Differences

This shows you the differences between two versions of the page.

--- onny:notizen [2022/06/30 12:45] – [exploit kits] 10.25.0.100
+++ onny:notizen [2024/05/22 12:10] (current) – [batch convert images] 10.250.0.1
@@ Line 1: / Line 1: @@
-===== kernel =====
-grep kernel config running system
-<code bahs>
-zcat /proc/config.gz | grep VDSO
-</code>
-===== fish =====
-unset history
-<code>
-fish --private
-</code>
 ===== bash =====
@@ Line 101: / Line 87: @@
 chmod +x $FILE
 $FILE "$@"
-</code>
-==== sed ====
-Mit sed inplace eine Zeile zu einer Datei hinzufügen:
-<code bash>
-sed -i '9i#include <algorithm>' liboffsetfinder64/vmem.cpp
-</code>
-add to end of file
-<code bash>
-sed -i -e '$aretry $@' retry.sh
-</bash>
-Comment out specific line matching a string
-<code bash>
-sudo sed -e '/pam_securetty.so/ s/^#*/#/' -i delugecontainer/etc/pam.d/login
-</code>
-comment out multiple lines / range
-<code bash>
-sed -i "28,33 s/# *//" autogen.sh
-</code>
-regex parse value of xml tags
-<code bash>
-sed -n 's/.*<id>\(.*\)<\/id>.*/\1/p' myfile.txt
-</code>
-delete multiple lines
-<code bash>
-sed -i '2,3d;5d;8d' file
 </code>
-insert line after match
-<code bash>
-sed  '/\[option\]/a Hello World' input
-</code>
 ==== grep ====
 regex match group
@@ Line 158: / Line 115: @@
 fd --type f -e doc -e docx -e pdf -i gabriel -x cp --backup=t {} /tmp/gabriel/
 </code>
-==== rg ====
-filter file type
+find filenames unallowed characters
 <code bash>
-rg GPIO_CFG_2MA -g '*.h'
+fd '[^A-Z a-züö@0-9._-]' remote/200_Archiv/CP_Dont_Touch
 </code>
-search file containing multiple strings/words
-<code bash>
-rg -lU --multiline-dotall 'strictDeps.*onny|onny.*strictDeps' pkgs
-</code>
-==== curl ====
-post data
-<code bash>
-curl --data "UserId=eb8c2ec5352843d3a16ca11c26d3551c&Name=lolorollo&api_key=a5dc4e***9c9e0a***3" "https://turbotux.de/Playlists?UserId=eb8c2ec5352843d3a16ca11c26d3551c&Name=lolorollo&api_key=a5***d***9e0***3"
-</code>
-download and extract archive
-<code bash>
-curl http://wordpress.org/latest.tar.gz | tar xvz
-</code>
-set host header
-<code bash>
-torify curl --header "Host: http.pi" blog.project-insanity.org
-</code>
-==== tcpdump ====
-specific ports
-<code bash>
-tcpdump -i eth0 -q '(tcp port 80) or (tcp port 443)' -A
-</code>
-exclude specific host
-<code bash>
-tcpdump -i eth0 -q '(ip or ip6) and (tcp port 80) or (tcp port 443) and not host ifconfig.co' -A
-</code>
 ==== patching ====
 === appling ===
@@ Line 209: / Line 137: @@
 </code>
+==== xargs ====
+<code>
+fd . | xargs -I {} rm "{}"
+</code>
 ===== rsync =====
 custom ssh port
@@ Line 233: / Line 166: @@
 </file>
 ===== networking =====
-netcat
-<code bash>
-netcat -l 4444
-</code>
-<code bash>
-netcat playground.pi 4444
-</code>
 ==== nftables ====
 <code bash>
