cribbed from http://pastebin.com/xgzeAmBn
Templates to remind you of the options and formatting for the different types of objects you might want to document using YARD.
GitHub repositories can disclose all sorts of potentially valuable information for bug bounty hunters. The targets do not always have to be open source for there to be issues. Organization members and their open source projects can sometimes accidentally expose information that could be used against the target company. in this article I will give you a brief overview that should help you get started targeting GitHub repositories for vulnerabilities and for general recon.
You can just do your research on github.com, but I would suggest cloning all the target's repositories so that you can run your tests locally. I would highly recommend @mazen160's GitHubCloner. Just run the script and you should be good to go.
$ python githubcloner.py --org organization -o /tmp/output
| # Updated for Ruby 2.3 | |
| string_t = None | |
| def get_rstring(addr): | |
| s = addr.cast(string_t.pointer()) | |
| if s['basic']['flags'] & (1 << 13): | |
| return s['as']['heap']['ptr'].string() | |
| else: | |
| return s['as']['ary'].string() |
THIS GIST WAS MOVED TO TERMSTANDARD/COLORS REPOSITORY.
PLEASE ASK YOUR QUESTIONS OR ADD ANY SUGGESTIONS AS A REPOSITORY ISSUES OR PULL REQUESTS INSTEAD!
| Title | Description
| class ActionDispatch::Routing::Mapper | |
| def draw(routes_name) | |
| instance_eval(File.read(Rails.root.join("config/routes/#{routes_name}.rb"))) | |
| end | |
| end | |
| BCX::Application.routes.draw do | |
| draw :api | |
| draw :account | |
| draw :session |
| #!/bin/bash | |
| # The "tmuxifier" | |
| # Execute parallel processes in an arbitrary number of tmux panes | |
| # This script requires the path to an existing script to | |
| # execute in parallel. Optionally, the number of threads to | |
| # and the name of the tmux session can be input. If threads | |
| # and session name are not entered, threads are determined | |
| # automatically and session names is set to a default. |
| INTRO | |
| I get asked regularly for good resources on AWS security. This gist collects some of these resources (docs, blogs, talks, open source tools, etc.). Feel free to suggest and contribute. | |
| Short Link: http://tiny.cc/awssecurity | |
| Official AWS Security Resources | |
| * Security Blog - http://blogs.aws.amazon.com/security/ | |
| * Security Advisories - http://aws.amazon.com/security/security-bulletins/ | |
| * Security Whitepaper (AWS Security Processes/Practices) - http://media.amazonwebservices.com/pdf/AWS_Security_Whitepaper.pdf | |
| * Security Best Practices Whitepaper - http://media.amazonwebservices.com/AWS_Security_Best_Practices.pdf |
| # https://github.com/mhenrixon/sidekiq-unique-jobs/issues/161 | |
| # Even worse: https://github.com/mhenrixon/sidekiq-unique-jobs/issues/234 | |
| class SidekiqUniqueJobsHashCompactor | |
| include Sidekiq::Worker | |
| sidekiq_options queue: "slow" | |
| def perform | |
| # Skip if there are jobs queued... | |
| return unless Sidekiq::Queue.all.select { |q| q.size > 100 }.blank? |
| module Mongoid | |
| module Unvalidate | |
| extend ActiveSupport::Concern | |
| module ClassMethods | |
| # Removes specified validations from existing models for a given field | |
| # | |
| # @param [Symbol] field the field to remove validations from | |
| # @param [Array<Symbol> | Symbol] validations validations to remove from field |
