moyix
/ killbutmakeitlooklikeanaccident.sh
Created
February 5, 2022 22:51
Script to inject an exit(0) syscall into a running process. NB: only x86_64 for now!
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| gdb -p "$1" -batch -ex 'set {short}$rip = 0x050f' -ex 'set $rax=231' -ex 'set $rdi=0' -ex 'cont' |
tothi
/ nmap-http-url.py
Last active
August 9, 2023 18:49
Generate HTTP URLs from Nmap XML (and optionally use VirtualHosts)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # | |
| # inputs: nmap.xml (nmap scan xml output), subdomains.csv (optional virtualhost info, hostname + ip address csv file) | |
| # output: url listing (useful for tools like EyeWitness) | |
| # | |
| # sample usage: ./nmap-http-url.py nmap.xml subdomains.csv | sort -u | gowitness file -f - | |
| # | |
| description = ''' | |
| Generate HTTP URLs from Nmap XML (and optionally additional VirtualHost listing, taken from e.g. subdomain enumeration). |
win3zz
/ zendesk_endpoints.txt
Created
July 18, 2023 09:01
List of Zendesk API Endpoints for Fuzzing [Penetration Testing]
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| POST /api/v2/accounts | |
| GET /api/v2/activities?since=cstest | |
| GET /api/v2/audit_logs?filter[source_type]=cstest&filter[source_id]=1&filter[actor_id]=1&filter[ip_address]=cstest&filter[created_at]=cstest&filter[action]=cstest&sort_by=cstest&sort_order=cstest&sort=cstest | |
| GET /api/v2/automations | |
| POST /api/v2/automations | |
| GET /api/v2/bookmarks | |
| POST /api/v2/bookmarks | |
| GET /api/v2/brands | |
| POST /api/v2/brands | |
| GET /api/v2/custom_objects |
irsdl
/ urlhostname_test.js
Created
March 14, 2024 10:54
To evaluate how `URL(url).hostname` in JS handles discarded characters and character conversions in domain names.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // by @irsdl | |
| // This script identifies anomalies in how JS parses the URL using `URL(url).hostname`: | |
| // 1- Characters that are ignored when present in the domain name. | |
| // 2- Characters that can replace ASCII characters in domain names and still be parsed correctly. In here we want letter S in `soroush.me` | |
| // You can try running this script in your browser's dev console or at https://www.jdoodle.com/execute-nodejs-online/ | |
| // I am sure this must have been looked at before but I cannot find a reference | |
| for (let i = 0; i <= 0xFFFF; i++) { | |
| const unicodeChar = String.fromCharCode(i); | |
| const urlString = `http://sorous${unicodeChar}h.me/blog/`; |