| #! /bin/bash | |
| export DEBIAN_FRONTEND=noninteractive | |
| sudo apt -y update | |
| sudo apt install apt-transport-https ca-certificates | |
| sudo apt-key adv --keyserver hkp://p80.pool.sks-keyservers.net:80 --recv-keys 58118E89F3A912897C070ADBF76221572C52609D | |
| echo "deb https://apt.dockerproject.org/repo ubuntu-xenial main" | sudo tee /etc/apt/sources.list.d/docker.list | |
| sudo apt -y update | |
| sudo apt purge lxc-docker | |
| sudo apt-cache policy docker-engine | |
| sudo apt -y install linux-image-extra-$(uname -r) linux-image-extra-virtual |
| # Scan for CVE-2017-0143 MS17-010 | |
| # The vulnerability used by WannaCry Ransomware | |
| # | |
| # 1. Use @calderpwn's script | |
| # http://seclists.org/nmap-dev/2017/q2/79 | |
| # | |
| # 2. Save it to Nmap NSE script directory | |
| # Linux - /usr/share/nmap/scripts/ or /usr/local/share/nmap/scripts/ | |
| # OSX - /opt/local/share/nmap/scripts/ | |
| # |
| #!/bin/bash | |
| if [ $# -eq 0 ] | |
| then | |
| echo $'Usage:\n\tcheck-smb-v3.11.sh TARGET_IP_or_CIDR' | |
| exit 1 | |
| fi | |
| echo "Checking if there's SMB v3.11 in" $1 "..." | |
| nmap -p445 --script smb-protocols -Pn -n $1 | grep -P '\d+\.\d+\.\d+\.\d+|^\|.\s+3.11' | tr '\n' ' ' | replace 'Nmap scan report for' '@' | tr "@" "\n" | grep 3.11 | tr '|' ' ' | tr '_' ' ' | grep -oP '\d+\.\d+\.\d+\.\d+' |
| ## This is a sample configuration file. See the nxlog reference manual about the | |
| ## configuration options. It should be installed locally and is also available | |
| ## online at http://nxlog.org/nxlog-docs/en/nxlog-reference-manual.html | |
| ## Please set the ROOT to the folder your nxlog was installed into, | |
| ## otherwise it will not start. | |
| #define ROOT C:\Program Files\nxlog | |
| define ROOT C:\Program Files (x86)\nxlog |
| @echo off | |
| rem Figure out path to plink.exe | |
| set putty_dir_key="HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PuTTY_is1" | |
| for /f "tokens=3*" %%x in ('reg query %putty_dir_key% /v "InstallLocation"') do set putty_dir=%%x %%y | |
| if not defined putty_dir ( | |
| echo Please install PuTTY using Windows installer from http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html | |
| exit /b 1 | |
| ) | |
| set plink="%putty_dir%\plink.exe" |
| #!/usr/bin/env python | |
| # This example demonstrates RSA public-key cryptography in an | |
| # easy-to-follow manner. It works on integers alone, and uses much smaller numbers | |
| # for the sake of clarity. | |
| ##################################################################### | |
| # First we pick our primes. These will determine our keys. | |
| ##################################################################### |
If you want to test your connection or have some other reason to use the command line to download a file, this is how.
See http://superuser.com/a/284147 for more information.
Open cmd.exe and use this format:
bitsadmin /transfer debjob /download /priority normal http://cdimage.debian.org/debian-cd/current-live/i386/iso-hybrid/debian-live-8.7.1-i386-xfce-desktop.iso D:\Users\[Username]\Downloads\debian-live-8.7.1-i386-xfce-desktop.iso
| let autoNext = () => { | |
| Array.from(document.querySelectorAll('.player-modal.is-active button')) | |
| .filter(b => b.textContent === 'Continue to next module') | |
| .forEach(b => b.click()); | |
| }; | |
| setInterval(autoNext, 5000); |
| I have done some preliminary research into this bug and so far it does not seem like a backdoor. Just some really weird logic when handling routes, and rendering templates. | |
| As to why widgetConfig[code] executes via a POST request, it is because of the following code located in /includes/vb5/frontend/applicationlight.php | |
| $serverData = array_merge($_GET, $_POST); | |
| if (!empty($this->application['handler']) AND method_exists($this, $this->application['handler'])) | |
| { | |
| $app = $this->application['handler']; |