-1 Setup everything as usual
-2 The victim sees the template that has a "continue" button
that button has a post request that starts all the process.
we use this because we can't start the process in other ways
with only 2 wireless cards
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Author: https://github.com/Splinter0 | |
# ZoneMinder RCE - CVE-2023-26035 | |
# Affects: <1.36.33,1.37.33 | |
# https://nvd.nist.gov/vuln/detail/CVE-2023-26035 | |
import re | |
import sys | |
import requests | |
def getCsrfToken(target: str) -> str: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import time | |
from pwn import log | |
from random import randint | |
from fastecdsa.curve import P256 | |
from fastecdsa.point import Point | |
""" UTIL FUNCTIONS """ | |
def mod_inv(a, m): # For prime number m | |
return pow(a, m-2, m) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import os | |
import time | |
from pynput.keyboard import Key, Controller | |
os.system("firefox tinder.com") | |
keyboard = Controller() | |
for i in range(100): | |
keyboard.press(Key.right) | |
keyboard.release(Key.right) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
// | |
// Created by David Li on 7/17/17. | |
// Modified for HaliteTournaments on 28/07/18 by Splinter | |
// | |
/* | |
The comments next to the constants are the orginal values, | |
in order to test this you need to build the halite environment | |
youself, check : https://github.com/HaliteChallenge/Halite-II | |
to know how to build the enviroment. |