Pablo Ramos pramos
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "flag" | |
| "fmt" | |
| "log" | |
| "net" | |
| "time" | |
| ) |
pramos
/ httpdumper.go
Last active
February 7, 2023 17:23
Go Script to Parse Network or PCAPs and Extract Files from HTTP Streams
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "bufio" | |
| "bytes" | |
| "compress/gzip" | |
| "flag" | |
| "fmt" | |
| "io" | |
| "io/ioutil" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "flag" | |
| "fmt" | |
| "log" | |
| "time" | |
| "github.com/google/gopacket" | |
| "github.com/google/gopacket/pcap" |
pramos
/ devices.go
Last active
July 17, 2022 20:38
Go Script to enumerate all available network interfaces on a machine. Relies on gopacket.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "log" | |
| "github.com/google/gopacket/pcap" | |
| ) | |
| func main() { |
pramos
/ pcap_file_extraction.py
Created
March 13, 2022 13:47
Python Script to extract PE Files from PCAP Files using Scapy
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import logging | |
| logging.getLogger("scapy.runtime").setLevel(logging.ERROR) | |
| import argparse | |
| from pathlib import Path | |
| from scapy.all import * | |
| from scapy.all import TCP | |
| format_str = "%(asctime)s - %(name)s - %(levelname)s - %(message)s" | |
| def get_http_headers(http_payload): |
pramos
/ pcap_parsing_rdpcap.py
Last active
August 2, 2021 19:50
Extracting URLs from pcap file with Scapy using rdpcap()
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys | |
| import re | |
| from scapy.all import * | |
| from memory_profiler import profile | |
| @profile | |
| def get_url_from_payload(payload): | |
| http_header_regex = r"(?P<name>.*?): (?P<value>.*?)\r\n" | |
| start = payload.index(b"GET ") +4 |
pramos
/ pcap_parsing_pcapreader.py
Last active
August 2, 2021 19:50
Extracting URLs from pcap file with Scapy using PcapReader()
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys | |
| import re | |
| from scapy.all import * | |
| from memory_profiler import profile | |
| @profile | |
| def get_url_from_payload(payload): | |
| http_header_regex = r"(?P<name>.*?): (?P<value>.*?)\r\n" | |
| start = payload.index(b"GET ") +4 |
pramos
/ tmux.conf
Created
August 19, 2018 20:18
— forked from spicycode/tmux.conf
The best and greatest tmux.conf ever
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # 0 is too far from ` ;) | |
| set -g base-index 1 | |
| # Automatically set window title | |
| set-window-option -g automatic-rename on | |
| set-option -g set-titles on | |
| #set -g default-terminal screen-256color | |
| set -g status-keys vi | |
| set -g history-limit 10000 |