—————𝖀𝖓D𝖊𝖗𝕮𝖔D𝖊—————

🦑HOW FIX install Metaploite on android Without errors (Termux):
(Instagram.com/UnderCodeTestingCompany)

🦑First of all, we have to install some scripts, for this, enter:

1) pkg update && pkg upgrade -y

2) pkg install wget

3) pkg install curl

4) Pkg install openssh

5) These pkgs are required for further steps
(Wait till it is Completely installed)

6) Now we have to go to HOME directory, for this enter:

> cd $HOME
(Only, if you are not at Home Directory)

7) Type now :

> wget Auxilus.github.io/metasploit.sh

> bash metasploit.sh

🦑 METHODE 1:

IF ANY ERROR FOR SOME VERSIONs another source installisation:


> ALL IN ONE COMMAND:

> pkg update && pkg upgrade && pkg install git curl wget nmap -y && curl -LO raw.githubusercontent.com/Hax4us/Metasploit_termux/master/metasploit.sh && chmod 777 metasploit.sh && ./metasploit.sh

THEN IT WILL START

🦑Methode 2

IF AGAIN ERROR ANOTHER INSTALL METHODE

Type in termux:

> pkg update && pkg upgrade && pkg install curl wget git && git clone github.com/verluchie/termux-metasploit && chmod 777 termux-metasploit/install.sh && sh termux-metasploit/install.sh

🦑Methode 3

ANOTHER METHODE FOR INSTALL METASPLOITE

> pkg update && pkg upgrade && pkg install curl wget git && git clone github.com/verluchie/termux-metasploit && chmod 777 termux-metasploit/install.sh && sh termux-metasploit/install.sh

@ Mr. BOTNET(tm)
—————-𝖀𝖓D𝖊𝖗𝕮𝖔D𝖊——————

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑One Of Top Script in Worlds
1.2k Stars > A typeface designed for source code
Hack is designed to be a workhorse typeface for source code. It has deep roots in the free, open source typeface community and expands upon the contributions of the Bitstream Vera & DejaVu projects. The large x-height + wide aperture + low contrast design make it legible at commonly used source code text sizes with a sweet spot that runs in the 8 - 14 range
t.me/UnderCodeTestingOfficial

🦑INSTALLISATION & RUN:
LInux//TermuxRoot/MacOs/Windows

1) Download the latest version of Hack.
>https://github.com/source-foundry/Hack/releases/download/v3.003/Hack-v3.003-ttf.zip

2) Extract the files from the archive (.zip).

3) Copy the font files to either your system font folder (often /usr/share/fonts/) or user font folder (often ~/.local/share/fonts/ or /usr/local/share/fonts).

4) Copy the font configuration file in config/fontconfig/ to either the system font configuration folder (often /etc/fonts/conf.d/) or the font user folder (often ~/.config/fontconfig/conf.d)

5) Clear and regenerate your font cache and indexes with the following command:

> fc-cache -f -v

6) You can confirm that the fonts are installed with the following command:

> fc-list | grep "Hack"

🦑Works On:

> Arch Linux: ttf-hack
> Chocolatey (Windows): hackfont
> Debian: fonts-hack-ttf
>Fedora / CentOS: dnf-plugins-core :: heliocastro/hack-fonts :: hack-fonts
>Gentoo Linux: media-fonts/hack
>Homebrew Cask (OS X): caskroom/fonts/font-hack
> Open BSD: fonts/hack-fonts
>OpenSUSE: hack-fonts
>Ubuntu: fonts-hack-ttf
>Visual Studio Package Manager: hack.font

🦑For Running via Web font usage

Hack is available in the woff and woff2 web font formats. Bold and italic styles are included by default and work out-of-the-box via the <strong> and <em> tags.

1) Hack is available through the jsDelivr and cdnjs CDN services:

>jsDelivr cdnjs

The following snippets provide examples of Hack web font use through the jsDelivr CDN. Adjust the URL paths to those provided by cdnjs (click the link above to find the appropriate URL) to switch to the cdnjs CDN.

