DeathsPirate’s gists

DeathsPirate / results.csv

Last active December 7, 2025 19:03

Metric	AWS Security Agent	Shinobi	The Difference
Total Findings	17	42	Shinobi found 2.5x more issues.
Critical Vulnerabilities	2	16	AWS missed 87% of the critical risks.
Business Logic Flaws	1 (Correctly Rated)	7+	AWS completely failed to detect fraud logic.

DeathsPirate / properties.json

Created September 23, 2025 16:00

{"basePath":"\/api","paths":{"\/login":{"get":{"tags":["1. Login"],"summary":"Check if any user is logged in","description":"If a user is loggedin the username will be returned","operationId":"checkLogin","produces":["application\/json"],"parameters":[{"name":"Authorization","in":"header","required":true,"description":"Authorization token (provided upon successful login)","type":"string"}],"responses":{"401":{"description":"Logged out"},"200":{"description":"Logged in"}}},"post":{"tags":["1. Login"],"summary":"Login method","description":"After a successful login a token is returned. This is a Bearer token. To authenticate with it use the Authorization header and set value to Bearer empty space and the token value.","operationId":"login","consumes":["application\/json"],"produces":["application\/json"],"parameters":[{"in":"body","name":"body","description":"Username and password combination to allow users to log-in","required":true,"schema":{"$ref":"#\/definitions\/login"}}],"responses":{"200":{"description":

DeathsPirate / gist:050e3fc786557ea392eb0f837c5d8518

Created December 10, 2023 19:05

keybase.md

	### Keybase proof

	I hereby claim:

	* I am deathspirate on github.
	* I am deathspirate (https://keybase.io/deathspirate) on keybase.
	* I have a public key ASAbWLVEs3dhXvHxyl_2peG3pKhaz758bNCzsRAKCWg-ygo

	To claim this, I am signing this object:

DeathsPirate / cve-2023-3519_checker.nse

Created July 24, 2023 20:57

NSE Script to check the patch status of Citrix NetScaler devices.

	local http = require "http"
	local stdnse = require "stdnse"
	local shortport = require "shortport"
	local slaxml = require "slaxml"

	description = [[
	Checks for the version number of Netscaler Gateway Windows plugin.
	]]

	author = "DeathsPirate"

DeathsPirate / 3CXLocalDNSCacheHunter.ps1

Created March 30, 2023 08:31

	# List of domains to search in DNS cache
	$domains = @(
	"akamaicontainer.com",
	"akamaitechcloudservices.com",
	"azuredeploystore.com",
	"azureonlinecloud.com",
	"azureonlinestorage.com",
	"dunamistrd.com",
	"glcloudservice.com",
	"journalide.org",

DeathsPirate / 3cxInfectionHunter.ps1

Created March 30, 2023 08:21

	# Search for ffmpeg.dll in the C drive
	$ffmpegFiles = Get-ChildItem -Path "C:\" -Recurse -Filter "ffmpeg.dll" -ErrorAction SilentlyContinue

	# Initialize an array to store the hash results
	$hashResults = @()

	# The target hash to compare with
	$targetHash = "7986bbaee8940da11ce089383521ab420c443ab7b15ed42aed91fd31ce833896"
	$found = $false
	# Calculate the SHA256 hash for each file

DeathsPirate / image_matcher.py

Created March 19, 2023 11:43

Image matching

	import cv2
	import numpy as np


	def calculate_differences(img1, img2):
	# Initialization
	detector = cv2.ORB_create()
	descriptor = cv2.ORB_create()
	matcher = cv2.DescriptorMatcher_create(cv2.DESCRIPTOR_MATCHER_BRUTEFORCE_HAMMING)

DeathsPirate / resources.yaml

Created March 1, 2019 20:45

	- name: es
	type: elasticsearch.Domain
	config:
	elasticsearchVersion: "6.4"
	ebsOptions:
	ebsEnabled: true
	volumeSize: 10
	clusterConfig:
	instanceType: t2.small.elasticsearch

DeathsPirate / sinks.yaml

Created March 1, 2019 20:25

	- name: es-sink
	type: AwsFirehose
	resource: es
	aws:
	destination: elasticsearch
	elasticsearchConfiguration:
	indexName: hpevents
	typeName: hpevent

DeathsPirate / pipes.yaml

Created March 1, 2019 20:20

	- tap: honeylogs-tap
	pipeline: enrichment

	- pipeline: enrichment
	sink: es-sink

Deaths Pirate DeathsPirate