- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑HACK FIREFOX BROWSER :
t.me/UnderCodeTestingOfficial

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:
1) Install the Greasemonkey extension>>
> http://greasemonkey.mozdev.org/
http://downloads.mozdev.org/greasemonkey/greasemonkey_0.2.6.xpi

2) Restart Firefox

3) Go to http://rapidshare.de/files/1034529/rapidshare.user.js.html

4) Right click on rapidshare.user.js and choose "Install User Script".

5) Run FireFox.

6) From 'File' Menu click on Open File then browse to whereever you
saved the 'greasemonkey.xpi' plug-in.
Open it, wait a couple seconds for the install button becomes active.

7) Click on it to install this plug-in then CLOSE FIREFOX.

8) Run FireFox again.
From the File Menu click on Open File then browse to whereever you saved the 'rapidshare.user.js'.

9) Open it.

10) Click the Tools Menu then click on Install User Script then click OK.

11) Close FireFox.

The script will let you enjoy "no wait" and multiple file downloads......!


2) Rapidshare Hack (NIC Tricks and MAC Cloning) :-
Rapidshare traces the users IP address to limit each user to a certain amount of downloading per day.
To get around this, you need to show the rapidshare server a different IP address.
Here are some methods for doing this-

A] Short-Out the JavaScript:
1) Goto the page you want to download
2) Select FREE button
3) In the address bar put this- javascript:alert(c=0)
4) Click OK
5) Click OK to the pop-up box
6) Enter the captcha
7) Download Your File

B] Request a new IP address from your ISP server:
Here\92s how to do it in windows:
1) Click Start
2) Click run
3) In the run box type cmd.exe and click OK
4) When the command prompt opens type the following. ENTER after each new line.
ipconfig /flushdns
ipconfig /release
ipconfig /renew
exit
5) Erase your cookies in whatever browser you are using.
6) Try the rapidshare download again.
Frequently you will be assigned a new IP address when this happens.
Sometime you will, sometimes you will not. If you are on a fixed IP address, this method will not work.
If this works for you, you may want to save the above commands into a batch file, and just run it when you need it.

🦑 Use a proxy with SwitchProxy and Firefox:
1) Download and install Firefox
2) Download and install SwitchProxy
3) Google for free proxies
4) When you hit your download limit, clean your cookies and change your proxy

🦑 You can use a bookmarklet to stop your wait times:

1) Open IE

2) Right Click On This Link

3) Select Add to Favorites

4) Select Yes to the warning that the bookmark may be unsafe.

5) Name it \93RapidShare No Wait\94

6) Click on the Links folder (if you want to display it in your IE toolbar)

7) Click OK
8) You may need to close and reopen IE to see it
9) Goto rapidshare and click the bookmarklet when you are forced to wait

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑How spoof Ip Full By Under Code
instagram.com/UnderCodeTestingCompany

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:
> For More Video tutorial
https://www.youtube.com/watch?v=3tkVKflR4rY

1) git clone https://github.com/meliht/Mr.SIP

2) cd Mr.SIP


OR
Install using pip:

> pip install netifaces pip install ipaddress pip install pyfiglet

Or Install using apt:

> apt-get install python-scapy

3) SIP-NES usage:

./mr.sip.py --ns --tn <target_ip> --dp=5060

./mr.sip.py --ns --tn <target_network_range> --dp=5060 ./mr.sip.py --ns --tn <target_network_address> --dp=5060

4) NOT-1: <target_network_range> should be like 192.168.1.10-192.168.1.20 NOT-2: <target_network> should be like 192.168.1.0 NOT-3: You can specify the output by -i <output_file_name>.

5) By default the output will be written to ip_list.txt file which is already exists in the repo. SIP-ENUM uses that file as an input. NOT-3: Default destionation port 5060, if not given.

