Skip to content

Instantly share code, notes, and snippets.

View c1sc0's full-sized avatar
🥝
bewi

Krisztian Somogyi c1sc0

🥝
bewi
31 followers · 67 following
View GitHub Profile
@guns
guns / Permissive forwarding rule leads to unintentional exposure of containers to external hosts
Created April 15, 2022 01:32
From self[at]sungpae.com Mon Nov 8 16:59:48 2021
Date: Mon, 8 Nov 2021 16:59:48 -0600
From: Sung Pae <self[at]sungpae.com>
To: security@docker.com
Subject: Permissive forwarding rule leads to unintentional exposure of
containers to external hosts
Message-ID: <YYmr4l1isfH9VQCn@SHANGRILA>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
protocol="application/pgp-signature"; boundary="QR1yLfEBO/zgxYVA"
@moyix
moyix / killbutmakeitlooklikeanaccident.sh
Created February 5, 2022 22:51
Script to inject an exit(0) syscall into a running process. NB: only x86_64 for now!
#!/bin/bash
gdb -p "$1" -batch -ex 'set {short}$rip = 0x050f' -ex 'set $rax=231' -ex 'set $rdi=0' -ex 'cont'
@tothi
tothi / usbgadget_razer.sh
Created August 22, 2021 09:52
Razer USB gadget on Android for Local Privilege Escalation on Windows
# MINIMAL USB gadget setup using CONFIGFS for simulating Razer Gaming HID
# devices for triggering the vulnerable Windows Driver installer
# credits for the Windows Driver install vuln: @j0nh4t
#
# https://twitter.com/j0nh4t/status/1429049506021138437
# https://twitter.com/an0n_r0/status/1429263450748895236
#
# the script was developed & tested on Android LineageOS 18.1
@dhcgn
dhcgn / routerboard.sh
Last active October 6, 2023 23:45
Add Cloudflare IPs to Mikrotik Routerboard
/ip firewall address-list
add list=CF address=173.245.48.0/20
add list=CF address=103.21.244.0/22
add list=CF address=103.22.200.0/22
add list=CF address=103.31.4.0/22
add list=CF address=141.101.64.0/18
add list=CF address=108.162.192.0/18
add list=CF address=190.93.240.0/20
add list=CF address=188.114.96.0/20
add list=CF address=197.234.240.0/22
@johnnypea
johnnypea / useful-one-liners.sh
Last active October 24, 2025 11:36
Useful one liners
# Run the last command as root
sudo !!
# Serve current directory tree at http://$HOSTNAME:8000/
python -m SimpleHTTPServer
# Save a file you edited in vim without the needed permissions
:w !sudo tee %
# change to the previous working directory
cd -
# Runs previous command but replacing
^foo^bar
@PatheticMustan
PatheticMustan / Discord Tag Rerolling.md
Last active May 26, 2023 04:04
My notes on Discord tag re-rolling.

Discord Tag Rolling

When many users want to use a username that's taken, most software platforms solve this by just forcing them to choose another username. Discord has an interesting solution to this problem: giving people random 4 digit tags as well as their usernames! This allows for many users to have the same username while allowing each person to have a unique username that's easy to remember.

Some notes:

  • Discord's tag system makes it possible to have 9_999 people with the same username, but they limit people from using popular names at a certain point.
  • Discord's Nitro subscription system allows users to change their tag to any untaken tag. Their tags are randomized once their Nitro subscription ends.
  • There is a rate limit of 2 name/tag changes per hour.
@victorbruce
victorbruce / Firebase.md
Last active October 1, 2025 18:15
My journey with Firebase so far. Cheatsheet to serve as a quick reference when developing firebase applications

Firebase

Set up firebase and Deploy

  • Head over to firebase. Sign in and create a project.

  • Copy your project settings under Firebase SDK snippet into your local project (ie your project's api key, auth domain, databaseURL, etc)

  • Create a file (firebase.js or config.js Any name that suits you is fine)

@kekru
kekru / 01nginx-tls-sni.md
Last active October 17, 2025 07:11
nginx TLS SNI routing, based on subdomain pattern

Nginx TLS SNI routing, based on subdomain pattern

Nginx can be configured to route to a backend, based on the server's domain name, which is included in the SSL/TLS handshake (Server Name Indication, SNI).
This works for http upstream servers, but also for other protocols, that can be secured with TLS.

prerequisites

  • at least nginx 1.15.9 to use variables in ssl_certificate and ssl_certificate_key.
  • check nginx -V for the following: 
    ...
TLS SNI support enabled
@viritt
viritt / cloudflare_update.script
Last active January 29, 2025 08:23 — forked from kiler129/cloudflare_update.script
Automatic script for Mikrotik RouterOS updating record on CloudFlare.
#########################################################################
# ================================================== #
# $ Mikrotik RouterOS update script for CloudFlare $ #
# ================================================== #
# #
# - You need a CloudFlare account & api key (look under settings), #
# a zone and A record in it #
# - All variables in first section are obvious, except CFid, #
# To obtain CFzoneid use following command in any unix shell: #
# curl -X GET "https://api.cloudflare.com/client/v4/accounts" -H "X-Auth-Email: YOUR_EMAIL" -H "X-Auth-Key: YOUR_API_KEY" -H "Content-Type: application/json" | python -mjson.tool
@Informatic
Informatic / domain.xml
Last active October 22, 2025 21:14
How to use Windows 10 OEM license in libvirt VM (<smbios mode='host' /> does not work as Windows seems to verify UUID; apparmor/security configuration changes may be needed)
<domain type='kvm' xmlns:qemu='http://libvirt.org/schemas/domain/qemu/1.0'>
<!-- ... -->
<qemu:commandline>
<qemu:arg value='-acpitable'/>
<qemu:arg value='file=/some/path/slic.bin'/>
<qemu:arg value='-acpitable'/>
<qemu:arg value='file=/some/path/msdm.bin'/>
<qemu:arg value='-smbios'/>
<qemu:arg value='file=/some/path/smbios_type_0.bin'/>
<qemu:arg value='-smbios'/>