Skip to content

Instantly share code, notes, and snippets.

View blackhatethicalhacking's full-sized avatar
💭
I may be slow to respond.

Black Hat Ethical Hacking blackhatethicalhacking

💭
I may be slow to respond.
2k followers · 41 following
View GitHub Profile
@coolaj86
coolaj86 / ChatGPT-Dan-Jailbreak.md
Last active November 6, 2025 03:16
@santaklouse
santaklouse / CrossOver.sh
Last active November 8, 2025 04:40
unlimited CrossOver trial (MacOS)
#!/usr/bin/env bash
# checck if pidof exists
PIDOF="$(which pidof)"
# and if not - install it
(test "${PIDOF}" && test -f "${PIDOF}") || brew install pidof
# find app in default paths
CO_PWD=~/Applications/CrossOver.app/Contents/MacOS
test -d "${CO_PWD}" || CO_PWD=/Applications/CrossOver.app/Contents/MacOS
@0x240x23elu
0x240x23elu / Jira bug-exploit
Last active March 12, 2024 09:45
Jira Bug CVE-2019-8449,CVE-2019-8451,CVE-2019-8451,cve-2018-20824,cve-2020-14179,cve-2020-14181,CVE-2018-5230
cve-2019-8449
The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.
https://jira.atlassian.com/browse/JRASERVER-69796
https://victomhost/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true
=====================================================================================================================================
@gquere
gquere / artifactory_list_users.py
Last active April 3, 2025 14:25
#!/usr/bin/env python3
import requests
import json
import urllib3
import sys
# SUPPRESS WARNINGS ############################################################
urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
@cihanmehmet
cihanmehmet / CVE-2020-5902.md
Last active December 31, 2024 19:04
BIGIP CVE-2020-5902 Exploit POC

🚨BIGIP CVE-2020-5902 Exploit POC 🔥🧱🔨👀

Shodan Seaarch

title:"Big-IP®" org:"Organization Name"
http.title:"BIG-IP®- Redirect" org:"Organization Name"
http.favicon.hash:-335242539 "3992" org:"Organization Name"

🔸LFI

@warecrash
warecrash / makekali.sh
Last active September 22, 2025 21:34
Convert Debian to Kali
apt update
apt -y install wget gnupg dirmngr
wget -q -O - https://archive.kali.org/archive-key.asc | gpg --import
gpg --keyserver hkp://keys.gnupg.net --recv-key 44C6513A8E4FB3D30875F758ED444FF07D8D0BF6
echo "deb http://http.kali.org/kali kali-rolling main non-free contrib" >> /etc/apt/sources.list
gpg -a --export ED444FF07D8D0BF6 | sudo apt-key add -
apt update
apt -y upgrade
apt -y dist-upgrade
apt -y autoremove --purge
@gingeleski
gingeleski / domain_extensions_payloads.txt
Created November 7, 2018 01:45
Payload list of domain name (TLD) extensions.
.com
.co
.app
.online
.space
.store
.tech
.net
.org
.club
@maartjedaems
maartjedaems / functions.php
Created August 10, 2018 11:27
Divi theme add social media icons
<?php
/**
Put this code in the functions.php of your child theme
**/
if ( is_admin() ) {
add_filter( 'et_epanel_layout_data', 'mc_et_epanel_layout_data' );
}
function mc_et_epanel_layout_data( $options ) {
@githubfoam
githubfoam / pentest cheat sheet
Last active September 23, 2025 13:53
pentest cheat sheet
----------------------------------------------------------------------------------------------------
OWASP Top Ten
https://owasp.org/www-project-top-ten/
The CWE Top 25
https://www.sans.org/top25-software-errors/
2022 CWE Top 25 Most Dangerous Software Weaknesses
https://cwe.mitre.org/top25/archive/2022/2022_cwe_top25.html
@MattyBonBon
MattyBonBon / brew-install-kali-tools.sh
Last active November 26, 2024 09:26
Script to install kali tools that are already included in homebrew
#
# Created from crossmatching katoolin listing & brew search
# to execute:
# $ sh "/path/to/file"
#
echo "Checking for 🍺..."
if test ! $(which brew); then
echo "Installing homebrew (🍺)..."
ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"