Note: on legacy intel system the path may be /usr/local/etc/clamav instead of /opt/homebrew/etc/clamav/
$ brew install clamav
$ cd /opt/homebrew/etc/clamav/
$ cp freshclam.conf.sample freshclam.conf
. | |
.. | |
........ | |
@ | |
* | |
*.* | |
*.*.* | |
🎠|
/* | |
* (un)comment correct payload first (x86 or x64)! | |
* | |
* $ gcc cowroot.c -o cowroot -pthread | |
* $ ./cowroot | |
* DirtyCow root privilege escalation | |
* Backing up /usr/bin/passwd.. to /tmp/bak | |
* Size of binary: 57048 | |
* Racing, this may take a while.. | |
* /usr/bin/passwd overwritten |
import requests | |
import re | |
import sys | |
from multiprocessing.dummy import Pool | |
def robots(host): | |
r = requests.get( | |
'https://web.archive.org/cdx/search/cdx\ | |
?url=%s/robots.txt&output=json&fl=timestamp,original&filter=statuscode:200&collapse=digest' % host) |
# IMPORTANT! | |
# This gist has been transformed into a github repo | |
# You can find the most recent version there: | |
# https://github.com/Neo23x0/auditd | |
# ___ ___ __ __ | |
# / | __ ______/ (_) /_____/ / | |
# / /| |/ / / / __ / / __/ __ / | |
# / ___ / /_/ / /_/ / / /_/ /_/ / | |
# /_/ |_\__,_/\__,_/_/\__/\__,_/ |
#!/bin/sh | |
# | |
# `7MN. `7MF' | |
# __, MMN. M | |
#`7MM M YMb M pd""b. | |
# MM M `MN. M (O) `8b | |
# MM M `MM.M ,89 | |
# MM M YMM ""Yb. | |
#.JMML..JML. YM 88 | |
# (O) .M' |
// Open direct messages window, paste this into console. | |
function deleteNextConversation() | |
{ | |
if (!(dm = document.getElementsByClassName("DMInbox-conversationItem")[0])) { | |
clearInterval(tmr) | |
return; | |
} | |
dm.firstChild.click(); | |
setTimeout('document.getElementsByClassName("js-actionDeleteConversation")[0].click()', 1000); |
#!/usr/bin/env ruby | |
# Implement CIS Benchmarks for AWS Section 3.x | |
# Details on each benchmark from https://benchmarks.cisecurity.org/downloads/show-single/?file=awsfoundations.100 | |
# name should be in camelcase since we'll use it for filter and alarm names | |
filters = [ | |
{ | |
benchmark: '3.1', |
#!/usr/bin/sudo sh | |
## ruby_revealer.sh -- decrypt obfuscated GHE .rb files. 2.0.0 to 2.3.1+. | |
## From `strings ruby_concealer.so`: | |
## | |
## > This obfuscation is intended to discourage GitHub Enterprise customers | |
## > from making modifications to the VM. | |
## | |
## Well, good, as long as its not intended to discourage *me* from doing this! |
#!/usr/bin/env python3 | |
import sys | |
import getopt | |
from PIL import Image | |
xterm256colors = [ # http://pln.jonas.me/xterm-colors | |
(0, (0x00, 0x00, 0x00)), # SYSTEM | |
(1, (0x80, 0x00, 0x00)), # SYSTEM | |
(2, (0x00, 0x80, 0x00)), # SYSTEM | |
(3, (0x80, 0x80, 0x00)), # SYSTEM |