2) Add Hack to HTML

Include one of the following in the <head> section of your HTML file:

Subset web fonts

<link rel="stylesheet" href="//cdn.jsdelivr.net/npm/hack-font@3/build/web/hack-subset.css">

> Full character set web fonts

<link rel="stylesheet" href="//cdn.jsdelivr.net/npm/hack-font@3/build/web/hack.css">

3) Add Hack to CSS
pre, code { font-family: Hack, monospace; }

See the WEBFONT_USAGE.md documentation for additional details, including instructions on how to download, host, and serve the web fonts on your web server.


Written By Steaven(tm)
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑How I set up Tinyproxy as a forward proxy and reverse proxy Linux
t.me/UnderCodeTestingOfficial

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) Install Tinyproxy

> To install Tinyproxy, you have to type the following command into the forward and reverse proxy machines’s terminal:

> apt-get install tinyproxy

2) Setting up the system

3) Tinyproxy works according to configuration files.Example configurations, one for the forward proxy and another for the reverse proxy.

4) Forward and Reverse proxy configuration files:

5) To run tinyproxy with a specific configuration just do the following:

> tinyproxy -c <configuration-file>

E.g.: tinyproxy -c forwardproxy.conf


🦑Testing the system:

1) First make sure that the server is running accordingly and you can access the server with the following command, from any of the machines, since all of them are in the same network. You can test this using curl command line tool or on a browser:

> curl http://10.0.2.34:80/

2) Now to test the whole system, if you want to use curl you can type this on the client machine console:

> curl -v --proxy http://10.0.2.35:8888 http://10.0.2.36:8888/

🦑To run tinyproxy with a specific configuration just do the following:

> tinyproxy -c <configuration-file>

E.g.: tinyproxy -c forwardproxy.conf

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑Setup a Reverse SSH Tunnel Linux
instagram.com/UnderCodeTestingCompany

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) Let's assume that Destination's IP is 192.168.20.55 (Linux box that you want to access).

2) You want to access from Linux client with IP 138.47.99.99.

> Destination (192.168.20.55) <- |NAT| <- Source (138.47.99.99)

3) SSH from the destination to the source (with public IP) using the command :

> ssh -R 19999:localhost:22 sourceuser@138.47.99.99

4) * port 19999 can be any unused port.

5) Now you can SSH from source to destination through SSH tunneling:

> ssh localhost -p 19999

6) 3rd party servers can also access 192.168.20.55 through Destination (138.47.99.99).

7) Destination (192.168.20.55) <- |NAT| <- Source (138.47.99.99) <- Bob's server

8) From Bob's server:

> ssh sourceuser@138.47.99.99

9) After the successful login to Source:

> ssh localhost -p 19999

10) * the connection between destination and source must be alive at all time.

Note: you may run a command (e.g. watch, top) on Destination to keep the connection active.

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑BUGS ROUTERS WIFI 2019 - SOME NON-PATCHED:
instagram.com/UnderCodeTestingCompany

🦑More buggy D-Link routers that will not be fixed

>D-Link Adds More Buggy Router Models to 'Won’t Fix' List

> A new bug in D-Link routers will not be fixed because the routers are too old to bother with (they are End-of-Life or EoL).

🦑what this bug do ?

1> The bug allows a bad guy, who does not know any passwords, to access the web configuration interface of the router.

2>The buggy devices are: DIR-866, DIR-655, DHP-1565, DIR-652, DAP-1533, DGL-5500, DIR-130, DIR-330, DIR-615, DIR-825, DIR-835, DIR-855L, and DIR-862. D-Link suggests disabling remote administration, resetting the affected routers and using a complicated router password.

3> It is not clear if this bug is similar to the bug (CVE-2019-16920) that FortiGuard Labs reported last month. That bug impacted 10 of the same routers. Spring puts this bug in perspective, noting a long history of bugs in D-Link routers.

4> A September 2019 bug can leak passwords. A May 2019 bug allowed DNS hijacking

🦑Zero Day flaw in the D-Link DIR-878 router. Others too?

> Hackers, at the annual Tianfu Cup gathering over the weekend, successfully compromised the D-Link DIR-878 router using a zero-day vulnerability.

