Skip to content

Instantly share code, notes, and snippets.

View teixeira0xfffff's full-sized avatar

teixeira0xfffff

94 followers · 24 following
View GitHub Profile
@teixeira0xfffff
teixeira0xfffff / resources.bin
Created June 2, 2019 22:52
Redteam/Pentesting/Hacking/Cybersecurity/OSINT Resources
++++++ Basic knowledge requirements for cybersecurity and hacking ++++++
These are the basic competencies expected (and tested for during the 1st in person interview) by a large, very visible InfoSec company I think it is a good base competency list for anyone looking to get into an Infosec career (with specialization plus and some programming /scripting ability) or learn cybersecurity/hacking as a hobby:
Networking: Good understanding of OSI layer model / Understating of communication flow through each layer / Good understanding of functions of each layer / Understanding of major protocols in each layer / In-depth understanding Layer 3 & Layer 4 protocols  IP, ICMP Protocols (layer 3) TCP, UDP Protocols (layer 4)
Overview of TCP/IP Layer model: ARP / Understanding of Client & Server communication model / Ports common services run on / Ephemeral port vs Well known ports
Understanding of major (everyday Layer 7) services/protocols: DNS o DHCP o HTTP HTTP Header Fields HTTP Status Codes  How HTTP mainta
@teixeira0xfffff
teixeira0xfffff / search_engines.csv
Last active August 8, 2025 19:12
Cybersecurity search engines for researchers [source https://twitter.com/danielmakelley/status/1570910911078207488]
Name URL Description
Dehashed https://www.dehashed.com/ View leaked credentials
SecurityTrails https://securitytrails.com/ Extensive DNS data
DorkSearch—Really https://dorksearch.com/ Really fast Google dorking
ExploitDB https://www.exploit-db.com/ Archive of various exploits
ZoomEye https://www.zoomeye.org/project?id=firewall Gather information about targets
Pulsedive—Search https://pulsedive.com/ Search for threat intelligence
GrayHatWarefare https://buckets.grayhatwarfare.com/ Search public S3 buckets
PolySwarm https://polyswarm.io/ Scan files and URLs for threats
Fofa https://github.com/wgpsec/fofa_viewer Search for various threat intelligence
@teixeira0xfffff
teixeira0xfffff / MSAcpi_ThermalZoneTemperature.ps1
Created June 18, 2019 05:36
Anti-VM Techniques with MSAcpi_ThermalZoneTemperature
function Get-AntiVMwithTemperature {
$t = Get-WmiObject MSAcpi_ThermalZoneTemperature -Namespace "root/wmi"
$valorTempKelvin = $t.CurrentTemperature / 10
$valorTempCelsius = $valorTempKelvin - 273.15
$valorTempFahrenheit = (9/5) * $valorTempCelsius + 32
return $valorTempCelsius.ToString() + " C : " + $valorTempFahrenheit.ToString() + " F : " + $valorTempKelvin + "K"
}
@teixeira0xfffff
teixeira0xfffff / twitterOSINT
Last active October 26, 2024 22:16
Twitter advanced search for OSINT purpose
▪️ containing both “watching” and “now”. This is the default operator **watching now**
▪️ containing the exact phrase “happy hour”: **“happy hour”**
▪️ containing either “love” or “hate” (or both): **love OR hate**
▪️ containing “beer” but not “root”: **beer -root**
▪️ containing the hashtag **“haiku”**
@teixeira0xfffff
teixeira0xfffff / output.csv
Last active August 28, 2024 01:17
output.csv
We can make this file beautiful and searchable if this error is corrected: Unclosed quoted field in line 2.
host,domain,ip,jarm,cert,as_number,link,title,port,country
https://www.liberarseupedido.com,liberarseupedido.com,50.116.112.134,29d29d00029d29d00042d42d000000d0979a504319f0fa83c2f00f881b6a1d,"Version: v3
Serial Number: 369177537339892390110303818988612930906409
Signature Algorithm: SHA256-RSA
Issuer:
Country: US
Organization: Let's Encrypt
CommonName: R11
@teixeira0xfffff
teixeira0xfffff / ransomwarefeed.csv
Last active August 18, 2024 12:54
Ransomware Feeds
Ransomware Name URL Status
AVADDON http://avaddongun7rngel.onion/ Online
SODINOKIBI (REVIL) http://dnpscnbaix6nkwvystl3yxglz7nteicqrou3t75tpcc5532cztc46qyd.onion/ Online
NEFILIM http://hxt254aygrsziejn.onion/ Online
VFOKX (1) http://vfokxcdzjbpehgit223vzdzwte47l3zcqtafj34qrr26htjo4uf3obid.onion/ Online
VFOKX (2) http://746pbrxl7acvrlhzshosye3b3udk4plurpxt2pp27pojfhkkaooqiiqd.onion/ Online
MARKETO (deep) https://marketo.cloud/ Online
MARKETO (dark) http://g5sbltooh2okkcb2.onion/ Online
LORENZ http://lorenzmlwpzgxq736jzseuterytjueszsvznuibanxomlpkyxk6ksoyd.onion/ Online
CONTI/RYUK http://continewsnv5otx5kaoje7krkto2qbu3gtqef22mnr7eaxw3y6ncz3ad.onion/ Online
@teixeira0xfffff
teixeira0xfffff / gist:89875a45ccc46b038a0ce2f7d5a10472
Created February 19, 2024 15:17
Decrypter for DexCrypto
class DexCrypto:
KEY = "qtfreet"
hexString = "0123456789ABCDEF"
@staticmethod
def FxIjsF(p0):
i = 2
i1 = 1
i2 = 0
ointArray = [0] * 27
@teixeira0xfffff
teixeira0xfffff / AsyncRAT_Server.csv
Created December 4, 2023 11:10
AsyncRAT Server listed on Fofa search engine https://en.fofa.info/
host ip
51.89.190.17:8088 51.89.190.17
185.81.157.148:5555 185.81.157.148
51.89.190.17:8000 51.89.190.17
88.119.175.231:6666 88.119.175.231
185.16.38.41:20000 185.16.38.41
193.26.115.217:7777 193.26.115.217
173.212.250.19:5000 173.212.250.19
88.229.10.198:20000 88.229.10.198
37.19.216.81:7777 37.19.216.81
@teixeira0xfffff
teixeira0xfffff / gist:c5333504841978a359c540f837ab0a18
Created May 27, 2019 00:25
MSBuild - Property functions
<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003" >
<Target Name="Hello" >
<!-- Call ANY .NET API -->
<!--
Author: Casey Smith, Twitter: @subTee
License: BSD 3-Clause
@teixeira0xfffff
teixeira0xfffff / evilTwin.php
Created June 15, 2020 23:39
Auto Visitor [decoded version]
<?php
system("clear");
echo "\e[32m
_ _ __ ___ _ _
/ \ _ _| |_ ___ \ \ / (_)___(_) |_ ___ _ __
/ _ \| | | | __/ _ \ \ \ / /| / __| | __/ _ \| '__|
/ ___ \ |_| | || (x) | \ V / | \__ \ | || (x) | |
/_/ \_\__,_|\__\___/ \_/ |_|___/_|\__\___/|_|
\e[39m(c) Evil Twin
\n";