- Recon
- Find vuln
- Exploit
- Document it
Unicornscans in cli, nmap in msfconsole to help store loot in database.
felixguerrero12
/ gist:f827f512667dec30004fbcb12352839e
Created
December 27, 2024 15:58
browser-signature-identifier.js
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function param(t) { | |
| var e, n = ""; | |
| for (e in t) t.hasOwnProperty(e) && (0 < n.length && (n += "&"), n += encodeURI(e + "=" + t[e])); | |
| return n; | |
| } | |
| ((t, e) => { | |
| "object" == typeof exports && "object" == typeof module ? module.exports = e() : "function" == typeof define && define.amd ? define([], e) : "object" == typeof exports ? exports.ClipboardJS = e() : t.ClipboardJS = e(); | |
| })(this, function () { | |
| return n = [function (t, e, n) { | |
| var o; |
felixguerrero12
/ gist:8ff9f144b932a4b3d80711e0ef756be8
Created
October 7, 2024 17:39
deviceCodeAuth.js
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // deviceCodeAuth.js | |
| import { showNotification } from '../modules/uiHelpers.js'; | |
| import { fetchPostRequest } from '../modules/api.js'; | |
| import { storeToken } from './insertToken.js'; | |
| let isDeviceCodeAuthInProgress = false; | |
| export function initializeDeviceCodeAuth() { | |
| const form = document.getElementById('deviceCodeAuthForm'); | |
| if (form) { |
felixguerrero12
/ gist:5784cc218feb70aec33797ea0154c65b
Created
September 29, 2023 12:17
audit_pol_guids.csv
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Category/Subcategory, GUID | |
| System, {69979848-797A-11D9-BED3-505054503030} | |
| Security State Change, {0CCE9210-69AE-11D9-BED3-505054503030} | |
| Security System Extension, {0CCE9211-69AE-11D9-BED3-505054503030} | |
| System Integrity, {0CCE9212-69AE-11D9-BED3-505054503030} | |
| IPsec Driver, {0CCE9213-69AE-11D9-BED3-505054503030} | |
| Other System Events, {0CCE9214-69AE-11D9-BED3-505054503030} | |
| Logon/Logoff, {69979849-797A-11D9-BED3-505054503030} | |
| Logon, {0CCE9215-69AE-11D9-BED3-505054503030} | |
| Logoff, {0CCE9216-69AE-11D9-BED3-505054503030} |
felixguerrero12
/ gist:4a93e6d1cb0b6a9909b7bc958b370fb3
Created
September 26, 2023 01:41
event_codes_botsv2
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| EventCode,field | |
| 1,CommandLine Computer CurrentDirectory EventChannel EventDescription Hashes Image IntegrityLevel Keywords Level LogonGuid LogonId MD5 Opcode ParentCommandLine ParentImage ParentProcessGuid ParentProcessId ProcessGuid ProcessId RecordID SHA1 SHA256 SecurityID Task TerminalSessionId TimeCreated User UtcTime Version action app cmdline dest dest_asset dest_asset_id dest_asset_tag dest_bunit dest_category dest_city dest_country dest_dns dest_ip dest_is_expected dest_mac dest_nt_host dest_owner dest_pci_domain dest_priority dest_requires_av dest_should_timesync dest_should_update direction dvc dvc_asset dvc_asset_id dvc_asset_tag dvc_bunit dvc_category dvc_city dvc_country dvc_dns dvc_ip dvc_is_expected dvc_mac dvc_nt_host dvc_owner dvc_pci_domain dvc_priority dvc_requires_av dvc_should_timesync dvc_should_update eventtype hashes host index linecount parent_process parent_process_id process process_id punct session_id signature signature_id source sourcetype splunk_server tag tag::dest_requires_av |
felixguerrero12
/ gist:b9c682552dad847d0826559c0a0d64c7
Created
August 31, 2021 00:02
jenkins-credentials-extract
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def creds = com.cloudbees.plugins.credentials.CredentialsProvider.lookupCredentials( | |
| com.cloudbees.plugins.credentials.common.StandardUsernameCredentials.class, | |
| Jenkins.instance, | |
| null, | |
| null | |
| ) | |
| for(c in creds) { | |
| if(c instanceof com.cloudbees.jenkins.plugins.sshcredentials.impl.BasicSSHUserPrivateKey){ | |
| println(String.format("id=%s desc=%s key=%s\n", c.id, c.description, c.privateKeySource.getPrivateKeys())) | |
| } |
felixguerrero12
/ how-to-oscp-final.md
Created
April 22, 2017 04:38
— forked from unfo/how-to-oscp-final.md
felixguerrero12
/ keybase.md
Created
June 15, 2016 19:53
I hereby claim:
- I am felixguerrero12 on github.
- I am nulloop (https://keybase.io/nulloop) on keybase.
- I have a public key ASCW83ODOG7ONbDz02S2MsvZV58tS4IqR6BPIbAbWVxR2wo
To claim this, I am signing this object:
felixguerrero12
/ keybase.md
Created
September 21, 2015 02:13
I hereby claim:
- I am felixguerrero12 on github.
- I am nulloop (https://keybase.io/nulloop) on keybase.
- I have a public key whose fingerprint is 7941 7414 8D06 0141 6778 8C34 DD64 5600 20FD 2658
To claim this, I am signing this object: