ozzi-

<html>
	Form being submitted
  	<!-- longresponse.phg will take 30 seconds to respons, in order to simulate a timeout -->
	<form id="response" method="GET" action="https://oz-web.com/longresponse.php">
		<input type="hidden" name="status" id="status" value="*empty*" />
	</form>
	<script>
		const form = document.getElementById("response");
		function handleFail(){
      			// replace this with whatever code you have to handle the timeout

ozzi-

<html>
  <a id="downloadBinaryLink"></a>
    <script>
      // file.php here serves as a pseudo API that returns a binary as octect stream (and according Access-Control-Allow-Origin header)
      doBinaryDownload("http://oz-web.com/file.php", loadBinaryScriptEdit);
      function loadBinaryScriptEdit(blob){
        var dataUri = window.URL.createObjectURL(blob);	
        var anchor = document.getElementById("downloadBinaryLink");
        anchor.setAttribute('href', dataUri);
        anchor.setAttribute('download', "pingsender.exe");

ozzi-

equiv=$(curl $YOURURL -sS | grep -i "http-equiv")
shopt -s nocasematch
regexp='\<meta http-equiv=\"*refresh\"* content=\"*[0-9]*\"*;\s*url=([a-zA-Z0-9\/\.\?=#&.]*)'
path=""
if [[ $equiv =~ $regexp ]]; then
  echo "${BASH_REMATCH[1]}"
  # curl $YOURURL${BASH_REMATCH[1]}
else
  echo "Could not parse equiv!"
  exit 3

ozzi-

// Input:
// [
//    {
//       "f00" : "bar",
//       "info" : "this comma to my right is wrong",
//    },
//    {
//       "f00" : "bar",
//       "info" : "the comma on the line below is wrong too!"
//    },

ozzi-

#!/bin/bash

# tlscheck will check if a specified url supports the defined mimum tls version and higher
# this is helpful to ensure hardening (i.E. does my server support 1.2 and newer only?)
# exit codes above 9 will signalize the tls version check that failed (i.E. 11 = TLS 1.1)
# exit codes below 6 will signalize wrong syntax
# exit code 6 means could not connect at all
# ----------------------------------------------------------------------------------------
# https://github.com/ozzi-

ozzi-

public static void main(String[] args) {
  String input = "werewräüèö";
  String result = fixDoubleUTF8Encoding(input);
  System.out.println(result); // werewräüèö
  
  input = "üäöé";
  result = fixDoubleUTF8Encoding(input);
  System.out.println(result); // üäöé
}

ozzi-

res=$(curl "https://zgheb.com" -i -sS -w "\r\n%{http_code}")

responseCode=$(echo "$res" | tail -1)
headersAndBody=$(echo "$res" | head -n -1)
headers=$(echo "$headersAndBody" | awk '{if($0=="\r")exit;print}')
body=$(echo "$headersAndBody" | awk '{if(body)print;if($0=="\r")body=1}')

powered=$(echo "$res" | grep -Fi "X-Powered-By"  | cut -d ":" -f2 | awk '{$1=$1};1')

echo "Response Code:"

ozzi-

$ echo "f00 bar 123 f00 foo" | awk -F"f00" '{ print NF-1}'
2

ozzi-

openssl s_client -showcerts -servername {{URL}} -connect {{URL}}:443 2>/dev/null

ozzi-

public static String removeSubdomains(String url, ArrayList<String> secondLevelDomains) {
	// We need our URL in three parts, protocol - domain - path
	String protocol= getProtocol(url);		
	url = url.substring(protocol.length());
	String urlDomain=url;
	String path="";
	if(urlDomain.contains("/")) {
		int slashPos = urlDomain.indexOf("/");
		path=urlDomain.substring(slashPos);
		urlDomain=urlDomain.substring(0, slashPos);