@@ Line 281: / Line 207: @@
 iptables -t nat -A OUTPUT -p tcp --dport 2222 -j DNAT --to 192.168.1.2:22
 </code>
-</code>
-==== ip ====
-set address
-<code bash>
-ip address add dev usb0 172.16.42.1/24
-ip link set usb0 up
-</code>
-route command example
-<code bash>
-ip route add 192.168.1.0/24 dev eth0
-ip route add default via 192.168.1.1
-</code>
-flush addresses
-<code bash>
-ip addr flush dev enp8s0
-</code>
-remove interface
-<code bash>
-ip link delete br0
-</code>
-delete address
-<code bash>
-ip addr del 192.168.178.20/24 dev eth0
-</code>
-show only specific interface
-<code bash>
-ip a show wg0
 </code>
-change mtu
-<code bash>
-ip link set dev eth0 mtu 1400
-</code>
 ==== dnsmasq ====
 minimal hostapd and dnsmasq config
@@ Line 366: / Line 261: @@
 compression
 <code bash>
-convert -density 200x200 -units PixelsPerInch -compress jpeg -quality 70 in.pdf out.pdf
+gm convert -density 200x200 -units PixelsPerInch -compress jpeg -quality 70 in.pdf out.pdf
 </code>
 lossless merge
@@ Line 402: / Line 297: @@
 ffmpeg -i Kawamata\ -\ La\ passage\ des\ chaises.mkv -vf subtitles=Kawamata\ -\ La\ passage\ des\ chaises.mkv -acodec copy -preset:v ultrafast Kawamata\ -\ La\ passage\ des\ chaises.mp4
 </code>
-==== batch convert images ====
-<code bash>
-for i in *.jpeg; convert -resize 30% $i (string replace jpeg jpg $i); end
-</code>
 ==== lossless mp3 merge ====
 <code bash>
@@ Line 422: / Line 314: @@
 </code>
 ===== security =====
+==== web discovery ====
+=== photon ===
+<code>
+photon -u test.example.org
+</code>
 ==== lynis ====
@@ Line 437: / Line 337: @@
 ==== wfuzz ====
 <code bash>
-torify wfuzz -c --hc 404 -w /opt/wfuzz/wordlist/general/megabeast.txt http://www.leeel.de/FUZZ
+wfuzz -c --hc 404 -w /opt/wfuzz/wordlist/general/megabeast.txt http://www.leeel.de/FUZZ
-torify wfuzz -c --hc 404,403 -w /opt/wfuzz/wordlist/general/admin-panels.txt -w /opt/wfuzz/wordlist/general/extensions_common.txt http://www.leeel.de/FUZZFUZ2Z
+wfuzz -c --hc 404,403 -w /opt/wfuzz/wordlist/general/admin-panels.txt -w /opt/wfuzz/wordlist/general/extensions_common.txt http://www.leeel.de/FUZZFUZ2Z
 </code>
 Preparing data for LFI scan
@@ Line 456: / Line 356: @@
 sec tools
+  * dirbuster
   * https://mitmproxy.org/
   * **tiger** - system sec scanner
@@ Line 467: / Line 368: @@
   * iodine dns tunnel https://code.kryo.se/iodine/
   * command searchsploit in exploitdb
+  * NixOS for Pentesting Overview https://github.com/NixOS/nixpkgs/issues/81418
 ===== chromium / chrome =====
@@ Line 474: / Line 376: @@
 </code>
 ===== docker =====
-Short example
+Pull
 <code bash>
- sudo systemctl start docker
+docker pull ubuntu:22.04
- gpasswd -a onny docker
+docker pull rootlogin/nextcloud:develop
- docker run -d -p 80:80 rootlogin/nextcloud