6)sudo ngrep -W byline -d eth0 port 5060

7) ./mr.sip.py --se --dp=5060 --fu=fromUser.txt

8) Call flow created by SIP-NES on the target SIP server:

> sudo ngrep -W byline -d eth0 port 5060

9) by using socket library (but doesn't support IP spoofing) \

./mr.sip.py --ds -dm=<sip_method_name> -c <number_of_packets> --di=<target_IP_address> --dp=5060 -r --to=toUser.txt --fu=fromUser.txt --ua=userAgent.txt --su=spUser.txt -l

by using scapy library (ip spoofing is supported)

./mr.sip.py --ds -dm=invite -c <number_of_packets> --di=<target_IP_address> --dp=<server_port> -r --to=toUser.txt --fu=fromUser.txt --ua=userAgent.txt --su=spUser.txt

./mr.sip.py --ds -dm=invite -c <number_of_packets> --di=<target_IP_address> --dp=<server_port> -s --to=toUser.txt --fu=fromUser.txt --ua=userAgent.txt --su=spUser.txt

./mr.sip.py --ds -dm=invite -c <number_of_packets> --di=<target_IP_address> --dp=<server_port> -m --to=toUser.txt --fu=fromUser.txt --ua=userAgent.txt --su=spUser.txt --il=ip_list.txt

10) Call flow created by SIP-DAS on the target SIP server:

> sudo ngrep -W byline -d eth0 port 5060

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑Sniffly2 is a variant of Sniffly which abuses HTTP Strict Transport Security headers and the Performance Timing API in order to sniff your browsing history in Chromium-based browsers
instagram.com/UnderCodeTestingCompany

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

> does not work on mobile or Firefox

> does not work over HTTPS due to mixed content blocking.

> adblockers may taint results

🦑Installisation

1) git clone https://github.com/diracdeltas/sniffly

2) cd sniffly

3) Import Those .js files as plugin to browser recommended google

4) Start Sniff using options

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑How do you run JavaScript script through the TerminaL ?
tWitter.com/UnderCodeTC

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) You can Run your JavaScript File from your Terminal only if you have installed NodeJs runtime.

2) If you have Installed it then Simply open the terminal and type “node FileName.js”.

3) If you don’t have NodeJs runtime environment then go to NodeJs Runtime Environment Download and Download it.

> Example 1: Create a JavaScript File Name this file as New.js.
filter_none

brightness_4
// Simple Addition Function in Javascript
function add(a, b) {
return a+b
}
console.log(add(4, 6))

OutpUt 10

🦑Fast Simple Run :

1) Open Terminal or Command Prompt.

2) Set Path to where File is Located (using cd).

3) Type “node New.js” and Click Enter

> Examples 2: Create a JavaScript File Name this file as New2.js.
filter_none

brightness_4
// Simple Substraction Function in Javascript
function sub(a, b) {
return a-b
}
console.log(sub(6, 2))

Output 4

Thats all
@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

-- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑WHAT is HTML | DOM Script Object ?
instagram.com/UnderCodeTestingCompany

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

> The DOM Script Object is used to represent the HTML <script> element. The script element is accessed by getElementById().

🦑Properties:

1) async: It is used to specify the script is executed asynchronously.

2) charset: It is used to specify the character encoding used in an external script file.

3) defer: It is used to specify that the script is executed when the page has finished parsing.

4) src: It is used to specify the URL of an external script file.

5) type: It is used to specify the media type of the script.

🦑 Syntax:

> document.getElementById("ID");

Where “id” is the ID assigned to the “script” tag.

🦑Example-1:
filter_none

edit

play_arrow

brightness_4
<!DOCTYPE html>
<html>

<head>
<style>
body {
text-align: center;
}

h1 {
color: green;
}
</style>
</head>

<body>
<h1>GeeksForGeeks</h1>
<h2>DOM Script Object </h2>

<!-- Assigning id to script. -->
<script id="GFG">
Hello GeeksForGeeks!
</script>
<br>
<br>

<button onclick="myGeeks()">Submit</button>

<p id="sudo"></p>

<script>
function myGeeks() {

// Accessing script object
var g = document.getElementById(
"GFG").text;
document.getElementById(
"sudo").innerHTML = g;
}
</script>
</body>

</html>

.....

