Skip to content

Instantly share code, notes, and snippets.

View zeroSteiner's full-sized avatar

Spencer McIntyre zeroSteiner

View GitHub Profile
@zeroSteiner
zeroSteiner / AdvancedHTTPServer.py
Last active December 10, 2015 22:29
A set of classes to make creating HTTP servers with common features such as threading, SSL, basic authentication, 301 redirects, and RPC servers simple.
#!/usr/bin/env python
# -*- coding: utf-8 -*-
#
# AdvancedHTTPServer.py
#
# Redistribution and use in source and binary forms, with or without
# modification, are permitted provided that the following conditions are
# met:
#
# * Redistributions of source code must retain the above copyright
@zeroSteiner
zeroSteiner / firebird_dos.py
Last active December 14, 2015 13:29
Firebird Denial of Service Proof of Concept
#!/usr/bin/env python
"""
firebird_dos.py
Discovered: 1-31-2013
By: Spencer McIntyre (zeroSteiner)
SecureState Research and Innovation Team
www.securestate.com
@zeroSteiner
zeroSteiner / eapbrute.py
Last active December 15, 2015 18:19
EAP brute forcing utility The mschapext module is not available.
# -*- coding: utf-8 -*-
#
# eapbrute.py
#
# Redistribution and use in source and binary forms, with or without
# modification, are permitted provided that the following conditions are
# met:
#
# * Redistributions of source code must retain the above copyright
# notice, this list of conditions and the following disclaimer.
@zeroSteiner
zeroSteiner / pty_helper.py
Last active December 16, 2015 20:19
PTY Helper
#!/usr/bin/env python
# -*- coding: utf-8 -*-
import os
import select
import threading
class PTYConnector(threading.Thread):
def __init__(self):
super(PTYConnector, self).__init__()
@zeroSteiner
zeroSteiner / cdp.rb
Created May 13, 2013 12:58
Old Metasploit Module for Forging CDP Frames
require 'msf/core'
# tested on BT 5 MSF SVN version: 12900, 12963, 13473
# pcaprub must be installed
# this module is old and probably doesn't work with the newest
# versions of Metasploit
class Metasploit3 < Msf::Auxiliary
include Msf::Exploit::Remote::Capture
@zeroSteiner
zeroSteiner / lianja_sql_bof.py
Created May 22, 2013 12:55
Lianja SQL Server Stack Buffer Overflow Proof of Concept
#!/usr/bin/env python
"""
lianja_sql_bof.py
Discovered: 5-20-2013
By: Spencer McIntyre (zeroSteiner)
SecureState Research and Innovation Team
www.securestate.com
@zeroSteiner
zeroSteiner / rdesktop-gui
Last active January 24, 2024 20:28
Python rdesktop GUI
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
#
# rdesktop-gui
#
# Redistribution and use in source and binary forms, with or without
# modification, are permitted provided that the following conditions are
# met:
#
# * Redistributions of source code must retain the above copyright
@zeroSteiner
zeroSteiner / odbc_trace_parser.py
Last active July 26, 2016 16:45
Parse ODBC Trace logs into a more easily usable format.
#!/usr/bin/env python
# -*- coding: utf-8 -*-
#
# odbc_trace_parser.py
#
# Copyright 2013 Spencer McIntyre <zeroSteiner@gmail.com>
#
# Redistribution and use in source and binary forms, with or without
# modification, are permitted provided that the following conditions are
# met:
@zeroSteiner
zeroSteiner / zenoss_graph_pt.rb
Last active December 23, 2015 06:49
Zenoss Custom Graph Point Python Injection
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
@zeroSteiner
zeroSteiner / disable_emet.asm
Created October 14, 2013 15:50
This stub will cripple EMET 4.0 by setting the ExploitAction to AuditOnly and configuring it to not log events. The api_call function originated from Stephen Fewer.
[BITS 32]
; This stub will cripple EMET 4.0 by setting the ExploitAction to AuditOnly
; and configuring it to not log events. The api_call function originated from
; Stephen Fewer.
global _start
_start:
xor ebx,ebx ; Zero EBX