Itay Cohen ITAYC0HEN
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| (function(p) | |
| { | |
| function downloader(url,dest,position) | |
| { | |
| if(!dest || !url) | |
| {return null}; | |
| var _httpHandler=WScript.CreateObject("Msxml2.XMLhttp"); | |
| _httpHandler.onreadystatechange= function() | |
| { |
ITAYC0HEN
/ RegexInjection.ps1
Created
August 31, 2016 20:31
[CTF(x) 2016 : WEB] Harambehub – 100 pts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Written by: Itay Cohen, Aug 2016 | |
| $lowercase = [char[]]([int][char]'a'..[int][char]'z') | |
| $uppercase = [char[]]([int][char]'A'..[int][char]'Z') | |
| $numbers = 0..9 | |
| $chars = $lowercase+$uppercase+$numbers | |
| function RegexInjection($regex){ | |
| foreach($c in $chars) | |
| { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import java.util.ArrayList; | |
| import java.util.List; | |
| import static spark.Spark.*; | |
| /** | |
| * Created by aashish on 8/26/16. | |
| */ | |
| public class HarambeHub { | |
| public static void main(String[] args) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import java.util.ArrayList; | |
| import java.util.List; | |
| /** | |
| * Created by aashish on 8/26/16. | |
| */ | |
| public class User { | |
| static List<User> users = new ArrayList<>(); | |
| private String username; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| if (!defined('INCLUDED_INDEX')) { | |
| define('INCLUDED_INDEX', true); | |
| ini_set('display_errors', 1); | |
| include "flag.php"; | |
| ?> | |
| <!doctype html> | |
| <html> | |
| <head> | |
| <meta charset=utf-8> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- coding:utf-8 -*- | |
| # Server connection example file for Python 2 | |
| import socket | |
| import sys | |
| import random | |
| import itertools | |
| # My added data | |
| def makepal(l): | |
| for b in itertools.permutations(l, len(l)): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from sympy import * | |
| from Crypto.Util.number import * | |
| import Crypto.PublicKey.RSA as RSA | |
| import os | |
| # n from key1 | |
| n1 = 19402643768027967294480695361037227649637514561280461352708420192197328993512710852087871986349184383442031544945263966477446685587168025154775060178782897097993949800845903218890975275725416699258462920097986424936088541112790958875211336188249107280753661467619511079649070248659536282267267928669265252935184448638997877593781930103866416949585686541509642494048554242004100863315220430074997145531929128200885758274037875349539018669336263469803277281048657198114844413236754680549874472753528866434686048799833381542018876362229842605213500869709361657000044182573308825550237999139442040422107931857506897810951 | |
| # n from key2 | |
| n2 = 1940264376802796729448069536103722764963751456128046135270842019219732899351271085208787198634918438344203154494526396647744668558716802515477506017878289709799394980084590321889097527572541669925846292009798642493608854111279095887521133618824910728075366146761951107 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| from hashlib import * | |
| import string | |
| import itertools | |
| from Crypto.Util.number import * | |
| from sympy import perfect_power | |
| import time | |
| # Cout primes and perfect powers in a range | |
| def countNumbers(lower,upper): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| if (isset($_GET['page'])) { | |
| $page = $_GET['page']; | |
| } else { | |
| $page = "home"; | |
| } | |
| $file = "templates/" . $page . ".php"; | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| r = remote('misc.chal.csaw.io',8000) | |
| # Create an array of dollars and coins values | |
| money = [10000.0, 5000.0, 1000.0, 500.0, 100.0, 50.0, 20.0, 10.0, 5.0, 1.0, 0.5, 0.25, 0.1, 0.05, 0.01] | |
| count = 0 | |
| while(True): | |
| count += 1 |
OlderNewer