Skip to content

Instantly share code, notes, and snippets.

View ACK-J's full-sized avatar

Hacks and Hops ACK-J

74 followers · 6 following
View GitHub Profile
@ACK-J
ACK-J / install_xss_canary_callback_server.sh
Last active January 17, 2025 02:14
#!/bin/bash
# Check if domain argument is provided
if [ -z "$1" ]; then
echo "Usage: $0 <domain>"
exit 1
fi
DOMAIN="$1"
EMAIL="$2"
@ACK-J
ACK-J / xss_canary_dashboard.py
Last active January 10, 2025 14:28
A simple webserver to review the contents of xss_canary.json
import json
from flask import Flask, render_template_string
# Initialize Flask app
app = Flask(__name__)
# Load JSON data from the xss_canary.json file
def load_json_data():
data = []
with open('xss_canary.json', 'r') as file:
@ACK-J
ACK-J / xsscanary_callback_server.py
Last active January 16, 2025 21:05
A basic Implementation of a report server for an XSS Canary
from flask import Flask, request
from flask_cors import CORS
import json
app = Flask(__name__)
CORS(app)
@app.route('/xss', methods=['POST'])
def xss_canary():
@ACK-J
ACK-J / csp_meta.py
Created December 6, 2024 22:37
Quick and Easy Python Server that Returns a Vulnerable CSP via Meta HTML Tag
import http.server
import socketserver
import ssl
# Run: openssl req -new -x509 -days 365 -nodes -out server.crt -keyout server.key
PORT = 8000
class MyRequestHandler(http.server.SimpleHTTPRequestHandler):
def do_GET(self):
# Set the response code and headers
self.send_response(200)
@ACK-J
ACK-J / csp.py
Created December 6, 2024 22:36
Quick and Easy Python Server that Returns a Vulnerable CSP via Headers
import http.server
import socketserver
PORT = 8000
class MyRequestHandler(http.server.SimpleHTTPRequestHandler):
def do_GET(self):
# Set the Content Security Policy header
self.send_response(200)
self.send_header("Content-Type", "text/html")
@ACK-J
ACK-J / DKIM_Check.py
Created June 27, 2024 19:06
DKIM_Check.py
import dns.resolver
import sys
from tld import get_fld
def get_root_domain(domain):
return get_fld(domain, fix_protocol=True)
def check_dmarc(domain):
try:
answers = dns.resolver.resolve(f'_dmarc.{domain}', 'TXT')
@ACK-J
ACK-J / Reconstruct_Private_RSA_Key.py
Created June 25, 2024 13:10
#!/usr/bin/python3
# The following code was written by Wulf on #crypto (Libera)
from math import gcd
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.asymmetric.rsa import (
RSAPublicNumbers,
RSAPrivateNumbers,
rsa_crt_iqmp,
@ACK-J
ACK-J / Send_DKIM_Email.py
Last active June 30, 2024 07:41
Sign and send an email using a DKIM private key from disk
import dkim # pip3 install dkimpy
import smtplib
import time
from email.mime.multipart import MIMEMultipart
from email.mime.text import MIMEText
from email.utils import formatdate
# Set params
destination = "TODO" # Victim SMTP server
smtp = "TODO" # Victim email
@ACK-J
ACK-J / Churn.exp
Created June 8, 2024 18:18
churn large outputs
#!/usr/bin/expect -f
if {[llength $argv] != 5} {
puts stderr "Usage: Pass an amount and a priority as arguments!"
exit 1
}
set walletName [lindex $argv 0];
set network [lindex $argv 1];
set REMOTE_NODE [lindex $argv 2];
set PORT [lindex $argv 3];
set address [lindex $argv 4];
@ACK-J
ACK-J / parrot_kali_install.sh
Last active January 6, 2025 21:06
OffSec Tools Install
#!/bin/bash
# System Updates
sudo apt-get update -y
sudo apt-get full-upgrade --fix-missing -y
sudo apt-get autoremove -y
#sudo parrot-upgrade
# Alias to Fix Virtual Box issues
# alias FixVM="killall /usr/bin/VBoxClient 2> /dev/null; /usr/bin/VBoxClient --clipboard && /usr/bin/VBoxClient --seamless && /usr/bin/VBoxClient --vmsvga && /usr/bin/VBoxClient --draganddrop && /usr/bin/VBoxClient --checkhostversion"