Skip to content

Instantly share code, notes, and snippets.

😎
Focusing

Sabri pwnsdx

😎
Focusing
Block or report user

Report or block pwnsdx

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@pwnsdx
pwnsdx / Tutorial.md
Last active Dec 22, 2018
Change your MAC address on iOS 7-8 (not working on iOS 9 atm)
View Tutorial.md

Hi there,

Change your MAC address on iOS 7-8

Changing your MAC address can be extremely useful in some situation. Let me give you a few:

  • You are limited by time on public networks and everyone want more than just 15 minutes of internet.
  • You want to regenerate your UDID
  • A lot of governments rely on this to find you and then intercept your datas. In France for example, secret services have full access to public Wi-Fi and therefore can locate you by using your MAC address.
@pwnsdx
pwnsdx / torrc-defaults
Last active Jul 11, 2019
Prevent Tor from connecting to Five-Eyes countries
View torrc-defaults
# Add this in the Tor config file
# Exclude Nodes of all of these countries
# Five Eyes: U.S., Australia, Canada, New Zealand, U.K. (also added France because it's becoming worst than the Five Eyes)
ExcludeNodes {fr}
ExcludeExitNodes {us},{au},{ca},{nz},{gb},{fr}
@pwnsdx
pwnsdx / org.nsa.pf.rules
Last active Aug 30, 2019
OS X Firewall Packet Filter (pfctl): Killswitch + Protection
View org.nsa.pf.rules
# Put this file in /etc/pf.anchors/
# Options
set block-policy drop
set fingerprints "/etc/pf.os"
set ruleset-optimization basic
set skip on lo0
# Interfaces
inet_define = "en0"
@pwnsdx
pwnsdx / Tutorial.md
Last active Dec 22, 2018
How to erase Sublime Text 3 interesting logs
View Tutorial.md

Hi there,

How to erase Sublime Text 3 interesting logs

Yes, Sublime Text is logging a lot of interesting informations in its .sublime_session file like everything you search in files and the path of each files you open, forever.

How do I prevent that?

You can't. Unless by creating a symlink of the .sublime_session file to /dev/null which is, a bad practice for this software I think. Instead, I can only suggest you to execute the command below from time to time. It will securely remove the file in 7 passes.

@pwnsdx
pwnsdx / 62078.md
Last active Sep 4, 2019
How to finally disable this ******* Wi-Fi Sync port (62078) on iOS (testers wanted)
View 62078.md

Hi there,

Why should I disable this port?

Apple enable this port by default if you want Wi-Fi Sync. The problem is, I (and probably you) never used this so this port should not be open. Enabling this port by default is a security risk as there is always an undocumented service (lockdownd) listening on this port.

This is an non-exhaustive list of what you are exposing to if you don't close this port:

  • If an attacker get the pairing keys of your iDevice, he can dump the whole content of your device transparently as soon as he is on the same network as you (at Home, Work, in a Café, in a Fast Food etc) or if he have access to your cellular network (yes, the port is open on all interfaces including cellular) e.g. if the NSA have access to AT&T network or if DGSE have access to Orange network (which is true: http://www.france24.com/fr/20140320-dgse-renseignement-espionage-nsa-donnees-operateur-orange-snowden/ ) or even if your neighbor have set up a IMSI-Catcher.
  • It make the iOS device easily identifiab
@pwnsdx
pwnsdx / Tutorial.md
Last active Dec 22, 2018
How to securely erase logs files on OS X
View Tutorial.md

Hi there,

How to erase securely logs files on OS X

There is a lot of interesting informations in the system/user logs and they are never deleted. Erasing logs securely will prevent hackers and forensics from retrieving them by using sophisticated tools.

Precisions

  • The process may take some time to complete (depending on your logs size)
  • Don't forget to exclude these directories from Time Machine (if you use it) too!
@pwnsdx
pwnsdx / Tutorial.md
Last active Jul 31, 2019
How to secure correctly your OpenVPN connection
View Tutorial.md

Hi there,

How to secure correctly your OpenVPN connection you said?

Yes! This little code snippet will improve drasticaly the strength of your OpenVPN connection while keeping very good performances. You just have to add the code available below at the end of you configuration file.

Important precisions

  • It may not work everywhere. @Korben (Twitter) got a problem because his server does not support ECDHE, if you can't use this configuration then try to change ECDHE by DHE in the tls-cipher parameters. It should works but it will consume more battery if you are on a mobile/laptop because it will not use Elliptic curves to exchange the key.
  • You should check if your processor have AES-NI instructions. If yes then the key exchange should be protected from SPA (Simple Power Analysis) and DPA (Differencial Power Analysis) attacks + AES will be a lot faster.
@pwnsdx
pwnsdx / destroyfvkeyonstandby.sh
Last active Dec 22, 2018
Destroy FileVault keys on standby
View destroyfvkeyonstandby.sh
# Precision: Only works on 2012+ Apple computers
sudo pmset -a destroyfvkeyonstandby 1 hibernatemode 25
@pwnsdx
pwnsdx / openvpn.conf
Last active Dec 22, 2018
Verify OpenVPN CA/CN in Node.JS (VPN.ac used here)
View openvpn.conf
# Add this in the config file
tls-verify "/usr/local/bin/node [absolute path]/verify.js 'C=RO, ST=BUC, O=VPN.AC, OU=VPN.AC CA, CN=VPN.AC, emailAddress=info@vpn.ac' ch1-4096"
@pwnsdx
pwnsdx / gist:71c421abf2a45ac4c6df
Created Jan 30, 2016
Build development version of OpenVPN with latest version of LibreSSL
View gist:71c421abf2a45ac4c6df
# Install mandatory dependencies
brew install --build-from-source automake autoconf libtool pkg-config
# Install LibreSSL from sources
brew install --build-from-source libressl
# LDFLAGS: -L/usr/local/opt/libressl/lib
# CPPFLAGS: -I/usr/local/opt/libressl/include
# Clone OpenVPN from the repo
cd $HOME/Desktop && git clone https://github.com/OpenVPN/openvpn && mv openvpn openvpn-dev-2.4.0 && cd openvpn-dev-2.4.0
You can’t perform that action at this time.