Stefan Breunig breunigs

## explain analyze automod
query1: 42 secs 302 msec.

1.	Update on osm_housenumber as housenumber (rows=0 loops=1)
2.	Nested Loop Inner Join (rows=3875429 loops=1)
3.	Seq Scan on osm_housenumber as housenumber (rows=743077 loops=1)

    Filter: ((street_id IS NULL) AND (normalized_street <> ''::text))
    Rows Removed by Filter: 2007

4.	Index Scan using osm_linestring_normalized_name on osm_linestring as street (rows=5 loops=743077)

## statistics_from_vm.txt
==> automod_1679733336.log <==
  Time (mean ± σ):     273.021 s ± 36.847 s    [User: 0.340 s, System: 0.084 s]
  Range (min … max):   253.506 s … 328.270 s    4 runs

  Warning: Statistical outliers were detected. Consider re-running this benchmark on a quiet PC without any interferences from other programs. It might help to use the '--warmup' or '--prepare' options.

==> automod_1679737696.log <==
  Time (mean ± σ):     254.550 s ±  0.897 s    [User: 0.338 s, System: 0.071 s]
  Range (min … max):   253.881 s … 255.796 s    4 runs


## info.txt
select @@sql_mode
+--------------------------------------------------------------------------------------------------------------+
| ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION |
+--------------------------------------------------------------------------------------------------------------+

i.e. NO_ZERO_DATE and NO_ZERO_IN_DATE are disabled.


MySQL version 5.7.22

## wp_dos.py
#################################################################################
# CVE-XXXXX Wordpress and Drupal XML Blowup Attack DoS#
# Author: Nir Goldshlager - Salesforce.com Product Security Team#
# This is a Proof of Concept Exploit, Please use responsibly.#
#################################################################################
#!/usr/bin/env python
from __future__ import print_function
import threading
import time
import urllib

## curl_it.sh
curl \
      -v \
      -XPOST \
      -H 'Accept: application/vnd.xing.welcome.v1+json' \
      -H 'Authorization: APIKEY api_key="d6b7f10739876f82411106d532655292707477d6"' \
      -H "Content-Type: application/json" \
      -H "X-Forwarded-For: 197.88.46.162, 10.8.33.103" \
      -d '{
      "first_name":  "xforwardedfor",
      "last_name":   "bug",

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                breunigs
                / keybase.md
            
            
              Created
              January 9, 2015 23:03
            
          
    Keybase proof

I hereby claim:

I am breunigs on github.
I am xeen (https://keybase.io/xeen) on keybase.
I have a public key whose fingerprint is 5188 1F49 7D77 6502 0485  C13D 387E 6497 A350 98A2

To claim this, I am signing this object:

  
## share-qrcode.sh
#!/bin/sh

share=$(xclip -o |  sed 's/\s*$//g')
qrencode -s 7 -o - "$share" | display -title "$share share-qrcode-float"

# recommended i3-config:
# for_window [title="share-qrcode-float"] floating enable border normal; move position center

## bahn.bash
#!/bin/bash

# Example usage:
# ./bahn berlin_hbf frankfurt_hbf
# ./bahn berlin_hbf frankfurt_hbf @23h23 localonly    # arrive at 23h23 in two days, not using “I’m broke” mode (no EC,IC,ICE)

# bahn v0.2.1 (2012-03-16)
#
# 0.2.1 fix automatic selection of tomorrow if time given has
#       already passed

## wlan-scanner.sh
#!/bin/sh

#sudo iwlist wlan0 scan | \				# find all nearby wlans
#	grep -E 'Freq|Quality|ESSID' | \		# select details we care about
#	tr '\n' ' ' | \					# remove newlines for easier sed parsing
#	sed -r 's/\s+/ /g' | \				# remove superflous spaces
#	sed 's/:/: /g' | \				# add a space after each colon (in our case after "Frequency")
#	sed -r 's/( [1-9]\))/ \1/g' | \			# Indent 1-digit channels so they line up nicely
#	sed 's/ Freq/\nFreq/g' | \			# re-add newlines (one line for each wlan)
#	sed -r 's/(Quality|Signal|ESSID)/\t\1/g' | \	# tab output so it lines up

## desktop-barcode-reader.sh
#!/bin/sh

# requires:
# zbar-tools scrot zenity debianutils

scrot "$(tempfile).png" --exec 'zbarimg "$f"; rm "$f"' 2>&1 | zenity --title "Barcode Info" --text-info --width 450 --height 300
	query1: 42 secs 302 msec.

