> Dear ${user.first_name},
Dear sample01
> Dear ${user.password}
FreeMarket template error: the following has evaluated to null or missing...Q: Is it safe to allow users to upload templates if they are untrusted?
Alexander Makedonsky n0z3r0
n0z3r0
/ Server-Side Template Injection - RCE For the Modern WebApp by James Kettle (PortSwigger).md
Created
December 11, 2016 06:35
n0z3r0
/ react-proptype-warnings-as-errors-with-sinon.markdown
Created
November 4, 2016 11:44
— forked from scmx/react-proptype-warnings-as-errors-with-sinon.markdown
Make React PropType warnings throw errors with mocha.js, enzyme.js and sinon.js
n0z3r0
/ cve-2014-6332_win7_ie11_poc.html
Created
September 6, 2016 15:22
— forked from worawit/cve-2014-6332_win7_ie11_poc.html
CVE-2014-6332 PoC to get shell or bypass protected mode
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <html> | |
| <head> | |
| <!-- | |
| CVE-2014-6332 PoC to get meterpreter shell or bypass IE protected mode | |
| - Tested on IE11 + Windows 7 64-bit | |
| References: | |
| - original PoC - http://www.exploit-db.com/exploits/35229/ | |
| - http://blog.trendmicro.com/trendlabs-security-intelligence/a-killer-combo-critical-vulnerability-and-godmode-exploitation-on-cve-2014-6332/ | |
| - http://security.coverity.com/blog/2014/Nov/eric-lippert-dissects-cve-2014-6332-a-19-year-old-microsoft-bug.html |
n0z3r0
/ AndroidManifestDecompressor.groovy
Created
September 5, 2016 15:28
— forked from seymores/AndroidManifestDecompressor.groovy
Extract AndroidManifest.xml information.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import java.io.FileInputStream; | |
| import java.io.FileNotFoundException; | |
| import java.io.IOException; | |
| import java.io.InputStream; | |
| import java.util.zip.ZipEntry; | |
| import java.util.zip.ZipFile; | |
| class AndroidXMLDecompress { | |
| // decompressXML -- Parse the 'compressed' binary form of Android XML docs | |
| // such as for AndroidManifest.xml in .apk files |
n0z3r0
/ rails_dynamic_render_code_exec.rb
Created
September 3, 2016 16:32
— forked from forced-request/rails_dynamic_render_code_exec.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = ExcellentRanking | |
| @@trav_string = '%5c%2e%2e%2f' | |
| include Msf::Exploit::Remote::HttpClient | |
| def initialize(info = {}) | |
| super(update_info(info, |
n0z3r0
/ xssdetect.js
Created
August 30, 2016 16:26
— forked from koto/xssdetect.js
reflected xss detection using xssauditor on phantomjs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var page = require('webpage').create(), | |
| system = require('system'), | |
| address; | |
| page.onInitialized = function () { | |
| page.evaluate(function () { | |
| // additional detection code here perhaps | |
| // f.e. detecting STORED/DOM XSS | |
| }); |
n0z3r0
/ solve.py
Created
August 29, 2016 16:38
— forked from elliptic-shiho/solve.py
0CTF 2016 Crypto 2pt: RSA? Writeup
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from scryptos import * | |
| p1 = 32581479300404876772405716877547 | |
| p2 = 27038194053540661979045656526063 | |
| p3 = 26440615366395242196516853423447 | |
| n = p1*p2*p3 | |
| e = 3 | |
| c = int(open("flag.enc", "rb").read().encode("hex"), 16) |