup.sh
Last active October 29, 2022 21:09
Server backup to MEGA free space
#!/bin/bash
#
# backup mysql dbs, /etc folder and all subfolders inside /var/www. Encrypt it using aes256 and upload to MEGA.nz /backup folder
# 1) have a mega.nz account for 50GB of space
# 2) install MEGAcmd (https://mega.nz/cmd)
# 3) change CONFIGURATION lines to fit your needs and copy to /etc/cron.daily ;-)
# CONFIGURATION
SERVER="[name of the server]"
DAYS_TO_BACKUP=3
@michelep
michelep / utility.txt
Last active October 10, 2022 07:23
Utility
CHECK TOR CONNECTION
===
curl --socks5 localhost:9050 --socks5-hostname localhost:9050 -s https://check.torproject.org/ | cat | grep -m 1 Congratulations | xargs
INSTALL PYTHON requirements.txt dependencies
===
pip3 install -r requirements.txt
DETECT PUBLIC IP
===
@michelep
michelep / ip-block.sh
Created June 23, 2022 11:11
Wazuh 4.3.x active response script
#!/bin/sh
LOCAL=`dirname $0`
ME=`basename "$0"`
read -r LINE
cd $LOCAL
cd ../
PWD=`pwd`
@michelep
michelep / gist:e57307846ed7b3eaad68d8d98fee7758
Created May 5, 2022 11:08
Wireshark remote capture on Linux server
1) Creo utente per tcpdump
groupadd tcpdump
addgroup <username> tcpdump
chown root.tcpdump /usr/sbin/tcpdump
chmod 0750 /usr/sbin/tcpdump
setcap "CAP_NET_RAW+eip" /usr/sbin/tcpdump
2) Imposto l'accesso senza password (con chiave SSH)