git clone git@github.com:YOUR-USERNAME/YOUR-FORKED-REPO.git
cd into/cloned/fork-repo
git remote add upstream git://github.com/ORIGINAL-DEV-USERNAME/REPO-YOU-FORKED-FROM.git
git fetch upstream
# -*- coding: utf-8 -*- | |
""" | |
Created on Wed Dec 19 14:20:28 2012 | |
@author: Nick Coblentz | |
""" | |
from burp import IBurpExtender | |
from burp import IMessageEditorTabFactory | |
from burp import IMessageEditorTab |
# -*- coding: utf-8 -*- | |
""" | |
Created on Fri Dec 28 14:16:12 2012 | |
@author: Nick Coblentz | |
Some of this code is borrowed from Brian Holyfield's Burp plugin located here: https://github.com/GDSSecurity/WCF-Binary-SOAP-Plug-In | |
It is also fully dependent on having NBFS.exe from his plugin in the same directory as Burp. | |
""" | |
from burp import IBurpExtender |
# -*- coding: utf-8 -*- | |
""" | |
Created on Thu Jan 10 08:20:14 2013 | |
@author: Nick Coblentz | |
""" | |
from burp import IBurpExtender | |
from burp import IScannerInsertionPointProvider | |
from burp import IScannerInsertionPoint |
I wasn't first to get the key. Nor was I second, third, or even fourth. I'm probably not even the | |
10th to get it (ok, looks like I was the 8th.) But I'm happy that I was able to prove to myself | |
that I too could do it. | |
First, I have to admit I was a skeptic. Like the handful of other dissenters, I had initially | |
believed that it would be highly improbable under normal conditions to obtain the private key | |
through exploiting Heartbleed. So this was my motivation for participating in Cloudflare's | |
challenge. I had extracted a lot of other things with Heartbleed, but I hadn't actually set out to | |
extract private keys. So I wanted to see first-hand if it was possible or not. |
import os | |
import sys | |
# constants, configure to match your environment | |
HOST = 'http://localhost:9200' | |
INDEX = 'test' | |
TYPE = 'attachment' | |
TMP_FILE_NAME = 'tmp.json' | |
# for supported formats, see apache tika - http://tika.apache.org/1.4/formats.html | |
INDEX_FILE_TYPES = ['html','pdf', 'doc', 'docx', 'xls', 'xlsx', 'xml'] |
#!/usr/bin/env python | |
"""MailBox class for processing IMAP email. | |
(To use with Gmail: enable IMAP access in your Google account settings) | |
usage with GMail: | |
import mailbox |
#!/usr/bin/env python | |
import httplib, os.path, argparse, pefile, struct | |
""" | |
pdb_downloader.py | |
v0.1 | |
Steeve Barbeau | |
@steevebarbeau | |
steeve-barbeau.blogspot.com |
Tracing route to FIN [216.81.59.173]: | |
1 76 ms 96 ms 99 ms 192.168.1.254 | |
2 * * * Request timed out. | |
3 18 ms 18 ms 17 ms 195.66.225.189 | |
4 22 ms 24 ms 24 ms 10gigabitethernet1-1.core1.lon1.he.net [195.66.224.21] | |
5 24 ms 24 ms 24 ms 10gigabitethernet2-4.core1.par2.he.net [72.52.92.42] | |
6 97 ms 97 ms 100 ms 10gigabitethernet7-1.core1.ash1.he.net [184.105.213.93] | |
7 109 ms 109 ms 112 ms 10gigabitethernet1-2.core1.atl1.he.net [184.105.213.110] | |
8 109 ms 108 ms 108 ms 216.66.0.26 |