> The router was hacked by seven, yes, seven, different groups. It has been a few days and, so far, no response from D-Link on their security bulletin page.

> The bigger picture, however, involves other D-Link router. It is likely that other similar routers share the same buggy software

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑New hack Termux script:
Twitter.com/UnderCodeTC

🦑INSTALLISATION & RUN

1) pkg install git

2) git clone https://github.com/FajarTheGGman/F-Tools

3) cd F-Tools

4) chmod 777 F-Tools.sh

5) ./F-Tools

🦑This script usefull in infomation gethering & parrwords attacks

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Passwords attacks For Linux: Dumper tool
t.me/UnderCodeTestingOfficial

🦑Why This Tool is Important :

1) creddump is a python tool to extract various credentials and secrets from Windows registry hives. It currently extracts:

2) LM and NT hashes (SYSKEY protected)

3) Cached domain passwords

4) LSA secrets

5) It essentially performs all the functions that bkhive/samdump2, cachedump, and lsadump2 do, but in a platform-independent way.

6) It is also the first tool that does all of these things in an offline way (actually, Cain & Abel does, but is not open source and is only available on Windows).

7)Automatically exported from code.google.com/p/creddump


🦑INSTALLISATION & RUN

kali/debian/parrot...

1)git clone https://github.com/moyix/creddump

2) Go dir

3) cachedump – Dump cached credentials

> cachedump
usage: /usr/bin/cachedump <system hive> <security hive>

4) lsadump – Dump LSA secrets

> root@kali:~# lsadump
usage: /usr/bin/lsadump <system hive> <security hive>

5) pwdump – Dump password hashes
root@kali:~# pwdump
usage: /usr/bin/pwdump <system hive> <SAM hive>

6) Dump the password hashes using the system (system) and sam (sam) hives:

> root@kali:~# pwdump system sam
Administrator:500:41aa818b512a8c0e72381e4c174e281b:1896d0a309184775f67c14d14b5c365a:::
Guest:501:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::

7) HelpAssistant:1000:667d6c58d451dbf236ae37ab1de3b9f7:af733642ab69e156ba0c219d3bbc3c83:::
SUPPORT_388945a0:1002:aad3b435b51404eeaad3b435b51404ee:8dffa305e2bee837f279c2c0b082affb:::

8) lsadump Usage Example
Dump the LSA secrets using the system (system) and security (security) hives:

> root@kali:~# lsadump system security
_SC_ALG

> SC_Dnscache

> SC_upnphost

20ed87e2-3b82-4114-81f9-5e219ed4c481-SALEMHELPACCOUNT

> SC_WebClient

> SC_RpcLocator

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑V I R U S
list of all web sites I come across that are either hacked with or purposefully hosting malware, ransomware, viruses or trojans.
Instagram.com/UndercOdeTestingCompany


🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker

2) https://github.com/mitchellkrogza/apache-ultimate-bad-bot-blocker

3) https://github.com/mitchellkrogza/Badd-Boyz-Hosts

4) https://github.com/mitchellkrogza/Stop.Google.Analytics.Ghost.Spam.HOWTO

5) https://github.com/mitchellkrogza/fail2ban-useful-scripts

6) https://github.com/mitchellkrogza/linux-server-administration-scripts

7) https://github.com/mitchellkrogza/Travis-CI-Nginx-for-Testing-Nginx-Configuration

8) https://github.com/mitchellkrogza/Travis-CI-for-Apache-For-Testing-Apache-and-PHP-Configurations

9) https://github.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning

10) https://github.com/funilrys/funceble

̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑So Lets Start some malwares: TESTED

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
t.me/UnderCodeTestingOfficial

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) Download install-ngxblocker to your /usr/local/sbin/directory and make the script executable:

> sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/install-ngxblocker -O /usr/local/sbin/install-ngxblocker

3) sudo chmod +x /usr/local/sbin/install-ngxblocker

4) If your Linux distribution does not have wget you can replace the wget command above using curl as follows:

> curl -sL https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/install-ngxblocker -o /usr/local/sbin/install-ngxblocker

5) Now run the install-ngxblocker script in DRY-MODE which will show you what changes it will make and what files it will download for you. This is only a DRY-RUN so no changes are being made yet.

