| <? | |
| $bin = $_POST['bin']; | |
| $length = $_POST['length']; | |
| if ( $length == 0 ) | |
| $length = 16; | |
| if ( $bin != '' ) | |
| $cardNumber = completed_number( $bin, $length ); |
This gist assumes:
| <?php | |
| # Nginx don't have PATH_INFO | |
| if (!isset($_SERVER['PATH_INFO'])) { | |
| $_SERVER['PATH_INFO'] = substr($_SERVER["ORIG_SCRIPT_FILENAME"], strlen($_SERVER["SCRIPT_FILENAME"])); | |
| } | |
| $request = substr($_SERVER['PATH_INFO'], 1); | |
| $file = $request; | |
| $fp = @fopen($file, 'rb'); |
Let's say somebody temporarily got root access to your system, whether because you "temporarily" gave them sudo rights, they guessed your password, or any other way. Even if you can disable their original method of accessing root, there's an infinite number of dirty tricks they can use to easily get it back in the future.
While the obvious tricks are easy to spot, like adding an entry to /root/.ssh/authorized_keys, or creating a new user, potentially via running malware, or via a cron job. I recently came across a rather subtle one that doesn't require changing any code, but instead exploits a standard feature of Linux user permissions system called setuid to subtly allow them to execute a root shell from any user account from the system (including www-data, which you might not even know if compromised).
If the "setuid bit" (or flag, or permission mode) is set for executable, the operating system will run not as the cur
| <?php | |
| /** | |
| * Magnet links library for PHP | |
| * | |
| * @link http://stackoverflow.com/questions/6634059/magnet-links-library-for-php | |
| */ | |
| $magnetUri = 'magnet:?xt=urn:sha1:YNCKHTQCWBTRNJIV4WNAE52SJUQCZO5C'; | |
| echo 'Magnet URI demo: ', $magnetUri, "\n\n"; |
| <?php | |
| file_put_contents( 'progress.txt', '' ); | |
| $targetFile = fopen( 'testfile.iso', 'w' ); | |
| $ch = curl_init( 'http://ftp.free.org/mirrors/releases.ubuntu-fr.org/11.04/ubuntu-11.04-desktop-i386-fr.iso' ); | |
| curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); | |
| curl_setopt( $ch, CURLOPT_NOPROGRESS, false ); | |
| curl_setopt( $ch, CURLOPT_PROGRESSFUNCTION, 'progressCallback' ); | |
| curl_setopt( $ch, CURLOPT_FILE, $targetFile ); |
| <?php | |
| /** | |
| * Available Font Awesome icons | |
| * | |
| * Get all icons from a font-awesome.css file and list in json mode | |
| * | |
| * @author Alessandro Gubitosi <gubi.ale@iod.io> | |
| * @license http://www.gnu.org/licenses/gpl-3.0.html GNU General Public License, version 3 | |
| */ |
| <?php | |
| // Code snippet to extract the icon from an exe file on a Linux system -- tested on Debian Wheezy | |
| // Install icoutils on your system e.g. sudo apt-get install icoutils | |
| // Web process must have write privileges to /tmp | |
| ///** Config **/// | |
| $input_file = '/path/to/program.exe'; |
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <string.h> | |
| #include <errno.h> | |
| #define PID_SDT 0x0011 | |
| typedef struct ServiceDescriptorStructure { | |
| unsigned char descriptor_tag; | |
| unsigned char descriptor_length; |