I hereby claim:
- I am notdodo on github.
- I am edoardo_rosa (https://keybase.io/edoardo_rosa) on keybase.
- I have a public key whose fingerprint is 1220 9C4A 9062 019F 3D1D 9B77 BDC2 40F8 81A5 C413
To claim this, I am signing this object:
notdodo
/ mashell.py
Last active
October 14, 2020 05:45
Execute command using HEX or CHAR encoding. Bypass WAF and IPS filtering enabling RCE using xp_cmdshell: https://knifesec.com/evading-sql-injection-filters-to-get-rce/
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # Injector script to get a pseudo-interactive shell using xp_cmdshell | |
| # Source post: | |
| # Author: notdodo | |
| # https://twitter.com/_d_0_d_o_ | |
| # | |
| # USAGE: python3 ./mashell.py "whoami /priv" | |
| # | |
| import binascii | |
| import hashlib |
notdodo
/ lfi_generator.py
Created
October 27, 2019 20:36
Create PHP dockers (that are available on the official channel) to create a LFI test laboratory
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import glob | |
| import requests | |
| import subprocess | |
| import sys | |
| from bs4 import BeautifulSoup | |
| from grp import getgrgid | |
| from os import stat, path, chown | |
| from pwd import getpwuid |
notdodo
/ ssround.zsh
Last active
May 13, 2020 19:05
Stealth Scan a list of IPs/subnets with Nmap and multiple from random and multiple VPNs to avoid IP filtering.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env zsh | |
| trap ctrl_c INT | |
| # | |
| # author: notdodo | |
| # | |
| # Scan a set of IPs/subnets using multiple VPN profiles | |
| # | |
| # Default values of arguments | |
| local IPS="" | |
| local CREDENTIALS_FILE="./credentials.txt" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/bash | |
| # | |
| # Author notdodo | |
| # | |
| # | |
| ############################################################################### | |
| # SCENARIO #################################################################### | |
| ############################################################################### |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env zsh | |
| if ! hash lpass 2>/dev/null; then | |
| echo "Lastpass not installed" | |
| exit -1 | |
| fi | |
| if ! hash xsel 2>/dev/null; then | |
| echo "xsel not installed" | |
| exit -1 |
notdodo
/ keybase.md
Created
April 1, 2020 12:08
notdodo
/ extractrsa.py
Last active
March 8, 2022 18:46
Old script use to extract shared prime from a number of public RSA keys (i.e. generated by malware)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # | |
| # author: notdodo | |
| # | |
| import os | |
| import sqlite3 | |
| import itertools | |
| from multiprocessing import Pool | |
| try: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| && | |
| 0&&0 | |
| 1&&1 | |
| 119.18.20.137&&22022 | |
| 1234&&1234 | |
| 12345&&12345 | |
| 154.29.178.51&&22 | |
| 192.185.196.181&&22 | |
| 24online&&24online | |
| 2Wire&&2Wire |
notdodo
/ win_eventlog.py
Created
March 8, 2021 10:15
Basic script to create a entry on the Windows Event Viewer
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # pip install pywin32, obviously the script requires admin privs to write to the event logger | |
| import logging, logging.handlers | |
| def main(): | |
| ntl = logging.handlers.NTEventLogHandler("notdodo logging test") | |
| logger = logging.getLogger() | |
| logger.addHandler(ntl) | |
| logger.error("This is a test message") |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "$schema": "https://aka.ms/terminal-profiles-schema", | |
| // Add custom actions and keybindings to this array. | |
| // To unbind a key combination from your defaults.json, set the command to "unbound". | |
| // To learn more about actions and keybindings, visit https://aka.ms/terminal-keybindings | |
| "actions": [ | |
| // Copy and paste are bound to Ctrl+Shift+C and Ctrl+Shift+V in your defaults.json. | |
| // These two lines additionally bind them to Ctrl+C and Ctrl+V. | |
| // To learn more about selection, visit https://aka.ms/terminal-selection | |
| { |