> The install-ngxblocker downloads all required files including the setup and update scripts.

6) cd /usr/local/sbin

7) sudo ./install-ngxblocker

8) Vsudo chmod +x /usr/local/sbin/setup-ngxblocker

9) sudo chmod +x /usr/local/sbin/update-ngxblocker

10) setup-ngxblocker, install-ngxblocker and update-ngxblocker can all be configured with custom installation / update locations from the command line.

11) Run any of the setup, install or update scripts with --help or -h to view options.

12) Now run the setup-ngxblocker script in DRY-MODE which will show you what changes it will make and what files it will download for you. This is only a DRY-RUN so no changes are being made yet.

> cd /usr/local/sbin/

> sudo ./setup-ngxblocker

13) sudo ./setup-ngxblocker -x -e conf

So now let's run the setup script and let it make all the changes we need to make the Bot Blocker active on all your sites.

> cd /usr/local/sbin/
> sudo ./setup-ngxblocker -x

14) Now test your nginx configuration

> sudo nginx -t

and you should see

nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful

15) sudo nginx -t && sudo nginx -s reload

or

sudo service nginx restart

16) Now setup cron to automatically update the blocker for you every day so you always have the latest up to date protection.

> sudo crontab -e

17) Add the following line at the end of your crontab file. Note adding the -e command line parameter to specify your email address where the update report is sent to. Obviously substitute yourname@youremail.com with your real email address or you will not receive the email when the script has updated.

00 22 * * * sudo /usr/local/sbin/update-ngxblocker -e yourname@youremail.com

> This will update the blocker every night for you at 10 PM.

If you want it to update more frequently (as sometimes I push out 3-4 updates a day) you can set it as follows to run the cron every 8 hours, although just once a day is more than enough.

00 */8 * * * sudo /usr/local/sbin/update-ngxblocker -e yourname@youremail.com

> If you don't want any email notification after an update (not advisable in case Nginx ever has an EMERG when reloading), then simply run your cron as follows.

00 */8 * * * sudo /usr/local/sbin/update-ngxblocker -n

If you would rather send e-mail via mailgun then run your cron as so:

00 22 * * * sudo /usr/local/sbin/update-ngxblocker -g yourname@yourdomain.com -d yourdomain.com -a mailgun api key -f from@yourdomain.com
That's it

18) You can now customize any of the following files below to suit your environment or requirements
> /etc/nginx/bots.d/whitelist-ips.conf
/etc/nginx/bots.d/whitelist-domains.conf
/etc/nginx/bots.d/blacklist-user-agents.conf
/etc/nginx/bots.d/blacklist-ips.conf
/etc/nginx/bots.d/bad-referrer-words.conf
/etc/nginx/bots.d/custom-bad-referrers.

conf
E N J O Y

Written by @UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑The tool to check the availability or syntax of domains, IPv4 or URL
Its main objective is to provide the availability of domains, IPs and since recently URL by generating an accurate result based on results from WHOIS, NSLOOKUP and HTTP status codes.

> PyFunceble is currently running actively and daily with the help of Travis CI under 60+ repositories. It is used to clean or test the availability of data which are present in hosts files, list of IP, list of domains, block lists or even AdBlock filter lists.
instagram.com/UnderCodeTestingCompany

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) git clone https://github.com/funilrys/PyFunceble

2) cd docs/

3) make html

4) chromium _build/html/index.html # Chromium or whatever browser you use.

🦑What can PyFunceble do?

1) Test of the availability of a domain.

2) Test of the availability of an IPv4.

3) Test of the availability of an URL.

4) Test of the availability of a domain/DNS name in a private or local network.

5) Test of the availability of an IPv4 in a private or local network.

6) Test of the availability of an URL in a private or local network.

7) Test of the syntax of a domain.

8) Test of the syntax of an IPv4.

9) Test of the syntax of an URL.

10) Test of domain or IP which are present into an Adblock formatted file.

11) Test from a given raw link.

