Skip to content

Instantly share code, notes, and snippets.

View cydave's full-sized avatar
😾
🐍 🦀

‏‏Dave cydave

😾
🐍 🦀
16 followers · 12 following
View GitHub Profile
@jonluca
jonluca / file.py
Last active December 12, 2024 23:47
Fast asyncio HTTP requests
import sys
import os
import json
import asyncio
import aiohttp
# Initialize connection pool
conn = aiohttp.TCPConnector(limit_per_host=100, limit=0, ttl_dns_cache=300)
PARALLEL_REQUESTS = 100
@cydave
cydave / blocklist.txt
Last active June 13, 2020 16:12
IP Blocklist - open relay attempts
101.100.177.165
101.100.181.134
101.109.210.222
101.109.246.40
101.181.69.209
101.205.119.179
101.235.114.131
101.30.57.235
101.50.71.233
101.51.127.152
@nstarke
nstarke / netgear-private-key-disclosure.md
Last active October 8, 2025 20:07
Netgear TLS Private Key Disclosure through Device Firmware Images

Netgear Signed TLS Cert Private Key Disclosure

Overview

There are at least two valid, signed TLS certificates that are bundled with publicly available Netgear device firmware.

These certificates are trusted by browsers on all platforms, but will surely be added to revocation lists shortly.

The firmware images that contained these certificates along with their private keys were publicly available for download through Netgear's support website, without authentication; thus anyone in the world could have retrieved these keys.

@mccabe615
mccabe615 / phpdangerousfuncs.md
Last active September 20, 2025 11:00
Dangerous PHP Functions

Command Execution

exec           - Returns last line of commands output
passthru       - Passes commands output directly to the browser
system         - Passes commands output directly to the browser and returns last line
shell_exec     - Returns commands output
\`\` (backticks) - Same as shell_exec()
popen          - Opens read or write pipe to process of a command
proc_open      - Similar to popen() but greater degree of control
pcntl_exec - Executes a program