Skip to content

Instantly share code, notes, and snippets.

@ajxchapman
ajxchapman / client.go
Last active Sep 24, 2021
NFT Benchmarking
View client.go
package main
import (
"fmt"
"net"
"os"
)
func connect() {
c, err := net.Dial("tcp4", fmt.Sprintf("%s:4444", os.Args[1]))
View wireshark_install.ahk
#NoEnv ; Recommended for performance and compatibility with future AutoHotkey releases.
; #Warn ; Enable warnings to assist with detecting common errors.
SendMode Input ; Recommended for new scripts due to its superior speed and reliability.
SetWorkingDir %A_ScriptDir% ; Ensures a consistent starting directory.
SetTitleMatchMode, RegEx
Run, "Wireshark-win64-3.2.6.exe"
WinWait, Wireshark [\d\.]+ 64-bit Setup,, 30
Loop, 7
@ajxchapman
ajxchapman / hexdump.c
Last active Jul 10, 2020
Bunch of `hexdump -C` like functions for various languages
View hexdump.c
// https://gist.github.com/richinseattle/c527a3acb6f152796a580401057c78b4
#include <stdio.h>
#include <ctype.h>
#ifndef HEXDUMP_COLS
#define HEXDUMP_COLS 16
#endif
void hexdump(void *mem, unsigned int len)
{
@ajxchapman
ajxchapman / burp_scopes.py
Created Mar 25, 2020
Turn a list of scopes into a Burpsuite target import JSON configuration file
View burp_scopes.py
import json
import re
import sys
scopes = []
f = sys.stdin
if len(sys.argv) == 2:
f = open(sys.argv[1])
scopes_defs = [x.strip().lower() for x in f.readlines() if len(x.strip())]
View h1_stats.py
import re
import requests
import sys
TOKEN="*x-csrf-token Header*"
COOKIE="*__Host-session Cookie*"
USERNAME="*HackerOne Username*"
bugs = []
pages = 1
@ajxchapman
ajxchapman / gist:e88adeed1b1bb1582ac46ed2ed0b1b97
Last active Jun 4, 2019
Wfuzz a host that keeps timing out
View gist:e88adeed1b1bb1582ac46ed2ed0b1b97
#!/bin/bash
WORDLIST="wordlist.txt"
OUTPUT="output.txt"
TARGET="https://example.com/FUZZ"
if [ ! -f _wordlist.txt ] || [ `wc -l _wordlist.txt | cut -f 1 -d " "` -eq 0 ]
then
sort -u $WORDLIST > _wordlist.txt
if [ -f $OUTPUT ]
then
@ajxchapman
ajxchapman / README.md
Last active May 7, 2019
Install Windows on Digital Ocean droplet
View README.md
@ajxchapman
ajxchapman / README.md
Last active Apr 29, 2019
Installing Apache Guacamole
View README.md
  1. Install Docker
# https://docs.docker.com/install/linux/docker-ce/ubuntu/
apt-get update
apt-get install -y apt-transport-https ca-certificates curl gnupg-agent software-properties-common
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | apt-key add -
add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"
apt-get update
apt-get install -y docker-ce docker-ce-cli containerd.io
docker run hello-world
@ajxchapman
ajxchapman / blind_sqli.py
Created Apr 2, 2019
MySQL / MariaDB blind SQLi exploitation script
View blind_sqli.py
import argparse
import binascii
import math
import requests
import sys
import urllib.parse
import zlib
session = requests.session()
def get_boolean(query):
@ajxchapman
ajxchapman / README.md
Last active Apr 17, 2020
CVE-2019-5418 Demo
View README.md

CVE-2019-5418 Demo

Build Docker container: Dockerfile

FROM ruby:2.5
RUN apt-get update -qq && apt-get install -y nodejs postgresql-client
RUN mkdir /myapp
WORKDIR /myapp
COPY Gemfile /myapp/Gemfile