12) Save test result(s) on file(s) (hosts file, plain text and/or JSON format).

13) Show test result(s) on screen.

14) Show percentage of each status (ACTIVE, INACTIVE, INVALID)

15) Sort outputs hierarchically.

16) "Mining" of domain or IP which are related to the tested element.

17) Auto-continuation of tests in case of system crash or script stop.
Filtering of a file content.

18) This feature will let us for example test all blogspot domain of the given file no matter the content of the file.

19) Set the user-agent to use for the tests.

20) Give some analytic depending of the HTTP status code (ACTIVE, POTENTIALLY_ACTIVE, POTENTIALLY_INACTIVE, SUSPICIOUS).

21) Retest overtime of INACTIVE and INVALID domains.

22) Print the execution time on screen and file.

23) Customization of the different option via command-line arguments or configuration file.

24) Continuous tests under Travis CI with the help of an auto saving and database system.

25) Set branch to push the result to for the autosaving system.

26) Set the minimal time before we autosave in order to avoid Travis CI limitation.

27) Set a command to execute at the end of the test.

28) Set the commit message for the autosaving system.

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Fail2Ban Blacklist JAIL for Repeat Offenders

> A customised jail with action and filter file for Fail2Ban. This jail is based on the recidive jail but makes use of a simple text file to enable extended and permanent bans even across reboots.

> This is intended to replace the recidive filter so make sure that recidive is set to enabled = false do not have both this jail and recidive running at the same time
t.me/UnderCodeTestingOfficial

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

Download or clone https://github.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning

1) requires blacklist.conf in /etc/fail2ban/filter.d folder

> cd /etc/fail2ban/filter.d

2) sudo wget https://raw.githubusercontent.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning/master/filter.d/blacklist.conf -O blacklist.conf

3) requires blacklist.conf in /etc/fail2ban/action.d folder

> cd /etc/fail2ban/action.d

4) sudo wget https://raw.githubusercontent.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning/master/action.d/blacklist.conf -O blacklist.conf

5) requires jail settings called [blacklist]

> sudo nano /etc/fail2ban/jail.local

6) add this to the bottom of the file

[DEFAULT]
port = 0:65535
filter = %(name)s

[blacklist]
enabled = true
logpath = /var/log/fail2ban.*
filter = blacklist
banaction = blacklist
bantime = 31536000 ; 1 year
findtime = 31536000 ; 1 year
maxretry = 10

7) exclamation To stop all email notifications of bans, especially after a server reboot, add the jail as follows:

[DEFAULT]
port = 0:65535
filter = %(name)s

[blacklist]
enabled = true
logpath = /var/log/fail2ban.*
filter = blacklist
banaction = blacklist
action = %(action_)s
bantime = 31536000 ; 1 year
findtime = 31536000 ; 1 year
maxretry = 10

7) requires ip.blacklist file in /etc/fail2ban

> create the file

> sudo touch /etc/fail2ban/ip.blacklist

> make the file writable

8) sudo chmod 755 /etc/fail2ban/ip.blacklist

9) recidive filter must be disabled (do not run both at same time)

🦑How it works ?

1) This jail monitors all your Fail2Ban log files including any rotated log files because the log file location setting in the jail is wild-carded

2) It requires an action.d file called blacklist.conf in your /etc/fail2ban/action.d folder It requires an filter.d file called blacklist.conf in your /etc/fail2ban/filter.d folder It requires the jail [blacklist] settings in your jail.local file

3) Example :
In my jail settings I have set a findtime of 1 year (31536000 seconds) bantime of 1 year (31536000 seconds) maxretry of 10 attempts

> This means Fail2Ban will scan through it's log files over a full year's period. If it finds the same attack pattern, let's say an SSH attack for instance, from the same IP address on 10 different occasions anywhere within 1 year, that IP address is then regarded as a repeat offender and can very well be blacklisted for the 1 year period or even forever.

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Simple Linux Bash Server Administration Scripts

> FTP Backup Script For any linux server which backs up critical system files and folders and also all your MySQL Databases.

