Mình viết sơ qua các steps mình làm

  1. Tác giả hint là open-redirect
  2. Mình có coi qua rồi, khi nhấn vào report chưa login nó sẽ chuyển sang page login, có params return=report.php
  3. search Open Redirect Fuzz List
  4. Thử vài cái thấy \/ ok
  5. làm cái đường link để report
  6. report cho tác giả
  7. lấy đc code
  8. vào đọc tâm sự
docker images -q -a | xargs --no-run-if-empty docker rmi
View sslCertTrusted.js
<script> var sslCertTrusted = false; </script>
<script src=""></script>
if (!sslCertTrusted)
alert('Sorry, you need to install the certificate first.');

Keybase proof

I hereby claim:

  • I am nampnq on github.
  • I am nampnq ( on keybase.
  • I have a public key whose fingerprint is 3748 6A9E C7E0 4AC4 FBF0 05E0 3A58 1A19 1373 277E

To claim this, I am signing this object:

View linux swap
# Sudo
sudo su
# Check
swapon -s
# Create swap file
fallocate -l 10G /swapfile && chmod 600 /swapfile # or dd if=/dev/zero of=/swapfile bs=1M count=2048
# Make swapfile a Linux-managed swap area
View nginx.conf
location /.well-known/acme-challenge {
alias /opt/letsencrypt/.acme-challenges;
if ($request_uri !~ "^/\.well-known/acme-challenge.*$"){
set $test notletencrypt;
if ($scheme != "https"){
set $test "${test}+notssl";
if ($test = "notletencrypt+notssl")

What are you looking for? The file name bootmgfw.efi to fix window shjt cannot boot? This is here for you :D

cat images.txt | awk 'match($2, /images\/(.*)$/, a){print $2 "\t" a[1]}' | while read url store_path; do
  curl ${url} --create-dirs -o ${store_path}
sudo rm -rf /var/lib/docker/network