| Filter | Description | Example |
|---|---|---|
| allintext | Searches for occurrences of all the keywords given. | allintext:"keyword" |
| intext | Searches for the occurrences of keywords all at once or one at a time. | intext:"keyword" |
| inurl | Searches for a URL matching one of the keywords. | inurl:"keyword" |
| allinurl | Searches for a URL matching all the keywords in the query. | allinurl:"keyword" |
| intitle | Searches for occurrences of keywords in title all or one. | intitle:"keyword" |
VC0D3R mrvcoder
🏡
Smerity
/ fetch_page.py
Created
August 7, 2015 21:30
An example of fetching a page from Common Crawl using the Common Crawl Index
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import gzip | |
| import json | |
| import requests | |
| try: | |
| from cStringIO import StringIO | |
| except: | |
| from StringIO import StringIO | |
| # Let's fetch the Common Crawl FAQ using the CC index | |
| resp = requests.get('http://index.commoncrawl.org/CC-MAIN-2015-27-index?url=http%3A%2F%2Fcommoncrawl.org%2Ffaqs%2F&output=json') |
makew0rld
/ go-build-all.sh
Last active
July 22, 2025 15:43
Cross compile for all possible Golang targets. This script will always be updated, because it uses the `go` command to see what can be built.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # Based on https://gist.github.com/eduncan911/68775dba9d3c028181e4 | |
| # but improved to use the `go` command so it never goes out of date. | |
| type setopt >/dev/null 2>&1 | |
| contains() { | |
| # Source: https://stackoverflow.com/a/8063398/7361270 | |
| [[ $1 =~ (^|[[:space:]])$2($|[[:space:]]) ]] |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function sleep( sleepDuration ){ | |
| var now = new Date().getTime(); | |
| while(new Date().getTime() < now + sleepDuration){ /* do nothing */ } | |
| } | |
| function gc() { | |
| for (let i = 0; i < 0x10; i++) { | |
| new ArrayBuffer(0x1000000); | |
| } | |
| } | |
| let data_view = new DataView(new ArrayBuffer(8)); |
Xib3rR4dAr
/ burp-suite-turbo-intruder-race.py
Created
February 23, 2022 06:02
Racing script for Turbo Intruder extension in Burp Suite.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # From https://github.com/PortSwigger/turbo-intruder/blob/master/resources/examples/race.py | |
| def queueRequests(target, wordlists): | |
| engine = RequestEngine(endpoint=target.endpoint, | |
| concurrentConnections=30, | |
| requestsPerConnection=100, | |
| pipeline=False | |
| ) | |
| # the 'gate' argument blocks the final byte of each request until openGate is invoked | |
| for i in range(30): |
coolaj86
/ ChatGPT-Dan-Jailbreak.md
Last active
October 28, 2025 14:35
hackermondev
/ zendesk.md
Last active
October 15, 2025 14:59
1 bug, $50,000+ in bounties, how Zendesk intentionally left a backdoor in hundreds of Fortune 500 companies
hi, i'm daniel. i'm a 15-year-old with some programming experience and i do a little bug hunting in my free time. here's the insane story of how I found a single bug that affected over half of all Fortune 500 companies:
If you've spent some time online, you’ve probably come across Zendesk.
Zendesk is a customer service tool used by some of the world’s top companies. It’s easy to set up: you link it to your company’s support email (like support@company.com), and Zendesk starts managing incoming emails and creating tickets. You can handle these tickets yourself or have a support team do it for you. Zendesk is a billion-dollar company, trusted by big names like Cloudflare.
Personally, I’ve always found it surprising that these massive companies, worth billions, rely on third-party tools like Zendesk instead of building their own in-house ticketing systems.
mberneti
/ retryDynamicImport.ts
Last active
September 13, 2025 07:53
This utility function retryDynamicImport enhances React’s lazy loading mechanism by adding retry logic with a versioned query parameter. It retries importing a component multiple times in case of failure, which can be useful for bypassing browser cache or dealing with intermittent network issues. It can be used as a drop-in replacement for React…
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Usage: | |
| // Replace React.lazy(() => import('x')); | |
| // with retryDynamicImport(() => import('x')); | |
| import { ComponentType, lazy } from 'react'; | |
| const MAX_RETRY_COUNT = 15; | |
| const RETRY_DELAY_MS = 500; | |
| // Regex to extract the module URL from the import statement |