> The script uses the NCFTP client, it deletes backups older than X days and also emails you with a success or failure message.
Twitter.com/UnderCodeTC

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) git clone https://github.com/mitchellkrogza/linux-server-administration-scripts

2) cd linux-server-administration-scripts

3) chmod 777 ftpbackup.sh

4) ./ftpbackup.sh

That s all

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

🦑The Ultimate Unified Hosts file
t.me/UnderCodeTestingOfficial

> for protecting your network, computer, smartphones and Wi-Fi devices against millions of bad web sites.

> Protect your children and family from gaining access to bad web sites and protect your devices and pc from being infected with Malware or Ransomware.

> Without any Paid services !

🦑DAILY UPDATED !!!!!!!!!!!🦑

𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) git clone https://github.com/mitchellkrogza/Ultimate.Hosts.Blacklist

2) AUTOMATe Run:

> cd installer-windows

3) Now

> Press ⊞ Win+R. This opens the Run dialog.

4) If you need to run the batch file as an administrator, see this method instead.

> go to file then

5) OPEn cmd & Click Run as Administrator

> windows-install-hosts.bat

6 ) MANUAL

Now its not installing like a normal script so you need to edit some in your ip & dns / adapter & Hosts settings


> A hosts file, named hosts (with no file extension), is a plain-text file used by all operating systems to map hostnames to IP addresses.

> In most operating systems, the hosts file is preferential to DNS. Therefore if a domain name is resolved by the hosts file, the request never leaves your computer.

> Having a smart hosts file goes a long way towards blocking malware, adware, ransomware, porn and other nuisance web sites.

> A hosts file like this causes any lookups to any of the listed domains to resolve back to your localhost so it prevents any outgoing connections to the listed domains.

🦑For example, to drop all requests to certain domains or servers, adding lines to your hosts file as below will achieve this for you. You can create your own custom hosts or simply use ours which covers you for well over 1 million bad domains and web sites out there.

# Block Bad Domains and Servers with Hosts File
0.0.0.0 doubleclick.net
0.0.0.0 18chinese.com
0.0.0.0 gatekeeper.tss.net
0.0.0.0 www.gatekeeper.tss.net
0.0.0.0 cdn.gatekeeper.tss.net
0.0.0.0 youporn.com
0.0.0.0 www.youporn.com
0.0.0.0 x-lime.net
0.0.0.0 www.x-lime.net
# etc ... etc .... etc ...

3) So go to hosts file
example on windows :

> C:\Windows\System32\drivers\etc\hosts

4) open it in any text editor app example Notpad
> change hosts by adding this repo hosts

Or

🦑For linux

1) hosts.deny

is a plain-text file for Linux/Unix based operating systems only which blocks a list of IP addresses on the outside of your network from gaining any access to your computer.

2) A hosts.deny file will not work on a Windows operating system.

3) same in Linux You can modifie hosts file by opening in leafpad example

🦑 Or Automate run :

1) cd Installer-Linux

2) Chmod 777 linux-hosts-installer.sh

3) ./ linux-hosts-installer.sh

E N J O Y NO NEED FOR PAID SERVICES FOR BLOCKING MALWARES ADDS......


WRITTEN BY @UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

🦑2019 Phishing Database Tested by UndercOde:
Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
t.me/UnderCodeTestingOfficial


🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:


🦑Phishing Domaines Status

1) Active :

>Database On
https://raw.githubusercontent.com/mitchellkrogza/Phishing.Database/master/phishing-domains-ACTIVE.txt

2) Anactive :

> https://raw.githubusercontent.com/mitchellkrogza/Phishing.Database/master/phishing-domains-INACTIVE.txt

3) Invalid :

> https://github.com/mitchellkrogza/Phishing.Database

🦑Phishing Links Status

1)Active :

https://raw.githubusercontent.com/mitchellkrogza/Phishing.Database/master/phishing-links-ACTIVE.txt

2) Inactive:

> https://raw.githubusercontent.com/mitchellkrogza/Phishing.Database/master/phishing-links-INACTIVE.txt

3) Invalid :

> https://raw.githubusercontent.com/mitchellkrogza/Phishing.Database/master/phishing-links-INVALID.txt

🦑 All the following HTTP status codes we regard as ACTIVE or still POTENTIALLY ACTIVE.

