I hereby claim:
- I am 0xdade on github.
- I am dade (https://keybase.io/dade) on keybase.
- I have a public key ASDoG6G5j-BprfJi_lqfeOzU-n5EYAOLuucR6uECqM6yXwo
To claim this, I am signing this object:
dade 0xdade
0xdade
/ keybase.md
Created
September 23, 2016 01:22
0xdade
/ echosrv.py
Created
August 2, 2019 20:06
Simple flask app that prints POST data to the console. Useful for testing open redirects and other things where you can control where something get's POSTed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| from flask import Flask, request, Response | |
| app = Flask(__name__) | |
| @app.route('/', defaults={'path': ''}, methods=['GET', 'POST']) | |
| @app.route('/<path:path>', methods=['GET', 'POST']) | |
| def catch_all(path): | |
| if request.form: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from flask import Flask, request, Response | |
| import requests | |
| app = Flask(__name__) | |
| @app.route('/') | |
| def index(): | |
| url = requests.args.get("url") | |
| r = requests.get(url) | |
| return Response(r) |
0xdade
/ rename-master-branch.md
Last active
October 17, 2019 23:45
Changing default branches on github
$ git branch -m master main$ git push origin main- Change "Default Branch" in Settings->Branches on github. https:github.com/your/repo/settings/branches.
- Accept any warnings about changing the default branch.
- If you have any branch protection rules that affect the
masterbranch, delete them. $ git push origin :master- If you had any branch protection rules affecting the
masterbranch, recreate them on themainbranch. - Look through your repo for references to
masterand replace withmainas necesary.- Examples of this include URLs to a file in the REPO that are not relative
- If you get a warning "Your branch is based on 'origin/master', but the upstream is gone." then use the command it recommends:
git branch --unset-upstream
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Based on https://twitter.com/stokfredrik/status/1185580290108018694 | |
| # Turns into a bash function to ease use further | |
| # Relies on: | |
| # - https://github.com/tomnomnom/unfurl | |
| # - https://github.com/michenriksen/aquatone | |
| # - https://cli.shodan.io/ | |
| # Put this function in your .bash_profile or .bashrc file and then source it and you can use it like so: | |
| # $ prowl elasticsearch | |
| function prowl { |
0xdade
/ graphdracula-example.html
Last active
November 2, 2019 00:19
graphdracula without es6 modules
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <html> | |
| <head> | |
| <!-- Using this pre-ES6 fork of Dracula https://github.com/grigoryk/dracula-js-fork --> | |
| <script type="text/javascript" src="dracula-js-fork/raphael-min.js"></script> | |
| <script type="text/javascript" src="dracula-js-fork/dracula_graph.js"></script> | |
| <script type="text/javascript" src="dracula-js-fork/dracula_algorithms.js"></script> | |
| <script type="text/javascript" src="dracula-js-fork/dracula_graffle.js"></script> | |
| <script type="text/javascript" src="dracula-js-fork/seedrandom.js"></script> | |
| <script> | |
| function drawGraph() { |
0xdade
/ breachgen.py
Last active
November 7, 2019 20:05
A python port of http://whythefuckwasibreached.com/
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| ''' | |
| Python version of generating excuses that are generated by http://whythefuckwasibreached.com/ | |
| These actors, methods, targets, mitigations are not my own - they are copied directly from the whythefuckwasibreached website. | |
| I ported it to a python script so that it could be used for easy command line integration | |
| Long live LOLBOAT Enterprise Edition | |
| ''' | |
| import random |
0xdade
/ fetch-natlas-results.py
Created
November 8, 2019 23:12
Simple script for downloading a list of ip addresses that match a query from a natlas server
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| ''' | |
| Simple script for downloading a list of ip addresses that match a query from a natlas server | |
| Input: | |
| - Required: natlas url | |
| - Required: Search query, contained in quotes if it includes spaces | |
| - Optional: filename to save results to | |
| Example: ./fetch-natlas-results.py https://natlas.io 'ports.port:443 "application/json"' json-443.txt | |
| If no filename is present, the script will spit the results to stdout once they are all downloaded | |
| ''' |
0xdade
/ update-blog.sh
Created
November 15, 2019 21:31
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Enter repository folder and pull the latest version | |
| # (This is done with a read-only deploy key on a private repo) | |
| # `hugo` with no parameters builds the default version of the site, which has baseUrl="https://0xda.de" | |
| # Copy the built files (from public/*) into the webserver folder | |
| # Build a new version of the site with the baseUrl set to the onion address | |
| # Copy the built files from public/* to the onion web server directory | |
| cd 0xdade.github.com && \ | |
| git pull && \ |
0xdade
/ selfdestruct.py
Created
January 23, 2020 04:26
Simple code snippet for a python file to delete itself, whether it's a standalone .py file or compiled into an executable using pyinstaller
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| ''' | |
| Determine if this python is part of an executable or a standalone script and then delete the file accordingly. | |
| If the script has been bundled into an executable using pyinstaller (such as pyinstaller --onefile <fname>.py) then the realpath of __file__ will be incorrect, thus the use of sys.executable. | |
| Example of just relying on __file__: | |
| $ pyinstaller --onefile test.py | |
| [...] | |
| $ ls dist/ |
OlderNewer