OSINT

A Swiss Army Knife for OSINT

Belati is tool for Collecting Public Data & Public Document from Website and other service for OSINT purpose. What Belati can do? Whois(Indonesian TLD Support) Banner Grabbing Subdomain Enumeration Service Scanning for all Subdomain Machine Web Appalyzer Support DNS mapping / Zone Scanning Mail Harvester from Website & Search Engine Mail Harvester from MIT PGP …

Debian, Django, Python

Apache2 and Django installation on Debian

Install Apache2 sudo apt-get install apache2 -y sudo rm -f /var/www/html/index.html && sudo touch /var/www/html/index.html sudo a2enmod ssl sudo a2ensite default-ssl sudo service apache2 restartsudo apt-get install apache2 -y sudo rm -f /var/www/html/index.html && sudo touch /var/www/html/index.html sudo a2enmod ssl sudo a2ensite default-ssl sudo service apache2 restart Install Python 3 sudo apt-get install python3 -y …

Debugging

Connect two Windows virtual machines over a virtual serial port on a Linux host

Software Linux Debian 8.x Windows 8 64 bit (Debugger) Windows 10 64 bit (Debuggee) WinDbg (Windows SDK) Setting up the Debugger WinDbg installation https://developer.microsoft.com/en-us/windows/downloads/windows-10-sdk Symbols add an environment variable, _NT_SYMBOL_PATH, value, SRVC:\Symbolshttps://msdl.microsoft.com/download/symbols. Shutdown VM Edit virtual machine settings -> Add… -> Serial Port -> -> Use socket (/tmp/com1) -> From: Client -> To: A Virtual …

Debugging, Edb-debugger, Reversing

edb-debugger on Debian

Dependencies sudo apt-get install libqt5svg5-dev libgraphviz-dev pkg-config cmakesudo apt-get install libqt5svg5-dev libgraphviz-dev pkg-config cmake sudo apt-get install \ cmake \ build-essential \ libboost-dev \ libqt5xmlpatterns5-dev \ qtbase5-dev \ qt5-default \ libgraphviz-dev \ libqt5svg5-devsudo apt-get install \ cmake \ build-essential \ libboost-dev \ libqt5xmlpatterns5-dev \ qtbase5-dev \ qt5-default \ libgraphviz-dev \ libqt5svg5-dev Capstone git clone –depth=50 …

Debian, Linux

Sublime editor on Debian

Installation https://www.sublimetext.com/3 sudo dpkg -i sublime-text_build-xxxx_amd64.debsudo dpkg -i sublime-text_build-xxxx_amd64.deb Dracula Theme https://draculatheme.com/sublime/ Preferences -> Color Scheme -> Dracula Color Scheme -> Dracula CamingoCode Font https://www.fontsquirrel.com/fonts/camingocode sudo cp -r /home/username/Downloads/camingocode /usr/local/share/ sudo fc-cache -fvsudo cp -r /home/username/Downloads/camingocode /usr/local/share/ sudo fc-cache -fv Restart sublime if it is already open. Preferences -> Settings -> { "color_scheme": "Packages/Dracula Color …

Exploitation, Training

Compile a simple vulnerability on modern Windows

Visual Studio 2015 Open Visual Studio. Project Properties -> General -> Platform Toolset: Visual Studio 2010 (v100) or Windows7.1SDK Project Properties -> C/C++ -> Optimization -> Optimization: Disabled (/Od) Project Properties -> C/C++ -> Code Generation -> Security Check: Disable Security Check (/GS-) Project Properties -> C/C++ -> Advanced -> Compile As: Compile as C …

Linux

Create CSR with SAN

Create a file named myconf.cnf countryName = Country Name (2 letter code) countryName_default = GR countryName_min = 2 countryName_max = 2 stateOrProvinceName = State or Province Name (full name) stateOrProvinceName_default = MyProvinceName localityName = Locality Name (eg, city) localityName_default = MyCityName 0.organizationName = Organization Name (eg, company) 0.organizationName_default = MyCompany organizationalUnitName = Organizational Unit Name …

Burp, Penetration Testing

Stunnel and Burp Pro

Stunnel Stunnel is a proxy designed to add TLS encryption functionality to existing clients and servers without any changes in the programs’ code. Its architecture is optimized for security, portability, and scalability (including load-balancing), making it suitable for large deployments. Stunnel uses the OpenSSL library for cryptography, so it supports whatever cryptographic algorithms are compiled …

C/C++, Hacking, Post-Exploitation, RedTeaming

HTTP – Get the external IP address in C

The following code snippets is from Post-recon project. This project is a work in progress. Please visit GitHub for the full source code, in this post I will just point out the most interesting parts. Get Public IP address (HTTP)   {…}   #define PUBLIC_IP_URL "http://ipecho.net/plain"   {…}   int LibCurl::GetPublicIPv4Address(char **ip, const char *userAgent, …