hashcat crack sha256 with rockyou.txt

cat sha256_hash_rockyou.txt 
F09EDCB1FCEFC6DFB23DC3505A882655FF77375ED8AA2D1C13F640FCCC2D0C85
hashcat -m 1400 -a 0 sha256_hash_rockyou.txt ~/rockyou/rockyou.txt
hashcat -m 1400 --show sha256_hash_rockyou.txt
f09edcb1fcefc6dfb23dc3505a882655ff77375ed8aa2d1c13f640fccc2d0c85:paule

hashcat crack brcypt with rockyou.txt

It’s slow, so just crack the 1. 4 letter word 2. 4 litter letter.…

nmap & Linux Process Analysis

I have begun learning security skills on the TryHackMe website and have completed two rooms. In my opinion, it is the best site for acquiring and practicing security skills so far.

Nmap Live Host Discovery
Linux Process Analysis

And several …

SAP AI Core 接入Cursor

估计这是全网第一篇把SAP AI Core 接入Cursor 的教程。

教程很简单，按照下面项目README，跑一个本地AI Core LLM 代理服务器

https://github.com/pjq/sap-ai-core-llm-proxy

http://127.0.0.1:5000

接着找一台有公网IP的电脑，注册绑定好域名，在Nginx设置好反向代理

比如 https://ai-proxy

然后在Cursor 设置自定义Open AI URL

https://ai-proxy/v1

这个代理服务器是手工搓的，目前支持gpt-4,gpt-4o, Claude 3.5 sonnet 统一了OpenAI API协议，所以可以用到任何兼容OpenAI API 的客户端。

至此，Token自由。

SAP AI Core LLM Proxy 介绍

sap-ai-core-llm-proxy is …

iptables

opkg update
opkg install coreutils-nohup bash iptables dnsmasq-full curl ca-certificates ipset ip-full iptables-mod-tproxy iptables-mod-extra libcap libcap-bin ruby ruby-yaml kmod-tun kmod-inet-diag unzip luci-compat luci luci-base

nftables

opkg update
opkg install coreutils-nohup bash dnsmasq-full curl ca-certificates ipset ip-full libcap libcap-bin ruby …

群晖启用xiaogpt

使用Docker来开启xiaogpt, 当前Docker官文Docker源被墙了，所以可以先找一个国内的镜像，比如

https://dockerproxy.cn

docker pull dockerproxy.cn/yihong0618/xiaogpt

准备好config.yaml文件，然后命令行启动

docker run -v /volume2/hdd_4T/xiaogpt/config:/config yihong0618/xiaogpt --config=/config/myconfig_livingroom.yaml

…

Cloudflare ddns update shell script

I am running my NAS at home, and it has the public IP, but the IP will be changed randomly, so I need to bind it to the subdomain in the Cloudflare, so I can visit it even the IP …

Fine tune llama2 on Mac

Prepare

Download llama2 gguf format model
- https://huggingface.co/TheBloke/Llama-2-7B-GGUF
- and put it into “./models/llama-2–7b/”

ls -lht models/llama-2-7b
total 7997112
-rw-r--r--@ 1 user  staff   3.8G Jan  4 13:12 llama-2-7b.Q4_K_M.gguf

2. Build the llama.cpp

git clone https://github.com/ggerganov/llama.cpp
cd llama.cpp
make -j

3. Prepare the

…

Cryptography 1

I am start to learn the cryptography, so I will note the Cryptography journey in my blog

Online resources

Some Cryptography online courses

https://www.pluralsight.com/search?q=Cryptography

Online hack platform

https://cryptohack.org/courses/

China Cryptography Cipher

SM4, one China Block Cipher

https://en.wikipedia.org/wiki/SM4_(cipher)

ShāngMì 4 (

…

Whisper.cpp Playground

Download and try the demo

Here is the github of whisper.cpp

https://github.com/ggerganov/whisper.cpp

make base.en
make medium
make large-v3

/main -m models/ggml-base.en.bin -f samples/jfk.wav

For Chinese Support

https://github.com/ggerganov/whisper.cpp/issues/1531
https://wulu.zone/posts/whisper-cn

./main -m ./models/ggml-medium.bin  -t 8 --step 500 --length 5000 --prompt "请用简体中文输出" -l

…

My server is flagged as hacked

Background

8 security vendors flagged this URL as malicious

https://www.virustotal.com/gui/url/3523cf904e82993fe621505619245f236c8cdfe8894cdcc1cb742a2348c2a1e2?nocache=1

tcpdump to figure out the force ssh attack from the server

 sudo tcpdump -vv -i eth0 src 165.227.xx.xx and not dst 101.230.xx.xx  port 22 -X -n

So here we need …

« Previous

Jianqing's Blog

Uncategorized

hashcat