I hereby claim:
- I am chowraid on github.
- I am chowraid (https://keybase.io/chowraid) on keybase.
- I have a public key whose fingerprint is 2CAB E5DE 09BD 6233 5E29 7817 2BE3 8A60 1C31 0FB2
To claim this, I am signing this object:
mrpwnd
/ keybase.md
Created
April 12, 2017 02:27
mrpwnd
/ gist:1e9bf8e71c2a5a686025
Created
October 9, 2015 14:36
— forked from crizCraig/gist:2816295
Download images from Google Image search using Python
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import json | |
| import os | |
| import time | |
| import requests | |
| from PIL import Image | |
| from StringIO import StringIO | |
| from requests.exceptions import ConnectionError | |
| def go(query, path): | |
| """Download full size images from Google image search. |
mrpwnd
/ script.py
Created
October 2, 2015 04:40
— forked from bodokaiser/script.py
Apache > 2.2.22 remote denial of service exploit.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # The idea is to do a HEAD request on a large file on an apache server with multiple byte ranges in multiple connections. | |
| # The server then will have to read this large file from all the given byte ranges without returning any content | |
| # (as it is a HEAD) request. If we do this about > 500 times in parallel the memory will collapse with | |
| # the apache process crashing down. | |
| import sys | |
| import socket | |
| header = '' |
mrpwnd
/ Stagefright_CVE-2015-1538-1_Exploit.py
Created
September 11, 2015 13:47
Android Stagefright python script released on https://www.kb.cert.org/vuls/id/924951
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # Joshua J. Drake (@jduck) of ZIMPERIUM zLabs | |
| # Shout outs to our friends at Optiv (formerly Accuvant Labs) | |
| # (C) Joshua J. Drake, ZIMPERIUM Inc, Mobile Threat Protection, 2015 | |
| # www.zimperium.com | |
| # | |
| # Exploit for RCE Vulnerability CVE-2015-1538 #1 | |
| # Integer Overflow in the libstagefright MP4 'stsc' atom handling | |
| # | |
| # Don't forget, the output of "create_mp4" can be delivered many ways! |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * To chose the width and height of a device use Chrome Developer Tools | |
| */ | |
| /* Portrait and Landscape */ | |
| @media screen | |
| and (device-width: 0px) /*Chose width pixels*/ | |
| and (device-height: 0px) /*Chose height pixels*/ | |
| and (-webkit-device-pixel-ratio: 0) /*pixel ratio goes here*/ { |