Yunus YILDIRIM th3gundy

## expose.sh
# For example, I have a redis container, I want it only serve for specific IP addresses: 172.31.101.37, 172.31.101.38
$ docker run -d -p 6379:6379 redis:2.8

# After start redis container, the iptables looks like this:
$ iptables -t filter -nL
Chain DOCKER (1 references)
target     prot opt source               destination
ACCEPT  tcp  --  0.0.0.0/0            172.17.0.2           tcp dpt:6379

# Get the IP address of redis container

## main.py
import subprocess, socketio
from enum import Enum
import requests
from time import sleep
from PIL import ImageGrab
import os
from datetime import datetime, timedelta
from pynput.keyboard import Listener
allowed_methods = {
 'get','post','put','options','delete','patch','head'}

## change_vmid.sh
oldVMID=111
newVMID=999

# change node name with yours
sed -i "s/$oldVMID/$newVMID/g" /etc/pve/nodes/security/qemu-server/$oldVMID.conf
mv /etc/pve/nodes/security/qemu-server/$oldVMID.conf /etc/pve/nodes/security/qemu-server/$newVMID.conf

mv /vm-storage/images/$oldVMID/ /vm-storage/images/$newVMID/
cd /vm-storage/images/$newVMID/
ls

## windows_hardening.cmd
:: Windows 10 Hardening Script
:: This is based mostly on my own personal research and testing. My objective is to secure/harden Windows 10 as much as possible while not impacting usability at all. (Think being able to run on this computer's of family members so secure them but not increase the chances of them having to call you to troubleshoot something related to it later on). References for virtually all settings can be found at the bottom. Just before the references section, you will always find several security settings commented out as they could lead to compatibility issues in common consumer setups but they're worth considering.
:: Obligatory 'views are my own'. :)
:: Thank you @jaredhaight for the Win Firewall config recommendations!
:: Thank you @ricardojba for the DLL Safe Order Search reg key!
:: Thank you @jessicaknotts for the help on testing Exploit Guard configs and checking privacy settings!
:: Best script I've found for Debloating Windows 10: https://github.com/Sycnex/Windows10Debloater
:

## c99-nl.py
#!/usr/bin/env python3
# v.0.2 | twitter.com/si9int
import requests, sys
from bs4 import BeautifulSoup as bs

domain = sys.argv[1]
subdomains = []

def get_csrf_params():
    csrf_params = {}

## CVE-2020-8515.go
package main


/*
CVE-2020-8515: DrayTek pre-auth remote root RCE

Mon Mar 30 2020 -  0xsha.io


Affected:

## ssl-check.py
# -*- encoding: utf-8 -*-
# requires a recent enough python with idna support in socket
# pyopenssl, cryptography and idna

from OpenSSL import SSL
from cryptography import x509
from cryptography.x509.oid import NameOID
import idna

from socket import socket

## web-servers.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                th3gundy
                / web-servers.md
            
            
              Created
              January 18, 2020 09:13
                — forked from willurd/web-servers.md
            
              
                Big list of http static server one-liners
              
          
    Each of these commands will run an ad hoc http static server in your current (or specified) directory, available at http://localhost:8000. Use this power wisely.
Discussion on reddit.
Python 2.x

$ python -m SimpleHTTPServer 8000

  
## scanio.sh
#!/bin/bash
# Usage : ./scanio.sh <save file>
# Example: ./scanio.sh cname_list.txt

# Premium
function ech() {
  spinner=( "|" "/" "-" "\\" )
  while true; do
    for i in ${spinner[@]}; do
      echo -ne "\r[$i] $1"

## cve-2019-6340.py
#!/usr/bin/env python3

# CVE-2019-6340 Drupal <= 8.6.9 REST services RCE PoC
# 2019 @leonjza

# Technical details for this exploit is available at:
#   https://www.drupal.org/sa-core-2019-003
#   https://www.ambionics.io/blog/drupal8-rce
#   https://twitter.com/jcran/status/1099206271901798400
	# For example, I have a redis container, I want it only serve for specific IP addresses: 172.31.101.37, 172.31.101.38
	$ docker run -d -p 6379:6379 redis:2.8

	# After start redis container, the iptables looks like this:
	$ iptables -t filter -nL
	Chain DOCKER (1 references)
	target prot opt source destination
	ACCEPT tcp -- 0.0.0.0/0 172.17.0.2 tcp dpt:6379

	# Get the IP address of redis container
	import subprocess, socketio
	from enum import Enum
	import requests
	from time import sleep
	from PIL import ImageGrab
	import os
	from datetime import datetime, timedelta
	from pynput.keyboard import Listener
	allowed_methods = {
	'get','post','put','options','delete','patch','head'}
	oldVMID=111
	newVMID=999

	# change node name with yours
	sed -i "s/$oldVMID/$newVMID/g" /etc/pve/nodes/security/qemu-server/$oldVMID.conf
	mv /etc/pve/nodes/security/qemu-server/$oldVMID.conf /etc/pve/nodes/security/qemu-server/$newVMID.conf

	mv /vm-storage/images/$oldVMID/ /vm-storage/images/$newVMID/
	cd /vm-storage/images/$newVMID/
	ls
	:: Windows 10 Hardening Script
	:: This is based mostly on my own personal research and testing. My objective is to secure/harden Windows 10 as much as possible while not impacting usability at all. (Think being able to run on this computer's of family members so secure them but not increase the chances of them having to call you to troubleshoot something related to it later on). References for virtually all settings can be found at the bottom. Just before the references section, you will always find several security settings commented out as they could lead to compatibility issues in common consumer setups but they're worth considering.
	:: Obligatory 'views are my own'. :)
	:: Thank you @jaredhaight for the Win Firewall config recommendations!
	:: Thank you @ricardojba for the DLL Safe Order Search reg key!
	:: Thank you @jessicaknotts for the help on testing Exploit Guard configs and checking privacy settings!
	:: Best script I've found for Debloating Windows 10: https://github.com/Sycnex/Windows10Debloater
	:
	#!/usr/bin/env python3
	# v.0.2 \| twitter.com/si9int
	import requests, sys
	from bs4 import BeautifulSoup as bs

	domain = sys.argv[1]
	subdomains = []

	def get_csrf_params():
	csrf_params = {}
	package main


	/*
	CVE-2020-8515: DrayTek pre-auth remote root RCE

	Mon Mar 30 2020 - 0xsha.io


	Affected:
	# -- encoding: utf-8 --
	# requires a recent enough python with idna support in socket
	# pyopenssl, cryptography and idna

	from OpenSSL import SSL
	from cryptography import x509
	from cryptography.x509.oid import NameOID
	import idna

	from socket import socket
	#!/bin/bash
	# Usage : ./scanio.sh <save file>
	# Example: ./scanio.sh cname_list.txt

	# Premium
	function ech() {
	spinner=( "\|" "/" "-" "\\" )
	while true; do
	for i in ${spinner[@]}; do
	echo -ne "\r[$i] $1"
	#!/usr/bin/env python3

	# CVE-2019-6340 Drupal <= 8.6.9 REST services RCE PoC
	# 2019 @leonjza

	# Technical details for this exploit is available at:
	# https://www.drupal.org/sa-core-2019-003
	# https://www.ambionics.io/blog/drupal8-rce
	# https://twitter.com/jcran/status/1099206271901798400