@ ̵͑sTEAVEN(TM)
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

- - --U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑HACK TOOL : MITM PROXIES
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
FOR ANY WiNdows/Linux/MacOS/TERMUX
t.me/iOSDeveloppers

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) mitmproxy is an interactive, SSL/TLS-capable intercepting proxy with a console interface for HTTP/1, HTTP/2, and WebSockets.

2) mitmdump is the command-line version of mitmproxy. Think tcpdump for HTTP.

3) mitmweb is a web-based interface for mitmproxy.

4) pathoc and pathod are perverse HTTP client and server applications designed to let you craft almost any conceivable HTTP request, including ones that creatively violate the standards.

🦑Installisation & Run:

A) For mac os

> brew install mitmproxy

B) For linux

1> https://github.com/mitmproxy/mitmproxy/archive/v4.0.4.tar.gz

( tar.js)

2> Extract the tar

3>Go Dir

4> xdg-open INSTALL

5> ./configure

6»make

7>sudo make install

OR

> https://github.com/mitmproxy/mitmproxy/archive/v4.0.4.zip

(.zip)

🦑Installation on Linux via pip3

Please make sure to install Python 3.6 (or higher) and pip3 for your distribution. If your distribution does not provide a suitable Python version, you can use pyenv to get a recent Python environment.

1) sudo apt install python3-pip # Debian 10 or higher, Ubuntu 17.10 or higher

2) sudo dnf install python3-pip # Fedora 26 or higher

3) sudo pacman -S python-pip # Arch Linux

Please make sure to upgrade pip3 itself:

4) sudo pip3 install -U pip

Now you can install mitmproxy via pip3:

5) sudo pip3 install mitmproxy

🦑Installation on Windows via pip3:

First, install the latest version of Python 3.6 or higher from the Python website. During installation, make sure to select Add Python to PATH. There are no other dependencies on Windows.
> Now you can install mitmproxy via pip3:

> pip3 install mitmproxy

WEll Done

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -


🦑Install and upgrade the Hack typeface on the Linux platform
T.me/UnderCodeTestingOfficial

🦑INSTALLISATION & Run:

> An install and upgrade script for the Hack typeface on the Linux platform
> The hack-linux-installer.sh shell script installs fonts from the Hack typeface repository at a requested release version number on the Linux platform. This script can be used for initial font installs and upgrades to new versions (or downgrades if ever necessary).
Download and modify permissions


1) curl -L -O https://raw.githubusercontent.com/source-foundry/hack-linux-installer/master/hack-linux-installer.sh

2) chmod +x hack-linux-installer.sh

3) chmod 777 hack-linux-installer.sh

4) ./hack-linux-installer.sh [VERSION]

5) Define the version number with the format vX.XXX. You must use a lowercase v followed by the version number string that is used in the repository releases.

6) For example, install Hack v3.003 with the following command:

> ./hack-linux-installer.sh v3.003

Alternatively, you can use the installer to install the latest version like so:

7) ./hack-linux-installer.sh latest

🦑What it does

1) The release archive is pulled from the repository release

2) The release archive is unpacked

3) The fonts are installed on the path $HOME/.local/share/fonts

4)The font cache is cleared and regenerated

5) fc-list | grep "Hack" is executed to display the installed font paths. You should see expected install filepaths with this command.

@M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

—————𝖀𝖓D𝖊𝖗𝕮𝖔D𝖊—————

🦑HOW FIX install Metaploite on android Without errors (Termux):
(Instagram.com/UnderCodeTestingCompany)

🦑First of all, we have to install some scripts, for this, enter:

1) pkg update && pkg upgrade -y

2) pkg install wget

3) pkg install curl

4) Pkg install openssh

5) These pkgs are required for further steps
(Wait till it is Completely installed)

6) Now we have to go to HOME directory, for this enter:

> cd $HOME
(Only, if you are not at Home Directory)

7) Type now :

> wget Auxilus.github.io/metasploit.sh

> bash metasploit.sh

🦑 METHODE 1:

IF ANY ERROR FOR SOME VERSIONs another source installisation:


