Simple JS Jail challenge.
It is run on context, so we have nothing but to play with constructor and console.
1337 === eval(our_input)
Harold Kim stypr
🆎**********************************
stypr
/ connectivity_check.py
Last active
August 3, 2022 17:02
Bird2 connectivity checker (upstream, downstream, exchanges)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python3 -u | |
| #-*- coding: utf-8 -*- | |
| """ | |
| connectivity_check.py | |
| Simple tool for checking Bird2 connectivity (for personal use) | |
| Developed by AS400671 (https://network.stypr.com/) | |
| You can use description to set speed, countries and names of providers. |
Exploiting a react app by customElement and is=is pollution
- There is a bug with the hydration, so we can pollute prop of the
<img>tag. - Error message is triggered when the
window.width < 600. Interestingly,location.hashfills thepropsupon displaying the error message. - When the error message is shown and you try to resize your
window.width > 600,<img>is shown again. - Since there is a dehydration bug, prop gets filled with the existing
location.hash, making it possible to add additional attributes on the `` tag.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // run before send | |
| const originalSend = WebSocket.prototype.send; | |
| window.sockets = []; | |
| WebSocket.prototype.send = function(...args) { | |
| if (window.sockets.indexOf(this) === -1) | |
| window.sockets.push(this); | |
| return originalSend.call(this, ...args); | |
| }; | |
| // run after send |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from telegram.ext import Updater | |
| from telegram.ext import CommandHandler | |
| import telegram | |
| import requests | |
| token = "{TELEGRAM TOKEN}" | |
| mention_user = ["stypr", "stypr_jp"] | |
| bugcamp_data = {} | |
| def bugcamp(): |
stypr
/ install.sh
Created
August 16, 2019 09:05
Install MobSF Framework on CentOS 7 (with Headless Dynamic Analysis)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Maintainer: Harold Kim (root@stypr.com) | |
| # Tested in CentOS 7.6.1810 | |
| # $ lsb_release -a | |
| # LSB Version: :core-4.1-amd64:core-4.1-noarch | |
| # Distributor ID: CentOS | |
| # Description: CentOS Linux release 7.6.1810 (Core) | |
| # Release: 7.6.1810 | |
| # Codename: Core |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python -u | |
| #-*- coding: utf-8 -*- | |
| # Developer: Harold Kim(root@stypr.com) | |
| import os | |
| import sys | |
| import re | |
| import requests | |
| class iptime: |
web: temporary writeup
There are two instances namely public and internal.
We can get the address of public by leaking $_SERVER['REMOTE_ADDR"] in phpinfo.php?phpinfo
$_SERVER['SERVER_NAME'] _
$_SERVER['SERVER_PORT'] 80
$_SERVER['SERVER_ADDR'] 172.21.0.2NewerOlder