Skip to content

Instantly share code, notes, and snippets.

View binkybear's full-sized avatar

binkybear

390 followers · 15 following
View GitHub Profile
@KyleHanslovan
KyleHanslovan / DomainEnumeration.bat
Created June 25, 2016 12:36
Post-exploitation host/domain survey using native Windows commands.
whoami & hostname & ipconfig /all & net user /domain 2>&1 & net group /domain 2>&1 & net group "domain admins" /domain 2>&1 & net group "Exchange Trusted Subsystem" /domain 2>&1 & net accounts /domain 2>&1 & net user 2>&1 & net localgroup administrators 2>&1 & netstat -an 2>&1 & tasklist 2>&1 & sc query 2>&1 & systeminfo 2>&1 & reg query "HKEY_CURRENT_USER\Software\Microsoft\Terminal Server Client\Default" 2>&1
@secvalve
secvalve / baxel.sh
Created May 25, 2016 00:34
A bash script that uses CURL to get a file in parts, ala axel. Usage: baxel numparts url eg ./baxel 3 http://www.google.com/robots.txt
#!/bin/bash
#$1 numparts, #$2 url
#Get length
TL=$(curl -sI $2 | grep Content-Length | awk '{printf "%d", $2}')
echo "$s is $TL Bytes Long”
#GetChunks
for i in `seq 0 $(( $1 - 1 ))`;
do
@anestisb
anestisb / system-img-repair.sh
Last active March 16, 2025 10:55
De-optimize Nexus factory images
#!/usr/bin/env bash
#
# For latest Android Nexus devices (N5x, N6p, N9, etc.), Google is no longer
# providing vendor tar archives to included into AOSP build trees. Oficially
# it is claimed that all vendor proprietary blobs have been moved to /vendor
# partition. Unfortunately that is not true since a few vendor executables, DSOs
# and APKs/JARs are present under /system although missing from AOSP public tree.
#
# As such custom AOSP builds require to first extract such blobs from /system of
# factory images and manually include them in vendor directory of AOSP tree.
@byt3bl33d3r
byt3bl33d3r / raw2ps_shellcode.py
Created September 13, 2015 12:12
Converts raw shellcode to a PowerShell compatible byte array (helpful when using custom shellcode with Invoke-Shellcode.ps1)
import sys
ps_shellcode = '@('
with open(sys.argv[1], 'rb') as shellcode:
byte = shellcode.read(1)
while byte != '':
ps_shellcode += '0x{}, '.format(byte.encode('hex'))
byte = shellcode.read(1)
@jakewarren
jakewarren / github_dorks.txt
Last active June 29, 2016 21:13
#md5 hash of most used password 123456
#ref: https://twitter.com/TekDefense/status/294556153151647744
https://github.com/search?q=e10adc3949ba59abbe56e057f20f883e&type=Code&ref=searchresults
#DB_PASSWORD
#ref: http://seclists.org/fulldisclosure/2014/Mar/343
https://github.com/search?q=define%28%22DB_PASSWORD%22&type=Code&ref=searchresults
#Possible SQL injection
#ref: http://seclists.org/fulldisclosure/2013/Jun/15
@byt3bl33d3r
byt3bl33d3r / ducky-convert.py
Last active August 29, 2015 14:13
Converts the USB rubber ducky property files to a suitable format for the keyseed.py file in the kali nethunter project
#! /usr/bin/env python
from configobj import ConfigObj
import sys
import StringIO
import re
from pprint import pprint
if len(sys.argv) < 3:
print 'Usage: ducky-convert.py <keyboard.properties> <layout.properties>'
@enten
enten / alfred.sh
Last active July 24, 2016 15:19
#!/system/bin/sh
set -u
## ========================================================================================
## alfred : manages an ArchLinux rootfs for enable LXC usage on Android
## ========================================================================================
PROGNAME="alfred"
PROGVERS="0.0.6"
PROGCONF="/data/$PROGNAME"
PROGHELP="Usage: $PROGNAME [cmd]
@tpai
tpai / instructions.md
Last active December 19, 2024 06:55
use both Tor and Privoxy on Mac OS

1. install

brew install tor
brew install privoxy

2. copy and modify config file




  


  




    


          
    

      

        
        

          

              @worawit
          

          

            
                worawit
                / SafeArrayRedim.cpp
            
            

              Last active
              January 18, 2024 08:23
            

              
                CVE-2014-6332
              
          

        

      

        

  

    
    


        



  


  

        

          
          /*
        

        

          
           * reversed SafeArrayRedim() in oldaut32.dll (Windows XP)
        

        

          
           * for CVE-2014-6332
        

        

          
           */
        

        

          
          

        

        

          
          typedef struct tagSAFEARRAY 
        

        

          
          {
        

        

          
          	USHORT         cDims;         // number of dimensions
        

        

          
          	USHORT         fFeatures;     // type of elements
        

        

          
          	ULONG          cbElements;    // byte size per element
        

  





    


  




    


          
    

      

        
        

          

              @willurd
          

          

            
                willurd
                / web-servers.md
            
            

              Last active
              December 5, 2025 14:02
            

              
                Big list of http static server one-liners
              
          

        

      

        

  

      

    
Each of these commands will run an ad hoc http static server in your current (or specified) directory, available at http://localhost:8000. Use this power wisely.


Discussion on reddit.


Python 2.x


$ python -m SimpleHTTPServer 8000