maple maple3142

## simple_csidh.sage
# Use a small prime for brevity
p = 4 * 3 * 5 * 7 - 1
primes = [3, 5, 7]
Fp = GF(p)


def from_weierstrass(EC):
    a, b = EC.a4(), EC.a6()
    F = EC.base_field()
    PR = PolynomialRing(F, name="z")

## writeup.md

      
              1 file
            
          
              19 forks
            
          
              2 comments
            
          
              94 stars
            
          
                loknop
                / writeup.md
            
            
              Created
              December 30, 2021 14:59
            
              
                Solving "includer's revenge" from hxp ctf 2021 without controlling any files
              
          
    Solving "includer's revenge" from hxp ctf 2021 without controlling any files

The challenge

The challenge was to achieve RCE with this file:
<?php ($_GET['action'] ?? 'read' ) === 'read' ? readfile($_GET['file'] ?? 'index.php') : include_once($_GET['file'] ?? 'index.php');
Some additional hardening was applied to the php installation to make sure that previously known solutions wouldn't work (for further information read this writeup from the challenge author).
I didn't solve the challenge during the competition - here is a writeup from someone who did - but since the idea I had differed from the techniques used in the published writeups I read (and I thought it was cool :D), here is my approach.

  
## es-modules-are-terrible-actually.md

      
              1 file
            
          
              4 forks
            
          
              262 comments
            
          
              192 stars
            
          
                joepie91
                / es-modules-are-terrible-actually.md
            
            
              Last active
              April 26, 2024 13:33
            
              
                ES Modules are terrible, actually
              
          
    ES Modules are terrible, actually

This post was adapted from an earlier Twitter thread.
It's incredible how many collective developer hours have been wasted on pushing through the turd that is ES Modules (often mistakenly called "ES6 Modules"). Causing a big ecosystem divide and massive tooling support issues, for... well, no reason, really. There are no actual advantages to it. At all.
It looks shiny and new and some libraries use it in their documentation without any explanation, so people assume that it's the new thing that must be used. And then I end up having to explain to them why, unlike CommonJS, it doesn't actually work everywhere yet, and may never do so. For example, you can't import ESM modules from a CommonJS file! (Update: I've released a module that works around this issue.)
And then there's Rollup, which apparently requires ESM to be u

  
## download-vs-code-server.sh
#!/bin/sh

# Copyright 2023 Khalifah K. Shabazz
#
# Permission is hereby granted, free of charge, to any person obtaining a
# copy of this software and associated documentation files (the “Software”),
# to deal in the Software without restriction, including without limitation
# the rights to use, copy, modify, merge, publish, distribute, sublicense,
# and/or sell copies of the Software, and to permit persons to whom the
# Software is furnished to do so, subject to the following conditions:

## plink-plonk.js
/*
Copy this into the console of any web page that is interactive and doesn't
do hard reloads. You will hear your DOM changes as different pitches of
audio.

I have found this interesting for debugging, but also fun to hear web pages
render like UIs do in movies.
*/

const audioCtx = new (window.AudioContext || window.webkitAudioContext)()

## twittermute.txt
Mute these words in your settings here: https://twitter.com/settings/muted_keywords

ActivityTweet
generic_activity_highlights
generic_activity_momentsbreaking
RankedOrganicTweet
suggest_activity
suggest_activity_feed
suggest_activity_highlights
suggest_activity_tweet

## hbh-header-abuse-test.py
# github.com/ndavison

import requests
import random
import string
from argparse import ArgumentParser


parser = ArgumentParser(description="Attempts to find hop-by-hop header abuse potential against the provided URL.")
parser.add_argument("-u", "--url", help="URL to target (without query string)")

## fix-wsl2-dns-resolution
More recent resolution:

1. cd ~/../../etc (go to etc folder in WSL).
2. echo "[network]" | sudo tee wsl.conf (Create wsl.conf file and add the first line).
3. echo "generateResolvConf = false" | sudo tee -a wsl.conf (Append wsl.conf the next line).
4. wsl --terminate Debian (Terminate WSL in Windows cmd, in case is Ubuntu not Debian).
5. cd ~/../../etc (go to etc folder in WSL).
6. sudo rm -Rf resolv.conf (Delete the resolv.conf file).
7. In windows cmd, ps or terminal with the vpn connected do: Get-NetIPInterface or ipconfig /all for get the dns primary and
secondary.

## install-glibc-debug.sh
#!/bin/bash

# Install Dependencies
sudo pacman -S git svn gd lib32-gcc-libs patch make bison fakeroot

# Checkout glibc source
svn checkout --depth=empty svn://svn.archlinux.org/packages
cd packages
svn update glibc
cd glibc/repos/core-x86_64

## delete_all_greenkeeper_branches.sh
#!/bin/bash

# Description:
#     Delete all `greenkeeper/*` branches of your remote.
# Instructions:
#     Run the script with the `--help` flag.

ORIGIN=origin
DRY_RUN=0
THIS=`basename "$0"`
	# Use a small prime for brevity
	p = 4 * 3 * 5 * 7 - 1
	primes = [3, 5, 7]
	Fp = GF(p)


	def from_weierstrass(EC):
	a, b = EC.a4(), EC.a6()
	F = EC.base_field()
	PR = PolynomialRing(F, name="z")
	#!/bin/sh

	# Copyright 2023 Khalifah K. Shabazz
	#
	# Permission is hereby granted, free of charge, to any person obtaining a
	# copy of this software and associated documentation files (the “Software”),
	# to deal in the Software without restriction, including without limitation
	# the rights to use, copy, modify, merge, publish, distribute, sublicense,
	# and/or sell copies of the Software, and to permit persons to whom the
	# Software is furnished to do so, subject to the following conditions:
	/*
	Copy this into the console of any web page that is interactive and doesn't
	do hard reloads. You will hear your DOM changes as different pitches of
	audio.

	I have found this interesting for debugging, but also fun to hear web pages
	render like UIs do in movies.
	*/

	const audioCtx = new (window.AudioContext \|\| window.webkitAudioContext)()
	Mute these words in your settings here: https://twitter.com/settings/muted_keywords

	ActivityTweet
	generic_activity_highlights
	generic_activity_momentsbreaking
	RankedOrganicTweet
	suggest_activity
	suggest_activity_feed
	suggest_activity_highlights
	suggest_activity_tweet
	More recent resolution:

	1. cd ~/../../etc (go to etc folder in WSL).
	2. echo "[network]" \| sudo tee wsl.conf (Create wsl.conf file and add the first line).
	3. echo "generateResolvConf = false" \| sudo tee -a wsl.conf (Append wsl.conf the next line).
	4. wsl --terminate Debian (Terminate WSL in Windows cmd, in case is Ubuntu not Debian).
	5. cd ~/../../etc (go to etc folder in WSL).
	6. sudo rm -Rf resolv.conf (Delete the resolv.conf file).
	7. In windows cmd, ps or terminal with the vpn connected do: Get-NetIPInterface or ipconfig /all for get the dns primary and
	secondary.
	#!/bin/bash

	# Install Dependencies
	sudo pacman -S git svn gd lib32-gcc-libs patch make bison fakeroot

	# Checkout glibc source
	svn checkout --depth=empty svn://svn.archlinux.org/packages
	cd packages
	svn update glibc
	cd glibc/repos/core-x86_64
	#!/bin/bash

	# Description:
	# Delete all `greenkeeper/*` branches of your remote.
	# Instructions:
	# Run the script with the `--help` flag.

	ORIGIN=origin
	DRY_RUN=0
	THIS=`basename "$0"`