Skip to content

Instantly share code, notes, and snippets.

Avatar
🎯
Making Memes & writing code :)

Syed Umar Arfeen Anon-Exploiter

🎯
Making Memes & writing code :)
View GitHub Profile
@Anon-Exploiter
Anon-Exploiter / decode.py
Created Apr 10, 2021
Just decode it! :|
View decode.py
#!/usr/bin/python3
from codecs import encode
import base64
import argparse
import re
import pycipher
# pycipher import Atbash
@Anon-Exploiter
Anon-Exploiter / btc-pricing.py
Created Mar 17, 2021
Get BTC (USD) price/minute in discord server
View btc-pricing.py
# Get USD price of BTC (changing) per minute in your discord server!
# Just replace the webhook_url variable and create a cron as you see fit.
#!/usr/bin/python3
import requests
import json
# BTCPRICE=`curl -s https://api.coindesk.com/v1/bpi/currentprice/USD.json | jp bpi.USD.rate | cut -d '"' -f2`
# JSON="{\"content\": \"Current price of BTC is: **$BTCPRICE** USD\"}"
@Anon-Exploiter
Anon-Exploiter / gob.sh
Created Nov 8, 2020
Gobuster -- variations with different lists
View gob.sh
gobuster dir -w /usr/share/wordlists/dirb/common.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirb/big.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://10.10.10.37/ -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirb/big.txt -u http://10.10.10.37/ -x php,jsp,rb,py,js,asp,aspx,zip,sql,tar,txt,key,doc,docx,html,jar,groovy,back,xml,ini,inc,config,json,yml,conf,cgi -k -l -e -b 404 -t 80
gobuster dir -w /usr/share/wordlists/dirb/common.txt -u http://54.164.63.113/ -x php,jsp,rb,py,js,asp,aspx,zip,sql,tar,txt,key,doc,docx,html,jar,groovy,back,xml,ini,inc,config,json,yml,conf,cgi -k -l -e -b 404 -t 80
View .bashrc
# ~/.bashrc: executed by bash(1) for non-login shells.
# see /usr/share/doc/bash/examples/startup-files (in the package bash-doc)
# for examples
# If not running interactively, don't do anything
case $- in
*i*) ;;
*) return;;
esac
@Anon-Exploiter
Anon-Exploiter / youtube-playlist-reverse.py
Last active Dec 22, 2020
Generating commands for youtube playlist downloading in reverse with index in file name using youtube-dl
View youtube-playlist-reverse.py
import os
playlist = "https://www.youtube.com/user/..."
command = f"youtube-dl -j --flat-playlist --playlist-reverse {playlist} | jq -r '.id' | sed 's_^_https://youtu.be/_'"
output = os.popen(command).read()
print(output)
ytUrls = []
@Anon-Exploiter
Anon-Exploiter / .zshrc
Created Sep 17, 2020
.zshrc of Kali Linux 2020.3 including the lit prompt
View .zshrc
# ~/.zshrc file for zsh non-login shells.
# see /usr/share/doc/zsh/examples/zshrc for examples
setopt autocd # change directory just by typing its name
#setopt correct # auto correct mistakes
setopt interactivecomments # allow comments in interactive mode
setopt ksharrays # arrays start at 0
setopt magicequalsubst # enable filename expansion for arguments of the form ‘anything=expression’
setopt nonomatch # hide error message if there is no match for the pattern
setopt notify # report the status of background jobs immediately
@Anon-Exploiter
Anon-Exploiter / commands.matlab
Last active Apr 28, 2021
Creating CS:GO server with skins, ws, gloves, knifes, etc. on a Ubuntu Instance
View commands.matlab
sudo apt-get -y update && \
sudo apt-get -y upgrade && \
sudo apt install software-properties-common && \
sudo add-apt-repository multiverse && \
sudo dpkg --add-architecture i386 && \
sudo apt-get -y update && \
sudo apt-get -y upgrade && \
sudo systemctl reboot
sudo apt-get -y install steamcmd && \
@Anon-Exploiter
Anon-Exploiter / jwtBuster.py
Last active Jul 23, 2021
For pentesting the JWT token, fetching it's body, type, and signing it with a random string or pem file (based on type being used). Also, returns None type JWT.
View jwtBuster.py
from sys import argv
import json
import jwt
JWTSECRET = "jwtSecretKeyEncryption"
PRIVATEKEY = """-----BEGIN RSA PRIVATE KEY-----
MIIEogIBAAKCAQEAnzyis1ZjfNB0bBgKFMSvvkTtwlvBsaJq7S5wA+kzeVOVpVWw
kWdVha4s38XM/pa/yr47av7+z3VTmvDRyAHcaT92whREFpLv9cj5lTeJSibyr/Mr
@Anon-Exploiter
Anon-Exploiter / cronjob.sh
Last active Jun 16, 2020
Taking regular backups of OSCP/OSWE data
View cronjob.sh
#!/bin/bash
archiveName=OSWE-`date +%d_%m_%Y`.tar.gz
cd /home/$USER/
# Cronjob:
# 00 15 * * * /path/cronjob.sh | tee /tmp/cronLogs.txt
tar -czvf $archiveName OSWE/
mv $archiveName /path/ -v
@Anon-Exploiter
Anon-Exploiter / firebase_apiKeys_testing.html
Created Jun 16, 2020
For testing the Firebase API keys found in Web Applications or in JavaScript Code --
View firebase_apiKeys_testing.html
<!DOCTYPE html>
<html>
<head>
<title></title>
</head>
<body>
<script src="https://www.gstatic.com/firebasejs/7.6.1/firebase-app.js"></script>
<!-- If you enabled Analytics in your project, add the Firebase SDK for Analytics -->