> ALL IN ONE COMMAND:

> pkg update && pkg upgrade && pkg install git curl wget nmap -y && curl -LO raw.githubusercontent.com/Hax4us/Metasploit_termux/master/metasploit.sh && chmod 777 metasploit.sh && ./metasploit.sh

THEN IT WILL START

🦑Methode 2

IF AGAIN ERROR ANOTHER INSTALL METHODE

Type in termux:

> pkg update && pkg upgrade && pkg install curl wget git && git clone github.com/verluchie/termux-metasploit && chmod 777 termux-metasploit/install.sh && sh termux-metasploit/install.sh

🦑Methode 3

ANOTHER METHODE FOR INSTALL METASPLOITE

> pkg update && pkg upgrade && pkg install curl wget git && git clone github.com/verluchie/termux-metasploit && chmod 777 termux-metasploit/install.sh && sh termux-metasploit/install.sh

@ Mr. BOTNET(tm)
—————-𝖀𝖓D𝖊𝖗𝕮𝖔D𝖊——————

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

🦑One Of Top Script in Worlds
1.2k Stars > A typeface designed for source code
Hack is designed to be a workhorse typeface for source code. It has deep roots in the free, open source typeface community and expands upon the contributions of the Bitstream Vera & DejaVu projects. The large x-height + wide aperture + low contrast design make it legible at commonly used source code text sizes with a sweet spot that runs in the 8 - 14 range
t.me/UnderCodeTestingOfficial

🦑INSTALLISATION & RUN:
LInux//TermuxRoot/MacOs/Windows

1) Download the latest version of Hack.
>https://github.com/source-foundry/Hack/releases/download/v3.003/Hack-v3.003-ttf.zip

2) Extract the files from the archive (.zip).

3) Copy the font files to either your system font folder (often /usr/share/fonts/) or user font folder (often ~/.local/share/fonts/ or /usr/local/share/fonts).

4) Copy the font configuration file in config/fontconfig/ to either the system font configuration folder (often /etc/fonts/conf.d/) or the font user folder (often ~/.config/fontconfig/conf.d)

5) Clear and regenerate your font cache and indexes with the following command:

> fc-cache -f -v

6) You can confirm that the fonts are installed with the following command:

> fc-list | grep "Hack"

🦑Works On:

> Arch Linux: ttf-hack
> Chocolatey (Windows): hackfont
> Debian: fonts-hack-ttf
>Fedora / CentOS: dnf-plugins-core :: heliocastro/hack-fonts :: hack-fonts
>Gentoo Linux: media-fonts/hack
>Homebrew Cask (OS X): caskroom/fonts/font-hack
> Open BSD: fonts/hack-fonts
>OpenSUSE: hack-fonts
>Ubuntu: fonts-hack-ttf
>Visual Studio Package Manager: hack.font

🦑For Running via Web font usage

Hack is available in the woff and woff2 web font formats. Bold and italic styles are included by default and work out-of-the-box via the <strong> and <em> tags.

1) Hack is available through the jsDelivr and cdnjs CDN services:

>jsDelivr cdnjs

The following snippets provide examples of Hack web font use through the jsDelivr CDN. Adjust the URL paths to those provided by cdnjs (click the link above to find the appropriate URL) to switch to the cdnjs CDN.

2) Add Hack to HTML

Include one of the following in the <head> section of your HTML file:

Subset web fonts

<link rel="stylesheet" href="//cdn.jsdelivr.net/npm/hack-font@3/build/web/hack-subset.css">

> Full character set web fonts

<link rel="stylesheet" href="//cdn.jsdelivr.net/npm/hack-font@3/build/web/hack.css">

3) Add Hack to CSS
pre, code { font-family: Hack, monospace; }

See the WEBFONT_USAGE.md documentation for additional details, including instructions on how to download, host, and serve the web fonts on your web server.


