Skip to content

Instantly share code, notes, and snippets.

View AgelxNash's full-sized avatar
Open to suggestions

Евгений Борисов AgelxNash

Open to suggestions
73 followers · 70 following
View GitHub Profile
@AgelxNash
AgelxNash / idna_convert.class.php
Created August 4, 2012 17:55
Encode/decode Internationalized Domain Names
<?php
// {{{ license
/* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */
//
// +----------------------------------------------------------------------+
// | This library is free software; you can redistribute it and/or modify |
// | it under the terms of the GNU Lesser General Public License as |
// | published by the Free Software Foundation; either version 2.1 of the |
// | License, or (at your option) any later version. |
@AgelxNash
AgelxNash / xml-attacks.md
Created February 10, 2018 22:36 — forked from mgeeky/xml-attacks.md
XML Vulnerabilities and Attacks cheatsheet

XML Vulnerabilities

XML processing modules may be not secure against maliciously constructed data. An attacker could abuse XML features to carry out denial of service attacks, access logical files, generate network connections to other machines, or circumvent firewalls.

The penetration tester running XML tests against application will have to determine which XML parser is in use, and then to what kinds of below listed attacks that parser will be vulnerable.

@AgelxNash
AgelxNash / navicat_tunnel.php
Created October 27, 2017 05:59 — forked from peterjaap/navicat_tunnel.php
Navicat tunnel file (the nearly unfindable ntunnel_mysql.php)
<?php //version my104
header("Content-Type: application/octet-stream");
error_reporting(0);
set_time_limit(0);
set_magic_quotes_runtime(0);
function phpversion_int()
{
list($maVer, $miVer, $edVer) = split("[/.-]", phpversion());
@AgelxNash
AgelxNash / .htaccess
Created October 1, 2017 14:09
Блокировка неугодных User Agent
#Script kiddie blocker start
RewriteEngine On
<IfModule mod_rewrite.c>
RewriteCond %{HTTP_USER_AGENT} ^w3af.sourceforge.net [NC,OR]
RewriteCond %{HTTP_USER_AGENT} dirbuster [NC,OR]
RewriteCond %{HTTP_USER_AGENT} nikto [NC,OR]
RewriteCond %{HTTP_USER_AGENT} sqlmap [NC,OR]
RewriteCond %{HTTP_USER_AGENT} fimap [NC,OR]
RewriteCond %{HTTP_USER_AGENT} nessus [NC,OR]
@AgelxNash
AgelxNash / anRules.rule
Created October 1, 2017 07:56
HashCat
i6
i7
i4
i5
i8
i3
s_
[ i5
$+ R6 R6
i9
@AgelxNash
AgelxNash / bruteforce.php
Last active April 15, 2017 01:30
<?php
$str = 'fD3_';
$chars = array_merge(range('a', 'z'), range('A', 'Z'), range('0', '9'), ['_']);
$total = 0;
$brut = '';
$len = strlen($str);
/**
* @see: https://www.programmingalgorithms.com/algorithm/brute-force?lang=PHP
*/
@AgelxNash
AgelxNash / keybase.md
Created February 21, 2017 19:38

Keybase proof

I hereby claim:

  • I am AgelxNash on github.
  • I am agel_nash (https://keybase.io/agel_nash) on keybase.
  • I have a public key whose fingerprint is ECBB 7D98 3B14 718D A9EF 3F53 BEE0 4861 12F0 296F

To claim this, I am signing this object:

@AgelxNash
AgelxNash / betweenTag.function.php
Created November 21, 2013 18:31
Вырезание текста между HTML тэгов. Корректно воспринимает любые уровни вложенности тэгов
<?php
/**
* Вырезание текста между HTML тэгов
*
* @author Agel_Nash <Agel_Nash@xaker.ru>
* @version 0.1
*
* @param string $html HTML текст
* @param string $tag HTML тэг в котором производить поиск
* @return array
@AgelxNash
AgelxNash / antihacker.plugin.php
Last active February 5, 2016 11:53
[EVO] Anti Hacker v.1.4
//<?
/**
* BAH - (Anti Hacker) created By Bumkaka
* modify by Agel_Nash
*
* @category plugin
* @version v 1.4
* @internal @events OnWebPageInit
* @internal @legacy_names BAH
* @internal @installset base, sample
@AgelxNash
AgelxNash / HtmlFromNabor.snippet.php
Created October 19, 2012 07:32
HtmlFromNabor
<?php
/**************************************/
/** HtmlFromNabor snippet for MODX Revo
*
* @version 0.2
* @author Borisov Evgeniy aka Agel Nash (agel-nash@xaker.ru)
* @date 18.12.2012
*
* @category snippet
* @internal @modx_category System