🦑ACTIVE HTTP Codes

- 100
- 101
- 200
- 201
- 202
- 203
- 204
- 205
- 206
🦑 POTENTIALLY ACTIVE HTTP Codes
- 000
- 300
- 301
- 302
- 303
- 304
- 305
- 307
- 403
- 405
- 406
- 407
- 408
- 411
- 413
- 417
- 500
- 501
- 502
- 503
- 504
- 505
🦑POTENTIALLY INACTIVE HTTP Codes
- 400
- 402
- 403
- 404
- 409
- 410
- 412
- 414
- 415
- 416

🦑Criminals planting Phishing links often resort to a variety of techniques like returning a variety of HTTP failure codes to trick people into thinking the link is gone but in reality if you test a bit later it is often back.

WRITTEN BY @UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

🦑2019 from 2 months All in One

> Apache Block Bad Bots

> (Referer) Spam Referrer Blocker,

> Vulnerability Scanners, Malware, Adware, Ransomware, Malicious Sites,

> Wordpress Theme Detectors and Fail2Ban Jail for Repeat Offenders
instagram.com/UnderCodeTestingCompany

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:


1) clone https://github.com/mitchellkrogza/apache-ultimate-bad-bot-blocker

2) COPY THE GLOBALBLACKLIST.CONF FILE FROM THE REPO $APACHE_CONF is generally located at /etc/apache2 or /etc/httpd depending on OS

3) Copy the contents of globalblacklist.conf into your $APACHE_CONF/custom.d folder. e.g. /etc/apache2/custom.d on Ubuntu/Debian /etc/httpd on RHEL/centos You need to create this folder.

4) The following directions use /etc/apache2 as an example.

> sudo mkdir /etc/apache2/custom.d

> sudo wget https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/globalblacklist.conf -O /etc/apache2/custom.d/globalblacklist.conf

5) If your Linux distribution does not have wget you can replace the wget commands using curl as follows:

> curl -sL https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/globalblacklist.conf -o /etc/apache2/custom.d/globalblacklist.conf

6) Please do NOT ever use 127.0.0.1 as a whitelisted IP address in whitelist-ips.conf it will cause the blocker to stop functioning.

> copy the whitelist-ips.conf file into that folder

7) sudo wget https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/whitelist-ips.conf -O /etc/apache2/custom.d/whitelist-ips.conf

8) copy the whitelist-domains.conf file into the same folder

9) sudo wget https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/whitelist-domains.conf -O /etc/apache2/custom.d/whitelist-domains.conf

10) Use nano, vim or any other text editor to edit both whitelist-ips.conf and whitelist-domains.conf to include all your own domain names and IP addresses that you want to specifically whitelist from the blocker script.

11) copy the blacklist-ips.conf file into that folder

> sudo wget https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/blacklist-ips.conf -O /etc/apache2/custom.d/blacklist-ips.conf

12) copy the bad-referrer-words.conf file into that folder

> sudo wget https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/bad-referrer-words.conf -O /etc/apache2/custom.d/bad-referrer-words.conf

13) Allows you to add your own custom list of user agents with this new include file.

> copy the blacklist-user-agents.conf file into that folder

> sudo wget https://raw.githubusercontent.com/mitchellkrogza/apache-ultimate-bad-bot-blocker/master/Apache_2.2/custom.d/blacklist-user-agents.conf -O /etc/apache2/custom.d/blacklist-user-agents.conf

14) INCLUDE THE GLOBALBLACKLIST.CONF

Include the globalblacklist.conf file in the beginning of a directory block just after your opening Options statements and before the rest of your host config example below. Remove the "<<<<<< This needs to be added" part

<VirtualHost *:80>
ServerName local.dev
DocumentRoot /var/www/html
ErrorLog /tmp/error.log

<Directory "/var/www/html">
Options +Includes
Options +FollowSymLinks -Indexes
Include custom.d/globalblacklist.conf
</Directory>
</VirtualHost>

15) You can include globalblacklist.conf globally (for all virtual hosts) if you put the following configuration after virtual host configuration.