Written By Steaven(tm)
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - - -

- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑How I set up Tinyproxy as a forward proxy and reverse proxy Linux
t.me/UnderCodeTestingOfficial

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) Install Tinyproxy

> To install Tinyproxy, you have to type the following command into the forward and reverse proxy machines’s terminal:

> apt-get install tinyproxy

2) Setting up the system

3) Tinyproxy works according to configuration files.Example configurations, one for the forward proxy and another for the reverse proxy.

4) Forward and Reverse proxy configuration files:

5) To run tinyproxy with a specific configuration just do the following:

> tinyproxy -c <configuration-file>

E.g.: tinyproxy -c forwardproxy.conf


🦑Testing the system:

1) First make sure that the server is running accordingly and you can access the server with the following command, from any of the machines, since all of them are in the same network. You can test this using curl command line tool or on a browser:

> curl http://10.0.2.34:80/

2) Now to test the whole system, if you want to use curl you can type this on the client machine console:

> curl -v --proxy http://10.0.2.35:8888 http://10.0.2.36:8888/

🦑To run tinyproxy with a specific configuration just do the following:

> tinyproxy -c <configuration-file>

E.g.: tinyproxy -c forwardproxy.conf

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

- - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

🦑Setup a Reverse SSH Tunnel Linux
instagram.com/UnderCodeTestingCompany

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) Let's assume that Destination's IP is 192.168.20.55 (Linux box that you want to access).

2) You want to access from Linux client with IP 138.47.99.99.

> Destination (192.168.20.55) <- |NAT| <- Source (138.47.99.99)

3) SSH from the destination to the source (with public IP) using the command :

> ssh -R 19999:localhost:22 sourceuser@138.47.99.99

4) * port 19999 can be any unused port.

5) Now you can SSH from source to destination through SSH tunneling:

> ssh localhost -p 19999

6) 3rd party servers can also access 192.168.20.55 through Destination (138.47.99.99).

7) Destination (192.168.20.55) <- |NAT| <- Source (138.47.99.99) <- Bob's server

8) From Bob's server:

> ssh sourceuser@138.47.99.99

9) After the successful login to Source:

> ssh localhost -p 19999

10) * the connection between destination and source must be alive at all time.

Note: you may run a command (e.g. watch, top) on Destination to keep the connection active.

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
- - - - - U҉N҉D҉E҉R҉C҉O҉D҉E҉- - - -

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑BUGS ROUTERS WIFI 2019 - SOME NON-PATCHED:
instagram.com/UnderCodeTestingCompany

🦑More buggy D-Link routers that will not be fixed

>D-Link Adds More Buggy Router Models to 'Won’t Fix' List

> A new bug in D-Link routers will not be fixed because the routers are too old to bother with (they are End-of-Life or EoL).

🦑what this bug do ?

1> The bug allows a bad guy, who does not know any passwords, to access the web configuration interface of the router.

2>The buggy devices are: DIR-866, DIR-655, DHP-1565, DIR-652, DAP-1533, DGL-5500, DIR-130, DIR-330, DIR-615, DIR-825, DIR-835, DIR-855L, and DIR-862. D-Link suggests disabling remote administration, resetting the affected routers and using a complicated router password.

3> It is not clear if this bug is similar to the bug (CVE-2019-16920) that FortiGuard Labs reported last month. That bug impacted 10 of the same routers. Spring puts this bug in perspective, noting a long history of bugs in D-Link routers.

4> A September 2019 bug can leak passwords. A May 2019 bug allowed DNS hijacking

🦑Zero Day flaw in the D-Link DIR-878 router. Others too?

> Hackers, at the annual Tianfu Cup gathering over the weekend, successfully compromised the D-Link DIR-878 router using a zero-day vulnerability.

> The router was hacked by seven, yes, seven, different groups. It has been a few days and, so far, no response from D-Link on their security bulletin page.