- docker run -v /home/onny/projects/nextcloud-app-radio:/opt/nextcloud/apps/radio -d --name nextcloud -p 80:80 rootlogin/nextcloud
 </code>
+Run
+<code bash>
+docker run -td ubuntu:22.04
+</code>
+Executing
+<code bash>
+docker exec -it ffffdfdfsdfsdfsfsffsdfs /bin/bash
+</code>
+Nextcloud
+<code bash>
+docker run -d -p 80:80 rootlogin/nextcloud
+docker run -v /home/onny/projects/nextcloud-app-radio:/opt/nextcloud/apps/radio -d --name nextcloud -p 80:80 rootlogin/nextcloud
+</code>
 Debugging it
 <code bash>
@@ Line 486: / Line 404: @@
  docker exec -i -t e326cbb922aa /bin/bash # exec new shell running container
 </code>
 Pull from repository
 <code>
@@ Line 496: / Line 415: @@
  docker run -i -t e326cbb922aa /bin/bash
 </code>
-Pull specific tagged image
-<code bash>
-docker pull rootlogin/nextcloud:develop
-</code>
 Build from Dockerfile
 <code>
@@ Line 523: / Line 439: @@
 docker system prune -a
 </code>
-docker stop all container
-<code bash>
-docker stop (docker ps -a -q)
-</code>
 prevent from auto start
 <code bash>
 docker update --restart=no client-iaro_db_1
@@ Line 703: / Line 617: @@
 git remote set-url origin gitlab@http-new.pi:onny/web-wikidict.git
 </code>
-tagging
-<code bash>
-git tag -a v0.1 -m 'whackspace wordpress theme init'
-</code>
 merge commits from a remote repository
 <code bash>
 git fetch https://github.com/rfc2822/davdroid.git master
@@ Line 802: / Line 714: @@
 git commit --allow-empty -m 'run tests again'
 git push --set-upstream USERNAME mynewbranch
-</code>
-change message of last git commit
-<code bash>
-git commit --amend
 </code>
 force push, remove latest commit of remote repository (origin)
@@ Line 832: / Line 740: @@
 git commit --all --amend --no-edit
 git rebase --continue
-</code>
-add co-author / co-authors to commit
-<code bash>
-git commit --amend
-# Add line: Co-authored-by: name <name@example.com>
 </code>
 ===== yum =====
@@ Line 919: / Line 821: @@
 </code>
   * check spamminess of email server: https://www.mail-tester.com/
-  * manual imap login
-openssl imaps login
-<code>
-openssl s_client -connect mail.sexypump.de:993 -crlf
-A login cypherpunk cypherpunk
-</code>
-get quota
-<code>
-a GETQUOTAROOT INBOX
-</code>
-get msg count of folder
-<code>
-a LIST INBOX *
-* LIST (\HasChildren) "." INBOX
-* LIST (\HasNoChildren \UnMarked) "." "INBOX.Deleted Messages"
-* LIST (\HasNoChildren \UnMarked) "." "INBOX.Sent Messages"
-* LIST (\HasNoChildren \UnMarked \Trash) "." INBOX.Trash
-* LIST (\HasNoChildren \UnMarked \Sent) "." INBOX.Sent
-* LIST (\HasNoChildren \UnMarked) "." INBOX.Notes
-* LIST (\HasNoChildren \UnMarked \Junk) "." INBOX.Junk
-* LIST (\HasNoChildren \UnMarked \Drafts) "." INBOX.Drafts
-* LIST (\HasNoChildren \UnMarked) "." INBOX.AntiSpam
-a OK List completed (0.001 + 0.000 secs).
