Skip to content

Instantly share code, notes, and snippets.

View InsiderPhD's full-sized avatar

Katie Paxton-Fear InsiderPhD

View GitHub Profile
import os
import re
import shutil
import requests
token = 'PASTE YOUR TOKEN HERE'
perpage = 50
# get all the items
<?php
namespace App\Http\Controllers;
use App\Models\Email;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
class EmailController extends AuthApiController
{
@InsiderPhD
InsiderPhD / blanketgen.php
Created November 27, 2021 21:59
generates a temperature blanket from a csv of temps
<style>
</style>
<div>
<table>
<tbody>
<tr>
<?php
echo 30/3;
<?php
namespace App\Http\Controllers;
use App\Models\Email;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;
class AuthApiController extends ApiController
{
# Basic Usage
ffuf -w wordlist.txt -u http://127.0.0.1:8000/api/FUZZ/6 -o output.txt -replay-proxy http://127.0.0.1:8080
# Basic Usage With a Cookie
ffuf -w wordlist.txt -u http://127.0.0.1:8000/api/FUZZ/6 -o output.txt -replay-proxy http://127.0.0.1:8080 -b "laravel_session=eyJpdiI6Ii8wQU11dTVlUkg2alRHUXBIVzlGSnc9PSIsInZhbHVlIjoiOWs3YllJWTdqNC9xa1pMeFRvMFh0OE1vRFpaWm9GSzFkRktVZS9yUHBDM0lIazZ4K0NsbndxWVIxQ05VZWhqZUZaR0RGQWlFdmdDc24yWllYRklGSXI5STd2b05Pam4yRXIwV1BUWkZhUnFLNUFzOWsycmRHcnlxS0FqRWNsSnEiLCJtYWMiOiI3ZTliMmM2YzIxOTExNDE0NmVjYTYyMGI4Nzg4YzJiYjNmNjVkNDI1YzEyODYwMzY5YzczNzY3NTUwZDk0OGYzIn0%3D;"
# Adding a delay
ffuf -w wordlist.txt -u http://127.0.0.1:8000/api/FUZZ/6 -o output.txt -replay-proxy http://127.0.0.1:8080 –p 1 –t 3
# Adding a delay (new method)
@InsiderPhD
InsiderPhD / Dockerfile
Created May 26, 2020 21:48
Arjun Docker
FROM python:3
WORKDIR /usr/src/app
COPY requirements.txt ./
RUN pip install --no-cache-dir -r requirements.txt
RUN mkdir data
COPY . .
# Drawing a scatter plot of raster images
doInstall <- TRUE # Change to FALSE if you don't want packages installed.
toInstall <- c("png", "devtools", "MASS", "RCurl")
if(doInstall){install.packages(toInstall, repos = "http://cran.r-project.org")}
lapply(toInstall, library, character.only = TRUE)
# Some helper functions, lineFinder and makeTable
source_gist("818983")
source_gist("818986")
@InsiderPhD
InsiderPhD / code.php
Created January 24, 2020 23:28
RCE PHP Demo for YT
<h1>Katie's Maths</h1>
<p>Type in an equation and let me do the hard work!</p>
<form method="post" action="code.php">
<input type="text" name="code" value="1+1">
<button type="submit" name="submit">Submit</button>
</form>
<hr>
<h1>Results</h1>
<?php
@InsiderPhD
InsiderPhD / csrf-attack_csrf.html
Last active March 12, 2024 08:49
CSRF PoC Example for YT
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>Title</title>
</head>
<body>
<form id = "csrf_form" method = "POST" action = "http://127.0.0.1:8000/user/name">
<input type = "text" name = "name" value = "hhh">
<form>
@InsiderPhD
InsiderPhD / SecretSanta.php
Created December 3, 2019 12:55
A laravel command which generates secret santa matches based on matching location preferences
<?php
namespace App\Console\Commands;
use Illuminate\Console\Command;
use Illuminate\Support\Facades\Storage;
use Illuminate\Support\Collection;
class SecretSantaPairing extends Command
{