Skip to content

Instantly share code, notes, and snippets.

View ajxchapman's full-sized avatar

Alex Chapman ajxchapman

157 followers · 1 following
View GitHub Profile
@ajxchapman
ajxchapman / client.go
Last active September 24, 2021 15:26
NFT Benchmarking
package main
import (
"fmt"
"net"
"os"
)
func connect() {
c, err := net.Dial("tcp4", fmt.Sprintf("%s:4444", os.Args[1]))
@ajxchapman
ajxchapman / wireshark_install.ahk
Last active August 28, 2020 09:00
#NoEnv ; Recommended for performance and compatibility with future AutoHotkey releases.
; #Warn ; Enable warnings to assist with detecting common errors.
SendMode Input ; Recommended for new scripts due to its superior speed and reliability.
SetWorkingDir %A_ScriptDir% ; Ensures a consistent starting directory.
SetTitleMatchMode, RegEx
Run, "Wireshark-win64-3.2.6.exe"
WinWait, Wireshark [\d\.]+ 64-bit Setup,, 30
Loop, 7
@ajxchapman
ajxchapman / hexdump.c
Last active April 24, 2022 15:27
Bunch of `hexdump -C` like functions for various languages
// https://gist.github.com/richinseattle/c527a3acb6f152796a580401057c78b4
#include <stdio.h>
#include <ctype.h>
#ifndef HEXDUMP_COLS
#define HEXDUMP_COLS 16
#endif
void hexdump(void *mem, unsigned int len)
{
@ajxchapman
ajxchapman / burp_scopes.py
Created March 25, 2020 19:53
Turn a list of scopes into a Burpsuite target import JSON configuration file
import json
import re
import sys
scopes = []
f = sys.stdin
if len(sys.argv) == 2:
f = open(sys.argv[1])
scopes_defs = [x.strip().lower() for x in f.readlines() if len(x.strip())]
@ajxchapman
ajxchapman / h1_stats.py
Last active September 27, 2021 08:28
import re
import requests
import sys
TOKEN="*x-csrf-token Header*"
COOKIE="*__Host-session Cookie*"
USERNAME="*HackerOne Username*"
bugs = []
pages = 1
@ajxchapman
ajxchapman / gist:e88adeed1b1bb1582ac46ed2ed0b1b97
Last active June 4, 2019 19:13
Wfuzz a host that keeps timing out
#!/bin/bash
WORDLIST="wordlist.txt"
OUTPUT="output.txt"
TARGET="https://example.com/FUZZ"
if [ ! -f _wordlist.txt ] || [ `wc -l _wordlist.txt | cut -f 1 -d " "` -eq 0 ]
then
sort -u $WORDLIST > _wordlist.txt
if [ -f $OUTPUT ]
then
@ajxchapman
ajxchapman / README.md
Last active May 1, 2024 06:32
Install Windows on Digital Ocean droplet
@ajxchapman
ajxchapman / README.md
Last active April 29, 2019 17:31
Installing Apache Guacamole
  1. Install Docker
# https://docs.docker.com/install/linux/docker-ce/ubuntu/
apt-get update
apt-get install -y apt-transport-https ca-certificates curl gnupg-agent software-properties-common
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | apt-key add -
add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"
apt-get update
apt-get install -y docker-ce docker-ce-cli containerd.io
docker run hello-world
@ajxchapman
ajxchapman / blind_sqli.py
Created April 2, 2019 08:47
MySQL / MariaDB blind SQLi exploitation script
import argparse
import binascii
import math
import requests
import sys
import urllib.parse
import zlib
session = requests.session()
def get_boolean(query):
@ajxchapman
ajxchapman / README.md
Last active April 17, 2020 00:09
CVE-2019-5418 Demo

CVE-2019-5418 Demo

Build Docker container: Dockerfile

FROM ruby:2.5
RUN apt-get update -qq && apt-get install -y nodejs postgresql-client
RUN mkdir /myapp
WORKDIR /myapp
COPY Gemfile /myapp/Gemfile