> The bigger picture, however, involves other D-Link router. It is likely that other similar routers share the same buggy software

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑New hack Termux script:
Twitter.com/UnderCodeTC

🦑INSTALLISATION & RUN

1) pkg install git

2) git clone https://github.com/FajarTheGGman/F-Tools

3) cd F-Tools

4) chmod 777 F-Tools.sh

5) ./F-Tools

🦑This script usefull in infomation gethering & parrwords attacks

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Passwords attacks For Linux: Dumper tool
t.me/UnderCodeTestingOfficial

🦑Why This Tool is Important :

1) creddump is a python tool to extract various credentials and secrets from Windows registry hives. It currently extracts:

2) LM and NT hashes (SYSKEY protected)

3) Cached domain passwords

4) LSA secrets

5) It essentially performs all the functions that bkhive/samdump2, cachedump, and lsadump2 do, but in a platform-independent way.

6) It is also the first tool that does all of these things in an offline way (actually, Cain & Abel does, but is not open source and is only available on Windows).

7)Automatically exported from code.google.com/p/creddump


🦑INSTALLISATION & RUN

kali/debian/parrot...

1)git clone https://github.com/moyix/creddump

2) Go dir

3) cachedump – Dump cached credentials

> cachedump
usage: /usr/bin/cachedump <system hive> <security hive>

4) lsadump – Dump LSA secrets

> root@kali:~# lsadump
usage: /usr/bin/lsadump <system hive> <security hive>

5) pwdump – Dump password hashes
root@kali:~# pwdump
usage: /usr/bin/pwdump <system hive> <SAM hive>

6) Dump the password hashes using the system (system) and sam (sam) hives:

> root@kali:~# pwdump system sam
Administrator:500:41aa818b512a8c0e72381e4c174e281b:1896d0a309184775f67c14d14b5c365a:::
Guest:501:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::

7) HelpAssistant:1000:667d6c58d451dbf236ae37ab1de3b9f7:af733642ab69e156ba0c219d3bbc3c83:::
SUPPORT_388945a0:1002:aad3b435b51404eeaad3b435b51404ee:8dffa305e2bee837f279c2c0b082affb:::

8) lsadump Usage Example
Dump the LSA secrets using the system (system) and security (security) hives:

> root@kali:~# lsadump system security
_SC_ALG

> SC_Dnscache

> SC_upnphost

20ed87e2-3b82-4114-81f9-5e219ed4c481-SALEMHELPACCOUNT

> SC_WebClient

> SC_RpcLocator

Written by ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑V I R U S
list of all web sites I come across that are either hacked with or purposefully hosting malware, ransomware, viruses or trojans.
Instagram.com/UndercOdeTestingCompany


🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker

2) https://github.com/mitchellkrogza/apache-ultimate-bad-bot-blocker

3) https://github.com/mitchellkrogza/Badd-Boyz-Hosts

4) https://github.com/mitchellkrogza/Stop.Google.Analytics.Ghost.Spam.HOWTO

5) https://github.com/mitchellkrogza/fail2ban-useful-scripts

6) https://github.com/mitchellkrogza/linux-server-administration-scripts

7) https://github.com/mitchellkrogza/Travis-CI-Nginx-for-Testing-Nginx-Configuration

8) https://github.com/mitchellkrogza/Travis-CI-for-Apache-For-Testing-Apache-and-PHP-Configurations

9) https://github.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning

10) https://github.com/funilrys/funceble

̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑So Lets Start some malwares: TESTED

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
t.me/UnderCodeTestingOfficial

🦑🅻🅴🆃 🆂 🆂🆃🅰️🆁🆃:

1) Download install-ngxblocker to your /usr/local/sbin/directory and make the script executable:

> sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/install-ngxblocker -O /usr/local/sbin/install-ngxblocker

3) sudo chmod +x /usr/local/sbin/install-ngxblocker

4) If your Linux distribution does not have wget you can replace the wget command above using curl as follows:

> curl -sL https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/install-ngxblocker -o /usr/local/sbin/install-ngxblocker

5) Now run the install-ngxblocker script in DRY-MODE which will show you what changes it will make and what files it will download for you. This is only a DRY-RUN so no changes are being made yet.

> The install-ngxblocker downloads all required files including the setup and update scripts.