-a SELECT INBOX
-</code>
 send smtp mail
 <code>
@@ Line 1299: / Line 1177: @@
 </code>
-quick launch program
+run program
 <code bash>
-nix run nixpkgs.electrum --command electrum
+nix run nixpkgs#electrum -- --help
+nix run github:TheZombie1999/nixpkgs#upscaly
+nix shell nixpkgs#hash-slinger --command tlsa --create example.org
 </code>
@@ Line 1329: / Line 1209: @@
 <code>
-let
+nixpkgs.config.packageOverrides = pkgs: rec {
+  unstable = import unstableTarball { };
-  # FIXME
+  opensnitch = unstable.opensnitch;
-  unstableTarball =
+};
-    fetchTarball
-      https://github.com/NixOS/nixpkgs/archive/nixos-unstable.tar.gz;
-in
-{
-  disabledModules = [ "programs/firejail.nix" ];
-  imports = [
-    "${fetchTarball "https://github.com/NixOS/nixpkgs/archive/nixos-unstable.tar.gz"}/nixos/modules/services/security/opensnitch.nix"
-    /home/onny/projects/nixpkgs2/nixos/modules/services/networking/create_ap.nix
-  ];
-  nixpkgs.config.packageOverrides = pkgs: rec {
-    unstable = import unstableTarball { };
-    opensnitch = unstable.opensnitch;
-  };
-  #services.opensnitch.enable = true;
 </code>
@@ Line 1381: / Line 1244: @@
     '';
   });
-</code>
-use local src / source
-<code>
-  src = "/home/onny/projects/linux-wifi-hotspot";
-  dontUnpack = true;
-  unpackPhase = ''cp -r --no-preserve=mode $src/* .'';
 </code>
@@ Line 1398: / Line 1252: @@
 </code>
-package overlay and override attributes
+fetchpatch array
 <code>
-  nixpkgs.overlays = [
+patches = map fetchpatch [
-    (self: super: {
+  /* This patch is currently necessary for the unit test suite to run correctly.
-      foo2zjs = (import (builtins.fetchTarball {
+   * See https://www.mail-archive.com/klee-dev@imperial.ac.uk/msg03136.html
-        url =
+   * and https://github.com/klee/klee/pull/1458 for more information.
-          "https://github.com/onny/nixpkgs/archive/foo2zjs.tar.gz";
+   */
-        sha256 = "0dsix1vp4canialzj4rp51i35lhdk28yndnnj62i0brzlng7jdrk";
+  #{
-      }) {} ).foo2zjs;
+  #  name = "fix-gtest";
-      wordpress = super.wordpress.overrideAttrs (oldAttrs: rec {
+  #  sha256 = "F+/6videwJZz4sDF9lnV4B8lMx6W11KFJ0Q8t1qUDf4=";
-        # Remove default plugins and themes
+  #  url = "https://github.com/klee/klee/pull/1458.patch";
-        installPhase = oldAttrs.installPhase + ''
+  #}
-          rm -r $out/share/wordpress/wp-content/plugins/*
-          rm -r $out/share/wordpress/wp-content/themes/*
-        '';
-      });
-      foo2zjs = super.foo2zjs.overrideAttrs (oldAttrs: rec {
-        src = builtins.fetchurl {
-          url = "https://github.com/onny/nixpkgs/archive/foo2zjs-colorfix.tar.gz";
-          sha256 = "0xksz2p2l0jx083hlbrh295ncb2lgsp9b8nwdig3lyinl5x";
-        };
-        patches = (oldAttrs.patches or []) ++ [
-          (pkgs.fetchpatch {
-            url = "https://raw.githubusercontent.com/onny/nixpkgs/12b6026fb0a4119e40a095aae224eaaf27098c10/pkgs/misc/drivers/foo2zjs/dell1250c-a4fix.patch";
-            sha256 = "0lvbryw6ymh0ahwkhqsgmjimg5saa8b1xnxmyyjxrbi3l3a6flll";
-          })
-        ];
-      });
-    })
-  ];
-</code>
-fetchpatch
+  # This patch fixes test compile issues with glibc 2.33+.
