Skip to content

Instantly share code, notes, and snippets.

Avatar

Matt Austin matt-

  • m-austin
View GitHub Profile
@matt-
matt- / rce_for_rce.html
Last active Jan 31, 2022
An RCE in the POC by Jonathan Scott for the RCE V1.0 PoC iOS 15.0.1 https://twitter.com/mattaustin/status/1447787504837398530
View rce_for_rce.html
<!doctype html>
<html lang="en" class="h-100">
<head>
<!-- Required meta tags -->
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<!-- Bootstrap CSS -->
<link href="https://getbootstrap.com/docs/5.0/dist/css/bootstrap.min.css" rel="stylesheet" crossorigin="anonymous">
@matt-
matt- / index.html
Last active May 10, 2021
Electron contextIsolation POC
View index.html
<!DOCTYPE html>
<html>
<head>
<script>
var proc = false;
Function.prototype.call= new Proxy(Function.prototype.call, {
apply: function(target, thisArg, argumentsList) {
console.log(thisArg)
if(!proc){
View hacker_hot_key.ino
#include <Keyboard.h>
#include <Bounce2.h>
#define NUM_BUTTONS 8
const uint8_t BUTTON_PINS[NUM_BUTTONS] = {13, 5, 10, 9, 8, 6, 12, 4};
Bounce2::Button * buttons = new Bounce2::Button[NUM_BUTTONS];
extern void openUrl(String url);
// array of function pointers
void (*keyActions []) () = {
View GrooveShark.class.php
<?php
/**
* GrooveShark - Interface to the Grooveshark unofficial web API
*
* PHP Version 5
*
* @author Matt Austin <matt@m-ausitn.com>
*/
include("util.class.php");
@matt-
matt- / light_show.ino
Created Oct 4, 2012
Sample Light Show
View light_show.ino
#include "SPI.h"
#include "WS2801.h"
int spectrumReset=5;
int spectrumStrobe=4;
int spectrumAnalog=0; //0 for left channel, 1 for right.
// Spectrum analyzer read values will be kept here.
int Spectrum[7];
@matt-
matt- / index.html
Created Sep 4, 2018
Electron Fiddle Gist
View index.html
<!DOCTYPE html>
<html>
<head>
<meta charset="UTF-8">
<title>Hello World!</title>
</head>
<body>
<h1>Hello ASD!</h1>
<p>This window does not have access to node bindings.</p>
<pre>process: <script>//document.write(process)</script></pre>
@matt-
matt- / unb.js
Created Dec 18, 2017
Embedded Javascript from Southwest Flight
View unb.js
var r44_btime = r44_btime || new Date();
var r44_btimems = r44_btime.getTime()/1000;
var r44_smu_time = r44_smu_time || new Date().getTime();
var r44_is_cached = r44_is_cached || false;
var r44_retime, r44_retimems, r44_letime;
var r44_enable = (window.location != window.parent.location) ? false : true;
var R44 = R44 || {};
R44.domain = R44.domain || '';
@matt-
matt- / md5quine.js
Last active Oct 5, 2017
Node MD5Quine
View md5quine.js
x="q=String.fromCharCode(34);console.log(require('crypto').createHash('md5').update(`x=${q+x+q};${x}`).digest('hex'))";q=String.fromCharCode(34);console.log(require('crypto').createHash('md5').update(`x=${q+x+q};${x}`).digest('hex'))
View native_module.js
var Module = require('module');
var old_wrap_zero = Module.wrapper[0];
// some code to inject into a module load.
var code = '\n(' + (function (){
process.NativeModule = require('native_module');
}) + ')();\n';
Module.wrapper[0] += code;
@matt-
matt- / main-r.min.js
Last active Nov 3, 2016
Wix XSS Update
View main-r.min.js
var startRender = function() {
"use strict";
startRender = function () {};
/*eslint strict:0*/
var isSuspectedBot = false;
if (!Function.prototype.bind) {
isSuspectedBot = true;
Function.prototype.bind = function (object) { //eslint-disable-line no-extend-native
var self = this,
slice = Array.prototype.slice,