6) cd /usr/local/sbin

7) sudo ./install-ngxblocker

8) Vsudo chmod +x /usr/local/sbin/setup-ngxblocker

9) sudo chmod +x /usr/local/sbin/update-ngxblocker

10) setup-ngxblocker, install-ngxblocker and update-ngxblocker can all be configured with custom installation / update locations from the command line.

11) Run any of the setup, install or update scripts with --help or -h to view options.

12) Now run the setup-ngxblocker script in DRY-MODE which will show you what changes it will make and what files it will download for you. This is only a DRY-RUN so no changes are being made yet.

> cd /usr/local/sbin/

> sudo ./setup-ngxblocker

13) sudo ./setup-ngxblocker -x -e conf

So now let's run the setup script and let it make all the changes we need to make the Bot Blocker active on all your sites.

> cd /usr/local/sbin/
> sudo ./setup-ngxblocker -x

14) Now test your nginx configuration

> sudo nginx -t

and you should see

nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful

15) sudo nginx -t && sudo nginx -s reload

or

sudo service nginx restart

16) Now setup cron to automatically update the blocker for you every day so you always have the latest up to date protection.

> sudo crontab -e

17) Add the following line at the end of your crontab file. Note adding the -e command line parameter to specify your email address where the update report is sent to. Obviously substitute yourname@youremail.com with your real email address or you will not receive the email when the script has updated.

00 22 * * * sudo /usr/local/sbin/update-ngxblocker -e yourname@youremail.com

> This will update the blocker every night for you at 10 PM.

If you want it to update more frequently (as sometimes I push out 3-4 updates a day) you can set it as follows to run the cron every 8 hours, although just once a day is more than enough.

00 */8 * * * sudo /usr/local/sbin/update-ngxblocker -e yourname@youremail.com

> If you don't want any email notification after an update (not advisable in case Nginx ever has an EMERG when reloading), then simply run your cron as follows.

00 */8 * * * sudo /usr/local/sbin/update-ngxblocker -n

If you would rather send e-mail via mailgun then run your cron as so:

00 22 * * * sudo /usr/local/sbin/update-ngxblocker -g yourname@yourdomain.com -d yourdomain.com -a mailgun api key -f from@yourdomain.com
That's it

18) You can now customize any of the following files below to suit your environment or requirements
> /etc/nginx/bots.d/whitelist-ips.conf
/etc/nginx/bots.d/whitelist-domains.conf
/etc/nginx/bots.d/blacklist-user-agents.conf
/etc/nginx/bots.d/blacklist-ips.conf
/etc/nginx/bots.d/bad-referrer-words.conf
/etc/nginx/bots.d/custom-bad-referrers.

conf
E N J O Y

Written by @UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑The tool to check the availability or syntax of domains, IPv4 or URL
Its main objective is to provide the availability of domains, IPs and since recently URL by generating an accurate result based on results from WHOIS, NSLOOKUP and HTTP status codes.

> PyFunceble is currently running actively and daily with the help of Travis CI under 60+ repositories. It is used to clean or test the availability of data which are present in hosts files, list of IP, list of domains, block lists or even AdBlock filter lists.
instagram.com/UnderCodeTestingCompany

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

1) git clone https://github.com/funilrys/PyFunceble

2) cd docs/

3) make html

4) chromium _build/html/index.html # Chromium or whatever browser you use.

🦑What can PyFunceble do?

1) Test of the availability of a domain.

2) Test of the availability of an IPv4.

3) Test of the availability of an URL.

4) Test of the availability of a domain/DNS name in a private or local network.

5) Test of the availability of an IPv4 in a private or local network.

6) Test of the availability of an URL in a private or local network.

7) Test of the syntax of a domain.

8) Test of the syntax of an IPv4.

9) Test of the syntax of an URL.

10) Test of domain or IP which are present into an Adblock formatted file.

11) Test from a given raw link.

12) Save test result(s) on file(s) (hosts file, plain text and/or JSON format).

13) Show test result(s) on screen.

14) Show percentage of each status (ACTIVE, INACTIVE, INVALID)

15) Sort outputs hierarchically.