+  #{
-<code>
+  #  name = "fix-glibc-2.33";
-  patches = [
+  #  sha256 = "PzxqtFyLy9KF1eA9AAKg1tu+ggRdvu7leuvXifayIcc=";
-    ./no-hardcode-fw.diff
+  #  url = "https://github.com/klee/klee/pull/1385.patch";
+  #}
-    # Support HBPL1 printers https://www.dechifro.org/hbpl/
-    ./hbpl1.patch
-    # Fix "Unimplemented paper code" error for hbpl1 printers
-    # https://github.com/mikerr/foo2zjs/pull/2
-    (fetchpatch {
-      url = "https://patch-diff.githubusercontent.com/raw/mikerr/foo2zjs/pull/2.patch";
-      sha256 = "0lvbryw6ymh0ahwkhqsgmjimg5saa8b1xnxmyyjxrbi3l3a6fbvy";
-    })
-  ];
 </code>
@@ Line 1464: / Line 1288: @@
 <code bash>
 QEMU_NET_OPTS="hostfwd=tcp::8080-:80" NIX_PATH=nixpkgs=/home/onny/projects/nixpkgs nixos-shell vm-invoiceplane.nix
+sudo -E QEMU_NET_OPTS="hostfwd=tcp::80-:80" NIX_PATH=nixpkgs=/home/onny/projects/nixpkgs nixos-shell vm-invoiceplane.nix
 </code>
@@ Line 1776: / Line 1601: @@
   '';
 </code>
 ==== nixops ====
@@ Line 1830: / Line 1656: @@
 fatlabel /dev/sdb1 "mystick"
 </code>
 resize extX partition
 <code bash>
 sfdisk -l /dev/sdb
@@ Line 1915: / Line 1743: @@
 </code>
-===== avahi =====
-discover local services
-<code bash>
-avahi-browse --all --ignore-local --resolve --terminate
-</code>
 ===== curlftpfs =====
 <code bash>
@@ Line 2069: / Line 1893: @@
 </code>
-===== cups =====
-list printers
+===== qemu =====
+booting armv7 alpinelinux
+<code bash>
+# download kernel and stuff from here http://dl-cdn.alpinelinux.org/alpine/edge/releases/armv7/netboot/
+qemu-system-arm -M virt -m 512M -cpu cortex-a15 -kernel vmlinuz-lts -initrd initramfs-lts -append "console=ttyAMA0 ip=dhcp alpine_repo=http://dl-cdn.alpinelinux.org/alpine/edge/main/" -nographic
+</code>
+===== postgresql =====
+list all databases
+<code bash>
+sudo -u postgres psql
+# \l
+</code>
+drop database
+<code bash>
+sudo -u postgres psql
+# drop database gitlabhq_production;
+# drop database gitlabhq_production WITH (FORCE);
+</code>
+list tables
+<code bash>
+sudo -u postgres psql
+# \c gitlabhq_production
+# \dt
+</code>
+create and delete user
 <code>
-$ lpstat -p -d
+DROP ROLE gitlab;
-printer Dell_1250c is idle.  enabled since Tue 28 Dec 2021 09:44:59 AM UTC
+CREATE USER gitlab WITH PASSWORD 'test123';
-printer Dell_1250c_USB is idle.  enabled since Tue 28 Dec 2021 09:44:59 AM UTC
 </code>
-print file
+grant permissions
 <code>
-lp -d Dell_1250c_USB -o fit-to-page -o media=A4 scared_cat.png
+ALTER USER gitlab SUPERUSER;
+CREATE DATABASE gitlabhq_production OWNER gitlab;
+ALTER DATABASE gitlabhq_production OWNER TO gitlab;
 </code>
-list jobs
+dump database
 <code>
-$ lpstat
+pg_dump -U gitlab gitlabhq_production > /tmp/gitlab.pgsql
-Dell_1250c_USB-2        root            340992   Tue 28 Dec 2021 09:57:08 AM UTC
 </code>
-cancel job
+dump all
 <code>
-cancel 1
+pg_dumpall > /tmp/dump_file_name.tar
 </code>
-===== qemu =====
+import database
+<code>
-booting armv7 alpinelinux
+psql# CREATE DATABASE gitlabhq_production;
-<code bash>
+psql -U gitlab gitlabhq_production < gitlab.pgsql
-# download kernel and stuff from here http://dl-cdn.alpinelinux.org/alpine/edge/releases/armv7/netboot/
-qemu-system-arm -M virt -m 512M -cpu cortex-a15 -kernel vmlinuz-lts -initrd initramfs-lts -append "console=ttyAMA0 ip=dhcp alpine_repo=http://dl-cdn.alpinelinux.org/alpine/edge/main/" -nographic
 </code>

Project-Insanity

Site Tools

Differences

Page Tools