New script

Author: RomaniukVadim

BannerGrabbing.py

@@ -0,0 +1,30 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import socket
+import re
+
+sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+sock.connect(("www.microsoft.com", 80))
+
+http_get = b"GET / HTTP/1.1\nHost: www.microsoft.com\n\n"
+data = ''
+try:
+    sock.sendall(http_get)
+    data = sock.recvfrom(1024)
+except socket.error:
+    print ("Socket error", socket.errno)
+finally:
+    print("closing connection")
+    sock.close()
+
+strdata = data[0].decode("utf-8")
+#  looks like one long line so split it at newline into multiple strings
+headers = strdata.splitlines()
+#  use regular expression library to look for the one line we like
+for s in headers:
+    if re.search('Server:', s):
+        s = s.replace("Server: ", "")
+        print(s)

Conditionals.py

@@ -0,0 +1,14 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+# input is a string unless converted
+x = int(input("Give me a number "))
+if (x < 1):
+    print("Too little")
+elif (x >= 1 and x <= 10):
+    print("Just about right")
+else:
+    print("Too high")
+

Cookies.py

@@ -0,0 +1,14 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import urllib2
+
+url = "https://www.google.com"
+request = urllib2.Request(url)
+resp = urllib2.urlopen(request)
+cookies = resp.info()['Set-Cookie']
+content = resp.read()
+resp.close()
+print (cookies, content)

Debugging.py

@@ -0,0 +1,27 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+from winappdbg import *
+
+with Debug ( bKillOnExit = True ) as dbg:
+    dbg.execl("calc.exe")
+
+    while dbg:
+        try:
+            dbg.wait(1000)
+        except Exception as e:
+            print(e)
+
+        try:
+            dbg.dispatch()
+        finally:
+            dbg.cont()
+
+cmdDbg = Debug()
+cmdDbg.system.scan_processes()
+    # let's look for cmd.exe processes
+for ( proc, name ) in cmdDbg.system.find_processes_by_filename( 'cmd.exe' ):
+    # print out the process ID and the name of the process
+    print proc.get_pid(), name

Encrypt.py

@@ -0,0 +1,20 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+# need pycrypto package
+from Crypto.Cipher import AES
+
+# key has to be 16, 24 or 32 bytes long
+cryptObj = AES.new("This is my key42", AES.MODE_CBC, "16 character vec")
+#  notice the spaces -- that's to pad it out to a multiple of 16 bytes
+plaintext = "This is some text we need to encrypt because it's very secret   "
+ciphertext = cryptObj.encrypt(plaintext)
+print("Cipher text: ", ciphertext)
+
+# this won't work if the key isn't identical
+newcryptObj = AES.new("This is my key42", AES.MODE_CBC, "16 character vec")
+result = newcryptObj.decrypt(ciphertext)
+
+print(result)

Exceptions.py

@@ -0,0 +1,16 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+try:
+    fhandle = open("myfile", "w")
+    fhandle.write("This is some data to dump into the file")
+    print("Wrote some data to the file")
+except IOError as e:
+    print("Exception caught: Unable to write to myfile ", e)
+except Exception as e:
+    print("Another error occurred ", e)
+else:
+    print("File written to successfully")
+    fhandle.close()

FTP.py

@@ -0,0 +1,21 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import ftplib
+
+f = ftplib.FTP("172.30.42.127")
+
+try:
+    f.login("ric", "P4ssw0rd!")
+    print(f.getwelcome())
+    f.delete("myfile")
+    print(f.dir())
+    f.set_pasv(1)
+    f.storbinary("STOR myfile", open("myfile", "rb"))
+    print(f.dir())
+except Exception as e:
+    print("Exception: ", e)
+finally:
+    f.close()

Fuzzing.py

@@ -0,0 +1,22 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+from pyfuzz.generator import *
+import socket
+
+msg = random_ascii() + b" / HTTP/1.1\nHost: 172.30.42.114\r\n"
+print(msg)
+
+try:
+    s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+    addr = ("172.30.42.114", 80)
+    s.connect(addr)
+    s.sendall(msg)
+    resp = s.recv(4096)
+    print(resp)
+except Exception as e:
+    print(e)
+finally:
+    s.close()

HEADRequest.py

@@ -0,0 +1,17 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import httplib
+
+host = "172.30.42.126"
+
+req = httplib.HTTP(host)
+req.putrequest("HEAD", "/")
+req.putheader("Host", host)
+req.endheaders()
+req.send("")
+
+statusCode, statusMsg, headers = req.getreply()
+print("Status: ", statusCode)