16) "Mining" of domain or IP which are related to the tested element.

17) Auto-continuation of tests in case of system crash or script stop.
Filtering of a file content.

18) This feature will let us for example test all blogspot domain of the given file no matter the content of the file.

19) Set the user-agent to use for the tests.

20) Give some analytic depending of the HTTP status code (ACTIVE, POTENTIALLY_ACTIVE, POTENTIALLY_INACTIVE, SUSPICIOUS).

21) Retest overtime of INACTIVE and INVALID domains.

22) Print the execution time on screen and file.

23) Customization of the different option via command-line arguments or configuration file.

24) Continuous tests under Travis CI with the help of an auto saving and database system.

25) Set branch to push the result to for the autosaving system.

26) Set the minimal time before we autosave in order to avoid Travis CI limitation.

27) Set a command to execute at the end of the test.

28) Set the commit message for the autosaving system.

@ ̵͑M̵͘ ̠̖r̶̕.̵́ ̷͠B̴͘O̷̓T̶̆Ń̴E̶͛T̶̅(tm
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Fail2Ban Blacklist JAIL for Repeat Offenders

> A customised jail with action and filter file for Fail2Ban. This jail is based on the recidive jail but makes use of a simple text file to enable extended and permanent bans even across reboots.

> This is intended to replace the recidive filter so make sure that recidive is set to enabled = false do not have both this jail and recidive running at the same time
t.me/UnderCodeTestingOfficial

🦑𝕀ℕ𝕊𝕋𝔸𝕃𝕃𝕀𝕊𝔸𝕋𝕀𝕆ℕ & ℝ𝕌ℕ:

Download or clone https://github.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning

1) requires blacklist.conf in /etc/fail2ban/filter.d folder

> cd /etc/fail2ban/filter.d

2) sudo wget https://raw.githubusercontent.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning/master/filter.d/blacklist.conf -O blacklist.conf

3) requires blacklist.conf in /etc/fail2ban/action.d folder

> cd /etc/fail2ban/action.d

4) sudo wget https://raw.githubusercontent.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning/master/action.d/blacklist.conf -O blacklist.conf

5) requires jail settings called [blacklist]

> sudo nano /etc/fail2ban/jail.local

6) add this to the bottom of the file

[DEFAULT]
port = 0:65535
filter = %(name)s

[blacklist]
enabled = true
logpath = /var/log/fail2ban.*
filter = blacklist
banaction = blacklist
bantime = 31536000 ; 1 year
findtime = 31536000 ; 1 year
maxretry = 10

7) exclamation To stop all email notifications of bans, especially after a server reboot, add the jail as follows:

[DEFAULT]
port = 0:65535
filter = %(name)s

[blacklist]
enabled = true
logpath = /var/log/fail2ban.*
filter = blacklist
banaction = blacklist
action = %(action_)s
bantime = 31536000 ; 1 year
findtime = 31536000 ; 1 year
maxretry = 10

7) requires ip.blacklist file in /etc/fail2ban

> create the file

> sudo touch /etc/fail2ban/ip.blacklist

> make the file writable

8) sudo chmod 755 /etc/fail2ban/ip.blacklist

9) recidive filter must be disabled (do not run both at same time)

🦑How it works ?

1) This jail monitors all your Fail2Ban log files including any rotated log files because the log file location setting in the jail is wild-carded

2) It requires an action.d file called blacklist.conf in your /etc/fail2ban/action.d folder It requires an filter.d file called blacklist.conf in your /etc/fail2ban/filter.d folder It requires the jail [blacklist] settings in your jail.local file

3) Example :
In my jail settings I have set a findtime of 1 year (31536000 seconds) bantime of 1 year (31536000 seconds) maxretry of 10 attempts

> This means Fail2Ban will scan through it's log files over a full year's period. If it finds the same attack pattern, let's say an SSH attack for instance, from the same IP address on 10 different occasions anywhere within 1 year, that IP address is then regarded as a repeat offender and can very well be blacklisted for the 1 year period or even forever.

@UndercOdeOfficial
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