	1. Update on osm_housenumber as housenumber (rows=0 loops=1)
	2. Nested Loop Inner Join (rows=3875429 loops=1)
	3. Seq Scan on osm_housenumber as housenumber (rows=743077 loops=1)

	Filter: ((street_id IS NULL) AND (normalized_street <> ''::text))
	Rows Removed by Filter: 2007

	4. Index Scan using osm_linestring_normalized_name on osm_linestring as street (rows=5 loops=743077)
	==> automod_1679733336.log <==
	Time (mean ± σ): 273.021 s ± 36.847 s [User: 0.340 s, System: 0.084 s]
	Range (min … max): 253.506 s … 328.270 s 4 runs

	Warning: Statistical outliers were detected. Consider re-running this benchmark on a quiet PC without any interferences from other programs. It might help to use the '--warmup' or '--prepare' options.

	==> automod_1679737696.log <==
	Time (mean ± σ): 254.550 s ± 0.897 s [User: 0.338 s, System: 0.071 s]
	Range (min … max): 253.881 s … 255.796 s 4 runs
	select @@sql_mode
	+--------------------------------------------------------------------------------------------------------------+
	\| ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION \|
	+--------------------------------------------------------------------------------------------------------------+

	i.e. NO_ZERO_DATE and NO_ZERO_IN_DATE are disabled.


	MySQL version 5.7.22
	#################################################################################
	# CVE-XXXXX Wordpress and Drupal XML Blowup Attack DoS#
	# Author: Nir Goldshlager - Salesforce.com Product Security Team#
	# This is a Proof of Concept Exploit, Please use responsibly.#
	#################################################################################
	#!/usr/bin/env python
	from __future__ import print_function
	import threading
	import time
	import urllib
	curl \
	-v \
	-XPOST \
	-H 'Accept: application/vnd.xing.welcome.v1+json' \
	-H 'Authorization: APIKEY api_key="d6b7f10739876f82411106d532655292707477d6"' \
	-H "Content-Type: application/json" \
	-H "X-Forwarded-For: 197.88.46.162, 10.8.33.103" \
	-d '{
	"first_name": "xforwardedfor",
	"last_name": "bug",
	#!/bin/sh

	share=$(xclip -o \| sed 's/\s*$//g')
	qrencode -s 7 -o - "$share" \| display -title "$share share-qrcode-float"

	# recommended i3-config:
	# for_window [title="share-qrcode-float"] floating enable border normal; move position center
	#!/bin/bash

	# Example usage:
	# ./bahn berlin_hbf frankfurt_hbf
	# ./bahn berlin_hbf frankfurt_hbf @23h23 localonly # arrive at 23h23 in two days, not using “I’m broke” mode (no EC,IC,ICE)

	# bahn v0.2.1 (2012-03-16)
	#
	# 0.2.1 fix automatic selection of tomorrow if time given has
	# already passed
	#!/bin/sh

	#sudo iwlist wlan0 scan \| \ # find all nearby wlans
	# grep -E 'Freq\|Quality\|ESSID' \| \ # select details we care about
	# tr '\n' ' ' \| \ # remove newlines for easier sed parsing
	# sed -r 's/\s+/ /g' \| \ # remove superflous spaces
	# sed 's/:/: /g' \| \ # add a space after each colon (in our case after "Frequency")
	# sed -r 's/( [1-9]\))/ \1/g' \| \ # Indent 1-digit channels so they line up nicely
	# sed 's/ Freq/\nFreq/g' \| \ # re-add newlines (one line for each wlan)
	# sed -r 's/(Quality\|Signal\|ESSID)/\t\1/g' \| \ # tab output so it lines up
	#!/bin/sh

	# requires:
	# zbar-tools scrot zenity debianutils

	scrot "$(tempfile).png" --exec 'zbarimg "$f"; rm "$f"' 2>&1 \| zenity --title "Barcode Info" --text-info --width 450 --height 300