16) Do an Apache2 Config Test

> sudo apache2ctl configtest

> sudo service apache2 reload

17) Now Open Terminal & Type :

> curl -A "googlebot" http://yourdomain.com

Should respond with 200 OK

> curl -A "80legs" http://yourdomain.com

> curl -A "masscan" http://yourdomain.com

Should respond with 403 Forbidden

> curl -I http://yourdomain.com -e http://100dollars-seo.com

> curl -I http://yourdomain.com -e http://zx6.ru

Should respond with 403 Forbidden

E N J O Y WITH Under Code:

WRITTEN BY @UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂

🦑Termux 2019 tool :
PentBox is a tool that allows us to create honeypot in systema this is written in ruby language
t.me/UnderCodeTestingOfficial

🦑Features:

> Command execution in gets (STDIN) implemented. (!command)

> Honeypot now shows attacker's IP and port (thx Shyish)

> Ip grabber direct targeting from email: yahoo,gmail,hotmail & sites like facebook gmail ...etc

> Included log options.

> Wordlist is bigger now.

> Included "back" option on menus. New tools:

> Included new area, Web tools.

> Included new module MAC address geolocation (samy.pl).

> Included new module HTTP directory bruteforce.

> Included new module HTTP common files bruteforce.

> Included exploits for DoS [other/http] 3Com SuperStack Switch DoS [other/http] 3Com OfficeConnect Routers DoS (Content-Type) [windows/

>ftp] Windows 7 IIS7.5 FTPSVC UNAUTH'D DoS [windows/ftp] Solar FTP Server 2.1 DoS [windows/pptp] MS02-063 PPTP Malformed Control Data

>Kernel DoS [windows/smb] Windows Vista/7 SMB2.0 Negotiate Protocol Request DoS BSOD

> Included pb_update.rb to update PenTBox from the SVN repository. Bugfixing:

> Fixed issue with SHODAN API.

> Deleted l33t speak and extra menu.

> Improved permissions checking, now it's done by euid, not username (thx r4mosg)

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) git clone https://github.com/technicaldada/pentbox

2) cd pentbox

3) tar -zxvf pentbox.tar.gz

4) cd pentbox

5) chmod 777 pentbox.rb

6) ./pentbox.rb

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Termux/Kali/Parrot package manager script 2019
package manager for hacker's. onex manage large number's of hacking tools that can be installed on single click. Using onex, you can install all hacking tools in Termux and other Linux based distributions. onex can install more than 370+ kali linux hacking tools. use onex install [tool_name] command to install any hacking tool.
instagram.com/UnderCodeTestingCompany

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

Open the terminal and type following commands.

1) apt update

2) apt install git

3) git clone https://github.com/Rajkumrdusad/onex.git

4) chmod +x onex/install

5) sh onex/install if not work than use ./onex/install

🦑onex start to start onex menu mode:

> Enter a Number for a specific output:

(1) : To show all available tools and type the number of a tool which you want to install.

(2) : To show tools category.

(3) : If you want to update onex.

(4) : If you want to know About Us.

(5) : To exit the tool.

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Remote Access Tool/Botnet
Loki is Remote Access Tool.
Loki uses RSA-2048 with AES-256 to keep your communication secure.
Warning: DO NOT upload any samples generated by this program to online scanners.
instagram.com/UnderCodeTestingCompany

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) git clone https://github.com/Pure-L0G1C/Loki

2) pip install -r requirements.txt

3)open /lib/const.py & configure your private and public IP's

4) start loki.py

5) navigate to http://127.0.0.1:5000

6) login, Username: loki Password: ikol

7) navigate to settings, selected server tab and start the server on the same IP as your private IP

8) Click the home button

9) Generate a payload


10) Navigate to the agent directory

> Run: python builder.py -h

It will not compile inside a virtual enivornment
> After connection

11) You can click the hostname of the bot once it connects

> Explore

🦑Features:

>Upload & Download
> Chrome Launching
> Persistence
> Screenshot
> Keylogger
> Ddos
> SFTP
> SSH

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