ThoundsN
ThoundsN
/ SharePwn_public.py
Created
December 20, 2023 15:40
— forked from testanull/SharePwn_public.py
SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 & CVE-2023-24955 PoC
ThoundsN
/ ssrfwebhook.php
Last active
July 4, 2021 12:07
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| ini_set('display_errors', '1'); | |
| ini_set('display_startup_errors', '1'); | |
| error_reporting(E_ALL); | |
| $indicesServer = array('REQUEST_URI', | |
| 'REMOTE_ADDR', | |
| 'HTTP_USER_AGENT') ; | |
| echo '<table cellpadding="10">' ; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import base64 | |
| import sys | |
| import os | |
| import json | |
| from invoke import run | |
| from pathlib import Path | |
| import datetime | |
| import argparse | |
| counter = 0 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import re | |
| import sys | |
| import os | |
| rubbish_list = list(( | |
| "access-control-allow-credentials", | |
| "{","}","chrome","data:image/png;base64", "<a", "zendesk" | |
| )) | |
| def isUrl(line): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var elements = document.getElementsByTagName("iframe"); | |
| while (elements.length) { | |
| elements[0].parentNode.removeChild(elements[0]); | |
| }; |
ThoundsN
/ intentMonitor.js
Created
December 19, 2020 10:35
— forked from bet4it/intentMonitor.js
Monitor android intents with frida
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Java.perform(function () { | |
| var act = Java.use("android.app.Activity"); | |
| act.getIntent.overload().implementation = function () { | |
| var intent = this.getIntent() | |
| var cp = intent.getComponent() | |
| console.log("Starting " + cp.getPackageName() + "/" + cp.getClassName()) | |
| var ext = intent.getExtras(); | |
| if (ext) { | |
| var keys = ext.keySet() | |
| var iterator = keys.iterator() |
ThoundsN
/ caesar.c
Created
December 24, 2017 19:18
— forked from CraigRodrigues/caesar.c
My solution to CS50 pset2 - "Hail, Caesar!"
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <cs50.h> | |
| #include <string.h> | |
| #include <ctype.h> | |
| /** | |
| * Caesar.c | |
| * A program that encrypts messages using Caesar’s cipher. Your program must | |
| * accept a single command-line argument: a non-negative integer. Let’s call it | |
| * k for the sake of discussion. If your program is executed without any |