Skip to content

Instantly share code, notes, and snippets.

View ajmeese7's full-sized avatar
turning caffeine into code

Aaron Meese ajmeese7

turning caffeine into code
183 followers · 107 following
View GitHub Profile
@ajmeese7
ajmeese7 / validin-domain-parser.py
Created March 30, 2024 17:16
Parse out domains from exported Validin JSON data
#!/usr/bin/env python3
import json
import sys
import os
def extract_domains(json_file_path):
try:
# Open and load the JSON file
with open(json_file_path, "r") as file:
data = json.load(file)
@ajmeese7
ajmeese7 / usps.html
Created November 19, 2023 23:30
uups.lsup.xyz Phishing HTML
<meta http-equiv="refresh" content="0; url=https://uups.lsup.xyz" />
@ajmeese7
ajmeese7 / index.html
Last active October 27, 2023 15:32
Improved Kinopio highlighting
<style>
.no-select {
user-select: none;
}
</style>
<script>
document.addEventListener("DOMContentLoaded", function() {
const body = document.querySelector("body");
const textElements = document.querySelectorAll("p, h1, h2, h3, h4, h5, h6, a, span, li, blockquote");
@mangiucugna
mangiucugna / ChatGPT Custom Instructions - Generic
Last active April 9, 2024 13:06
ChatGPT Custom Instructions - A generic Custom Instruction to extract the max from GPT. Maybe a bit verbose for someone
- I need your answer to be precise, it’s crucial you get them right, I am counting on you!
- You always think step by step, break down the problem into intermediate steps and communicate to the user which steps you took in order to answer their query
- If you think you need to execute more steps in order to answer the query, ask the user for confirmation and run more steps
- Always provide a detailed explanation for your response, including the underlying reasoning and any relevant sources to support your answer.
Use this format to answer:
```
**Answer**: {answer}
**Internal monologue**: {why you answered this way, how you broke down the problem in steps and your train of thought}
**What other questions you might ask**: {what kind of followup questions you expect from me? What did I miss?}
**Sources**: * {source1} {confidence score about source1, 1 to 10} * {source2} {confidence score about source2, 1 to 10} * {...}
@win3zz
win3zz / GitHub-Leaked-API-Keys-and-Secrets.md
Last active July 5, 2024 18:32

GitHub Search Syntax for Finding API Keys/Secrets/Tokens

As a security professional, it is important to conduct a thorough reconnaissance. With the increasing use of APIs nowadays, it has become paramount to keep access tokens and other API-related secrets secure in order to prevent leaks. However, despite technological advances, human error remains a factor, and many developers still unknowingly hardcode their API secrets into source code and commit them to public repositories. GitHub, being a widely popular platform for public code repositories, may inadvertently host such leaked secrets. To help identify these vulnerabilities, I have created a comprehensive search list using powerful search syntax that enables the search of thousands of leaked keys and secrets in a single search.

Search Syntax:

(path:*.{File_extension1} OR path:*.{File_extension-N}) AND ({Keyname1} OR {Keyname-N}) AND (({Signature/pattern1} OR {Signature/pattern-N}) AND ({PlatformTag1} OR {PlatformTag-N}))

Examples:

**1.

@irazasyed
irazasyed / outbound-email-with-cloudflare.md
Last active July 5, 2024 22:15
Using Gmail SMTP with Cloudflare Email Routing: A Step-by-Step Guide

Using Gmail SMTP with Cloudflare Email Routing: Step-by-Step Guide

Learn how to send emails through Gmail SMTP with Cloudflare Email Routing in this comprehensive guide.

Step 1: Enable 2-Factor Authentication

To proceed with this method, ensure that you have enabled two-factor authentication for your Google account. If you haven't done so already, you can follow the link to set it up → Enable 2FA in your Google account.

Step 2: Create an App Password for Mail

@TheMeinerLP
TheMeinerLP / README-de.md
Last active February 6, 2024 00:36

Zu mir

Hallo zusammen, mein name ist TheMeinerLP aka Phillipp. Ich besschäftige mich nun seit 8 Jahre Aktiv mit Minecraft und bin seit mehren Jahren auch tätig als Normaler Entwickler.

Intro

Hier bitte intro Musik einfügen

Seit etwa September 2022 geht ein Virus in Form von Plugins in der Minecraft Szene umher. PaperMC hat aktiv schon darauf aufmerksam gemacht. Dazu hat ein anderer Blogger schon probiert, diesen Virus zu analysieren. Gerne würde ich hier in dieser Toilet paper einmal meine Erfahrung teilen und wie ich den Virus bis zu einem bestimmten Teil zurückverfolgt habe.

@LuemmelSec
LuemmelSec / GBC.ps1
Created December 9, 2022 07:43
Give Back Control over Windows functions script
$elevated = ([Security.Principal.WindowsPrincipal][Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator)
function Show-Menu {
Clear-Host
Write-Host "======================================================"
Write-Host "================ Give Back Control ================"
Write-Host "======================================================"
if($elevated -eq $true){
Write-Host "Local Admin: " -ForegroundColor white -NoNewline; Write-Host $elevated -ForegroundColor Green
Write-Host "We have superpowers. Ready to continue."
@ajmeese7
ajmeese7 / AdminMiddleware.js
Created December 5, 2022 00:52
Medium > HTB University CTF 2022 "The Magic Informer" code snippets
import { decode } from "../helpers/JWTHelper.js";
const AdminMiddleware = async (req, res, next) => {
try{
if (req.cookies.session === undefined) {
if(!req.is('application/json')) return res.redirect('/');
return res.status(401).json({ status: 'unauthorized', message: 'Authentication required!' });
}
return decode(req.cookies.session)
.then(user => {
@ajmeese7
ajmeese7 / kill_by_regex.sh
Created November 23, 2022 23:53
Kill all processes by regex
# Source: https://stackoverflow.com/a/30486159/6456163
ps aux|grep [process_regex]|grep -v grep|awk '{print $2}' | xargs kill -9