Skip to content

Instantly share code, notes, and snippets.

View MrFatoni's full-sized avatar
👻
.

xbc MrFatoni

👻
.
63 followers · 7 following
View GitHub Profile
@MrFatoni
MrFatoni / extract.js
Created February 23, 2023 14:15
extract js endpoint
javascript:(function(){var scripts=document.getElementsByTagName("script"),regex=/(?<=(\"|\'|\`))\/[a-zA-Z0-9_?&=\/\-\#\.]*(?=(\"|\'|\`))/g;const results=new Set;for(var i=0;i<scripts.length;i++){var t=scripts[i].src;""!=t&&fetch(t).then(function(t){return t.text()}).then(function(t){var e=t.matchAll(regex);for(let r of e)results.add(r[0])}).catch(function(t){console.log("An error occurred: ",t)})}var pageContent=document.documentElement.outerHTML,matches=pageContent.matchAll(regex);for(const match of matches)results.add(match[0]);function writeResults(){results.forEach(function(t){document.write(t+"<br>")})}setTimeout(writeResults,3e3);})();
@MrFatoni
MrFatoni / writeup sys 3.md
Created February 16, 2023 12:15

Halo, tak jelasin seadanya Y

Penjelasan singkat: ketika _transfer() dikenakan fee untuk kemudian diburn.

  1. Ketika pengirim melakukan transfer akan dikenakan fee kurang lebih 4%

  2. Sedangkan penerima akan mendapatkan potongan 1% (untuk fee dev).

    Ketika kita mengirim token langsung ke address LP, liquidity token (reserve) kurang dari token balance sehingga Attacker bisa memanggil function skim() dan address LP akan melakukan burn fee yg besar mengakibatkan harga berubah.

Selanjutnya Attacker memanggil function sync() untuk menetapkan harga yg baru.

@MrFatoni
MrFatoni / sys3.sol
Created February 16, 2023 10:20
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.0;
import "forge-std/Test.sol";
contract asdadsadsadss is Test {
WETH9 private constant WETH = WETH9(0xB4FBF271143F4FBf7B91A5ded31805e42b2208d6);
reflectiveERC20 private constant TKN = reflectiveERC20(0x4F252dBE5FD366b38842Cd500281932746047299);
@MrFatoni
MrFatoni / write up sysfixed 2.md
Created February 15, 2023 05:05

halo lagi, kyk kemarin alias acak-acakan, step dan pocong di bawah. bug ini (kyknya) price manipulation, reentrancy dan incorrect flaw/validation

Penjelasan: _transfer() bakal ngejalanin logic ketika kita transfer token.

  1. kalau kita ngirim token ke address sendiri dengan value 0 akan menjalankan function releasePush() tapi error “ga ada bonus buat lo” 🤔 (karena isi myPush / angka setan kosong)
  2. karena trigger releasePush() butuh angka setan maka kita dapatkan dengan transfer token ke LP, dan diulangi beberapa kali. angka setan bertambah dengan looping transfer ke LP & skim() berulang **
  3. sewaktu kita ngirim token ke address liquidpool/LP akan menjalankan kalkulasi bonus & angka setan
  4. releasePush() akan ngeburn token dari LP (sesuai angka setan?)
@MrFatoni
MrFatoni / asdadsadsadss.sol
Created February 14, 2023 19:02
poc #2 sysfixed.org/ctf
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.0;
import "forge-std/Test.sol";
contract asdadsadsadss is Test {
WETH9 private constant WETH = WETH9(0xB4FBF271143F4FBf7B91A5ded31805e42b2208d6);
reflectiveERC20 private constant TKN = reflectiveERC20(0x9255590C2e66aBb441A9b19A8c518E12FBD5c4d3);
@MrFatoni
MrFatoni / gist:f5fe8c1bcaadebef03be2a0978cc6583
Created November 23, 2019 10:06
Verifying my Blockstack ID is secured with the address 12yo266sRfzb3D3hFkHnA7joKMKwn5xj6x https://explorer.blockstack.org/address/12yo266sRfzb3D3hFkHnA7joKMKwn5xj6x
@MrFatoni
MrFatoni / keybase.md
Created September 11, 2019 09:22

Keybase proof

I hereby claim:

  • I am mrfatoni on github.
  • I am mfaton1 (https://keybase.io/mfaton1) on keybase.
  • I have a public key ASAg2zQqf52OOxB9m0qBnWW_TdYLFH8xSjBh8hF9dNLZQAo

To claim this, I am signing this object:

@MrFatoni
MrFatoni / drupalgeddon2_CVE-2018-7600_SA-CORE-2018-002.md
Created February 14, 2019 08:26 — forked from g0tmi1k/drupalgeddon2_CVE-2018-7600_SA-CORE-2018-002.md
drupalgeddon2 / SA-CORE-2018-002 / CVE-2018-7600 cURL (PoC)