zwned

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                zwned
                / keybase.md
            
            
              Created
              November 30, 2022 20:28
            
          
    Keybase proof

I hereby claim:

I am zwned on github.
I am zwned (https://keybase.io/zwned) on keybase.
I have a public key ASCtREz8u5h34ZEz0aFLR7GMjtSvwQHX-5bRTyprK1NPlgo

To claim this, I am signing this object:

  
## SSHenanigans.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                zwned
                / SSHenanigans.md
            
            
              Last active
              October 7, 2022 15:50
            
              
                SSHenanigans.md
              
          
    SSHenanigans

SSHenanigans! More than just a restaurant with goofy shit on the wall and mozerella sticks.

Overview


Realistically we only have 5 minutes so get with me after if something needs a bit more clarification


## lookupadmins.py
#!/usr/bin/env python
#
# Title: lookupadmins.py
# Author: @ropnop
# Description: Python script using Impacket to query members of the builtin Administrators group through SAMR
# Similar in function to Get-NetLocalGroup from Powerview
# Won't work against Windows 10 Anniversary Edition unless you already have local admin
# See: http://www.securityweek.com/microsoft-experts-launch-anti-recon-tool-windows-10-server-2016
#
# Heavily based on original Impacket example scripts written by @agsolino and available here: https://github.com/CoreSecurity/impacket

## tracking.js
var blessed = require('blessed');
var contrib = require('blessed-contrib');
var screen = blessed.screen();
var request = require("request");

// You need to install dependencies:
// npm install blessed blessed-contrib


// Constants

## gist:9576159
### Keybase proof

I hereby claim:

  * I am zwned on github.
  * I am zwned (https://keybase.io/zwned) on keybase.
  * I have a public key whose fingerprint is 52CE 16E9 55F4 7AD4 6661  8968 F4A6 0D4F ABCA 38A5

To claim this, I am signing this object:

## gist:8460581
task:

...

- name: Add authorized_key file
  authorized_key: user={{item.username}} key='{{ "\n".join(item.authkey) | string }}'
  with_items: users

...

## gist:8425506
hosts:
[local]
localhost


ext_vars.yml:
users:
  user1:
    password: password01

## add-cert.sh
#!/bin/sh
# author: joda
openssl=/usr/bin/openssl
certdir=$SSL_CERT_DIR
if [ ! -f $openssl ]; then
  echo "ERROR: Can't find $openssl. openssl-util installed?" >&2
fi
if [[ "$1" = "-f" ]]; then
   overwrite=1
   shift # remove $1

## base.py
# Copyright (c) 2009 Upi Tamminen <desaster@gmail.com>
# See the COPYRIGHT file for more information

import os, time, anydbm, datetime
from kippo.core.honeypot import HoneyPotCommand
from twisted.internet import reactor
from kippo.core.config import config
from kippo.core.userdb import UserDB
from kippo.core import utils

## io.sts level06
#include<string.h>

// The devil is in the details - nnp

void copy_buffers(char *argv[])
{
    char buf1[32], buf2[32], buf3[32];

    strncpy(buf2, argv[1], 31);
    strncpy(buf3, argv[2], sizeof(buf3));
	#!/usr/bin/env python
	#
	# Title: lookupadmins.py
	# Author: @ropnop
	# Description: Python script using Impacket to query members of the builtin Administrators group through SAMR
	# Similar in function to Get-NetLocalGroup from Powerview
	# Won't work against Windows 10 Anniversary Edition unless you already have local admin
	# See: http://www.securityweek.com/microsoft-experts-launch-anti-recon-tool-windows-10-server-2016
	#
	# Heavily based on original Impacket example scripts written by @agsolino and available here: https://github.com/CoreSecurity/impacket
	var blessed = require('blessed');
	var contrib = require('blessed-contrib');
	var screen = blessed.screen();
	var request = require("request");

	// You need to install dependencies:
	// npm install blessed blessed-contrib


	// Constants
	### Keybase proof

	I hereby claim:

	* I am zwned on github.
	* I am zwned (https://keybase.io/zwned) on keybase.
	* I have a public key whose fingerprint is 52CE 16E9 55F4 7AD4 6661 8968 F4A6 0D4F ABCA 38A5

	To claim this, I am signing this object:
	task:

	...

	- name: Add authorized_key file
	authorized_key: user={{item.username}} key='{{ "\n".join(item.authkey) \| string }}'
	with_items: users

	...
	hosts:
	[local]
	localhost



	ext_vars.yml:
	users:
	user1:
	password: password01
	#!/bin/sh
	# author: joda
	openssl=/usr/bin/openssl
	certdir=$SSL_CERT_DIR
	if [ ! -f $openssl ]; then
	echo "ERROR: Can't find $openssl. openssl-util installed?" >&2
	fi
	if [[ "$1" = "-f" ]]; then
	overwrite=1
	shift # remove $1
	# Copyright (c) 2009 Upi Tamminen <desaster@gmail.com>
	# See the COPYRIGHT file for more information

	import os, time, anydbm, datetime
	from kippo.core.honeypot import HoneyPotCommand
	from twisted.internet import reactor
	from kippo.core.config import config
	from kippo.core.userdb import UserDB
	from kippo.core import utils
	#include<string.h>

	// The devil is in the details - nnp

	void copy_buffers(char *argv[])
	{
	char buf1[32], buf2[32], buf3[32];

	strncpy(buf2, argv[1], 31);
	strncpy(buf3, argv[2], sizeof(buf3));