HTMLParse.py

@@ -0,0 +1,19 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+from HTMLParser import HTMLParser
+import urllib2
+
+class myParser(HTMLParser):
+    def handle_starttag(self, tag, attrs):
+        if (tag == "input"):
+            print("Found an input field ", tag)
+            print(attrs)
+
+url = "http://172.30.42.127/test.php"
+request = urllib2.Request(url)
+handle = urllib2.urlopen(request)
+parser = myParser()
+parser.feed(handle.read())

HTTPAuth.py

@@ -0,0 +1,25 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import httplib
+import base64
+import string
+
+h = "172.30.42.127"
+u = "ric"
+p = "P4ssw0rd"
+
+authToken = base64.encodestring('%s:%s' % (u, p)).replace('\n', '')
+print(authToken)
+
+req = httplib.HTTP(h)
+req.putrequest("GET", "/protected/index.html")
+req.putheader("Host", h)
+req.putheader("Authorization", "Basic %s" % authToken)
+req.endheaders()
+req.send("")
+
+statusCode, statusMsg, headers = req.getreply()
+print("Response: ", statusMsg)

HTTPDownload.py

@@ -0,0 +1,12 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import urllib
+
+print("starting download")
+
+urllib.urlretrieve("http://trendingmp3.com/music/user_folder/Rae%20Sremmurd%20-%20No%20Flex%20Zone.mp3", "thing.mp3")
+
+print("completed")

HTTPProxy.py

@@ -0,0 +1,14 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import urllib2
+
+proxy = urllib2.ProxyHandler({'http': '127.0.0.1:8080'})
+opener = urllib2.build_opener(proxy)
+urllib2.install_opener(opener)
+handle = urllib2.urlopen('http://www.microsoft.com')
+
+print(handle.read())
+

HTTPUserAgent.py

@@ -0,0 +1,20 @@
+#!/usr/bin/python
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import httplib
+
+h = "www.infiniteskills.com"
+
+req = httplib.HTTP(h)
+req.putrequest("GET", "/")
+req.putheader("Host", h)
+req.putheader("User-Agent", "Garbage browser: 5.6")
+req.putheader("My-Header", "My value")
+req.endheaders()
+req.send("")
+
+statusCode, statusMsg, headers = req.getreply()
+print("Response: ", statusMsg)
+

Loops.py

@@ -0,0 +1,22 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+
+name=input("What is your name? ")
+
+#  for loop ... range creates a list
+for i in range(1,10):
+    print (name, i)
+
+# while loop using break
+x=0
+while True:
+    print (x)
+    x=x+1
+    if (x==15):
+        break
+
+#  for loop using a list
+mylist=['lions', 'tigers', 'bears', 'ohmy']
+for i in mylist:
+    print(i)
+

MBR.py

@@ -0,0 +1,25 @@
+#!/usr/bin/python3
+#  (c) 2014, WasHere Consulting, Inc
+import struct
+
+f = open("mbr.dd", "rb")
+
+mbr = bytearray()
+try:
+    mbr = f.read(512)
+finally:
+    f.close()
+
+sig = struct.unpack("<I", mbr[0x1B8:0x1BC])
+print("Disk signature: ", sig[0])
+active = mbr[0x1BE]
+if active == 0x80:
+	print("Active flag: Active")
+else:
+	print("Active flag: Not active")
+
+lbastart = struct.unpack("<I", mbr[0x1C6:0x1CA])
+print("Partition Start (LBA): ", lbastart[0])
+lbaend = struct.unpack("<I", mbr[0x1C9:0x1CD])
+print("Partition End (LBA): ", lbaend[0])
+

Multicasting.py

@@ -0,0 +1,16 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import socket
+
+mgrp = "224.1.1.1"
+mport = 5775
+
+sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM, socket.IPPROTO_UDP)
+sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
+for i in range(1,10):
+    sock.sendto(b"Hi, this is me", (mgrp, mport))
+
+print("Message sent out to the multicast group")

NameLookups.py

@@ -0,0 +1,9 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import socket
+
+print(socket.gethostbyaddr("8.8.8.8"))
+print(socket.gethostbyname("www.google.com"))

NetworkClient.py

@@ -0,0 +1,21 @@
+#!/usr/bin/python3
+__author__ = 'kilroy'
+#  (c) 2014, WasHere Consulting, Inc.
+#  Written for Infinite Skills
+
+import socket
+
+host='localhost'
+
+mysock=socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+addr=(host,5555)
+mysock.connect(addr)
+
+try:
+    msg=b"hi, this is a test\n"
+    mysock.sendall(msg)
+except socket.errno as e:
+    print("Socket error ", e)
+finally:
+    mysock.close()
+