Skip to content

Instantly share code, notes, and snippets.

Steeve Barbeau steeve85

Block or report user

Report or block steeve85

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View keybase.md

Keybase proof

I hereby claim:

  • I am steeve85 on github.
  • I am sbarbeau (https://keybase.io/sbarbeau) on keybase.
  • I have a public key ASBLJwYLqo8FZ781PNfybDxHV2GMK6Xke6kTDQNCwcnLngo

To claim this, I am signing this object:

View foxyproxy.json
{
"mode": "patterns",
"proxySettings": [
{
"address": "127.0.0.1",
"port": 8080,
"username": "",
"password": "",
"type": 1,
"title": "127.0.0.1:8080",
@steeve85
steeve85 / OpenSSH Username Enumeration
Last active Sep 7, 2018
OpenSSH Username Enumeration
View OpenSSH Username Enumeration
http://www.openwall.com/lists/oss-security/2018/08/15/5
Date: Wed, 15 Aug 2018 09:05:58 -0700
From: Qualys Security Advisory <qsa@...lys.com>
To: oss-security@...ts.openwall.com
Subject: OpenSSH Username Enumeration
Hi all,
We sent the following email to openssh@...nssh.com and
@steeve85
steeve85 / bucket-disclose.sh
Created Jul 7, 2018 — forked from fransr/bucket-disclose.sh
Using error messages to decloak an S3 bucket. Uses soap, unicode, post, multipart, streaming and index listing as ways of figure it out. You do need a valid aws-key (never the secret) to properly get the error messages
View bucket-disclose.sh
#!/bin/bash
# Written by Frans Rosén (twitter.com/fransrosen)
_debug="$2" #turn on debug
_timeout="20"
#you need a valid key, since the errors happens after it validates that the key exist. we do not need the secret key, only access key
_aws_key="AKIA..."
H_ACCEPT="accept-language: en-US,en;q=0.9,sv;q=0.8,zh-TW;q=0.7,zh;q=0.6,fi;q=0.5,it;q=0.4,de;q=0.3"
H_AGENT="user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.146 Safari/537.36"
@steeve85
steeve85 / content_discovery_all.txt
Created Jun 25, 2018 — forked from jhaddix/content_discovery_all.txt
a masterlist of content discovery URLs and files (used most commonly with gobuster)
View content_discovery_all.txt
This file has been truncated, but you can view the full file.
`
~/
~
ים
___
__
_
@steeve85
steeve85 / cloud_metadata.txt
Created Apr 25, 2018 — forked from jhaddix/cloud_metadata.txt
Cloud Metadata Dictionary useful for SSRF Testing
View cloud_metadata.txt
## AWS
# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories
http://169.254.169.254/latest/user-data
http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/ami-id
http://169.254.169.254/latest/meta-data/reservation-id
http://169.254.169.254/latest/meta-data/hostname
http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key
@steeve85
steeve85 / weesms.py
Created Apr 12, 2015
Send and receive SMS Text Messages in Weechat
View weesms.py
# -*- coding:utf-8 -*-
from __future__ import unicode_literals
import weechat, csv, re, gammu, time, unicodedata
"""
README
======
2015-04-12: v0.1 - Initial/draft/beta version
@steeve85
steeve85 / redditInfosecJobs.py
Last active Aug 29, 2015
List Infosec Jobs on Reddit
View redditInfosecJobs.py
#!/usr/bin/env python
import praw, datetime, time
class Reddit:
def __init__(self):
self.submissions = ['2s9m3i', '2rijej'] # to update when they change
self.offers = {}
self.r = praw.Reddit('Infosec jobs on Reddit')
@steeve85
steeve85 / git-clone_github-starred-projects.py
Last active May 30, 2018
Simple script to git clone each GitHub project starred by a user.
View git-clone_github-starred-projects.py
#!/usr/bin/env python
import urllib2, json, os, subprocess
# Simple script to git clone each project starred by a user.
# /!\ There is an API rate limit. To increase it, authenticated actions are needed -_-
# http://developer.github.com/v3/#rate-limiting
user = "steeve85"
i = 1
json_data = None
View gist:5394539
if !exists("au_loaded")
let au_loaded = 1
augroup rb
au FileType ruby set shiftwidth=4 tabstop=4 softtabstop=4 textwidth=78
au FileType ruby set noexpandtab
au FileType ruby hi BogusWhitespace ctermbg=darkgreen guibg=darkgreen
au FileType ruby match BogusWhitespace /\s\+$\|^\t\+ \+\|^ \+\t*/
augroup END
endif
You can’t perform that action at this time.