Skip to content

Instantly share code, notes, and snippets.

View nicoSWD's full-sized avatar
🧗‍♂️

Nico Oelgart nicoSWD

🧗‍♂️
61 followers · 111 following
View GitHub Profile
@IMSoP
IMSoP / 01-anon-classes.php
Last active March 14, 2023 21:12
PHP Brainstorming: inline syntax for lexical capture
<?php
// Existing functionality
function wrapLogger(LoggerInterface $existingLogger, string $myExtraContextValue) {
// Values can only be passed in via the constructor
$delegatingLogger = new class($existingLogger, $myExtraContextValue) extends AbstractLogger {
public function __construct(
// Constructor property promotion simplifies this, but we still need to declare private properties
private LoggerInterface $delegateTo,
private string $extraContextValue
@marzavec
marzavec / run.js
Created August 8, 2019 16:43
Browser-based subdomain bruteforcing using DNS over HTTP(s) (DoH)
/*
Developer: Marzavec ( https://github.com/marzavec )
Description: A simple browser-based subdomain bruteforcing script, using DoH providers. Developed as a 5 minute hack, just to see it's preformance. Many improvements could be made, such as adding error handling or informing the user when the script is done.
Usage: Open the browsers dev console (usually F12), paste this script, change the `rootTld`, press enter to run. Ezpz.
*/
const rootTld = 'lyka.pro'; // change to your target's root tld
// url to newline seperated wordlist
const wordlistUrl = 'https://raw.githubusercontent.com/rbsec/dnscan/master/subdomains.txt';
@yifanlu
yifanlu / Ghidra-OSX-Launcher-Script.scpt
Last active April 4, 2024 21:00
Ghidra.app launcher for OSX
@jhaddix
jhaddix / all.txt
Created January 19, 2019 04:35 — forked from orangetw/all.txt
all wordlists from every dns enumeration tool... ever. Please excuse the lewd entries =/
This file has been truncated, but you can view the full file.
.
..
........
@
*
*.*
*.*.*
🐎
@jthuraisamy
jthuraisamy / windows-toolkit.md
Last active April 12, 2022 20:00
Windows Toolkit

Windows Toolkit

Binary

Native Binaries

IDA Plugins Preferred Neutral Unreviewed
@jhaddix
jhaddix / Testing_Checklist.md
Last active April 26, 2024 21:38 — forked from amotmot/WAHH_Task_Checklist.md
Fast Simple Appsec Testing Checklist
@JBlond
JBlond / bash-colors.md
Last active May 5, 2024 12:18 — forked from iamnewton/bash-colors.md
The entire table of ANSI color codes.

Regular Colors

Value Color
\e[0;30m Black
\e[0;31m Red
\e[0;32m Green
\e[0;33m Yellow
\e[0;34m Blue
\e[0;35m Purple
@jgamblin
jgamblin / Sysinfo.sh
Last active August 8, 2023 06:46
A Bash Script To Get System Information For OSX.
#!/bin/bash
# You Will need to install iStats
# gem install istats
echo && echo ———————-System Information:——————— &&
/bin/echo -n "Uptime: " && uptime | awk '{print $3}'
echo
/bin/echo -n "CPU Usage: " && top -l 1 | awk '/CPU usage/ {print $3}'
/bin/echo -n "CPU Temp: " && istats | grep CPU\ temp | awk '{print $3}'
/bin/echo -n "FAN Speed: " && istats | grep Fan\ 0\ speed: | awk '{print $4,$5}'
@v1ad
v1ad / jla_HTTPHeader_expl.py
Created December 15, 2015 21:42
Joomla 1.5 - 3.4.5 - Object Injection Remote Command Exec "checker" / exploit
import sys
import requests
import re
#Original PoC by Gary @ Sec-1 ltd - https://www.exploit-db.com/exploits/38977/
def get_url(url, user_agent):
@sgolemon
sgolemon / gist:f23dc4f90725bfedc611
Created January 3, 2015 06:24
HHVM vs PHP Extension APIs
<<__Native>> function foo(int $bar, string $baz): bool;
bool HHVM_FUNCTION(foo, int bar, const String& baz) {
// Do stuff with bar and baz
return true;
}
ZEND_BEGIN_ARG_INFO(foo_arginfo, 0, ZEND_RETURN_VALUE, 2)
ZEND_ARG_INFO(0, bar)