Skip to content

Instantly share code, notes, and snippets.

@ThoundsN
ThoundsN / SharePwn_public.py
Created December 20, 2023 15:40 — forked from testanull/SharePwn_public.py
SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 & CVE-2023-24955 PoC
# -*- coding: utf-8 -*-
import hashlib
import base64
import requests, string, struct, uuid, random, re
import sys
from collections import OrderedDict
from sys import version
from urllib3.exceptions import InsecureRequestWarning
requests.packages.urllib3.disable_warnings(category=InsecureRequestWarning)
# too lazy to deal with string <-> bytes confusion in python3 so forget it ¯\_(ツ)_/¯
<?php
ini_set('display_errors', '1');
ini_set('display_startup_errors', '1');
error_reporting(E_ALL);
$indicesServer = array('REQUEST_URI',
'REMOTE_ADDR',
'HTTP_USER_AGENT') ;
echo '<table cellpadding="10">' ;
@ThoundsN
ThoundsN / burplog2jslink.py
Last active June 22, 2021 05:57
burplog2jslink
@ThoundsN
ThoundsN / snapshot2path.py
Created June 20, 2021 10:05
From chrome snapshot file to path list
import re
import sys
import os
rubbish_list = list((
"access-control-allow-credentials",
"{","}","chrome","data:image/png;base64", "<a", "zendesk"
))
def isUrl(line):
@ThoundsN
ThoundsN / removemediumgif.js
Created June 19, 2021 11:22
Remove gif in medium
var elements = document.getElementsByTagName("iframe");
while (elements.length) {
elements[0].parentNode.removeChild(elements[0]);
};
@ThoundsN
ThoundsN / intentMonitor.js
Created December 19, 2020 10:35 — forked from bet4it/intentMonitor.js
Monitor android intents with frida
Java.perform(function () {
var act = Java.use("android.app.Activity");
act.getIntent.overload().implementation = function () {
var intent = this.getIntent()
var cp = intent.getComponent()
console.log("Starting " + cp.getPackageName() + "/" + cp.getClassName())
var ext = intent.getExtras();
if (ext) {
var keys = ext.keySet()
var iterator = keys.iterator()
@ThoundsN
ThoundsN / caesar.c
Created December 24, 2017 19:18 — forked from CraigRodrigues/caesar.c
My solution to CS50 pset2 - "Hail, Caesar!"
#include <stdio.h>
#include <cs50.h>
#include <string.h>
#include <ctype.h>
/**
* Caesar.c
* A program that encrypts messages using Caesar’s cipher. Your program must
* accept a single command-line argument: a non-negative integer. Let’s call it
* k for the sake of discussion. If your program is executed without any