提供与客户端通讯的机制。支持WindVane SDK v2.2 以上版本。
windvane 在客户端中,会将原始UA后面跟上 WindVane/WindVaneSDK的版本号,你可以通过判断UA的方式来检查环境 其中,淘宝主客户端1212版本(IOS 3.4.5 ANDROID 3.9.5)后格式为
Aung Khant yehgdotnet
yehgdotnet
/ windvane.md
Created
November 10, 2021 09:44
— forked from sandywu/windvane.md
yehgdotnet
/ server.py
Created
October 28, 2021 16:02
— forked from mdonkers/server.py
Simple Python 3 HTTP server for logging all GET and POST requests
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| Very simple HTTP server in python for logging requests | |
| Usage:: | |
| ./server.py [<port>] | |
| """ | |
| from http.server import BaseHTTPRequestHandler, HTTPServer | |
| import logging | |
| class S(BaseHTTPRequestHandler): |
yehgdotnet
/ GraphQL-Introspection-Query-Url-Encoded
Created
October 31, 2019 03:53
— forked from szski/GraphQL-Introspection-Query-Url-Encoded
Append this string after https://examplegqlapi.com/?query= to test for introspection query
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| query%20IntrospectionQuery%20%7B%0A%20%20%20%20__schema%20%7B%0A%20%20%20%20%20%20queryType%20%7B%20name%20%7D%0A%20%20%20%20%20%20mutationType%20%7B%20name%20%7D%0A%20%20%20%20%20%20types%20%7B%0A%20%20%20%20%20%20%20%20...FullType%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20directives%20%7B%0A%20%20%20%20%20%20%20%20name%0A%20%20%20%20%20%20%20%20description%0A%20%20%20%20%20%20%20%20locations%0A%20%20%20%20%20%20%20%20args%20%7B%0A%20%20%20%20%20%20%20%20%20%20...InputValue%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%7D%0A%20%20%7D%0A%20%20fragment%20FullType%20on%20__Type%20%7B%0A%20%20%20%20kind%0A%20%20%20%20name%0A%20%20%20%20description%0A%20%20%20%20fields%28includeDeprecated%3A%20true%29%20%7B%0A%20%20%20%20%20%20name%0A%20%20%20%20%20%20description%0A%20%20%20%20%20%20args%20%7B%0A%20%20%20%20%20%20%20%20...InputValue%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20type%20%7B%0A%20%20%20%20%20%20%20%20...TypeRef%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20isDeprecated%0A%20%20% |
yehgdotnet
/ vpn.md
Created
October 23, 2019 11:50
— forked from joepie91/vpn.md
Don't use VPN services.
No, seriously, don't. You're probably reading this because you've asked what VPN service to use, and this is the answer.
Note: The content in this post does not apply to using VPN for their intended purpose; that is, as a virtual private (internal) network. It only applies to using it as a glorified proxy, which is what every third-party "VPN provider" does.
A Russian translation of this article can be found here, contributed by Timur Demin. There's also this article about VPN services, which is honestly better written (and has more cat pictures!) than my article.
yehgdotnet
/ tlds
Created
June 12, 2018 07:39
— forked from di/tlds
Valid Two-Letter Top Level Domains
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ac | |
| ad | |
| ae | |
| af | |
| ag | |
| ai | |
| al | |
| am | |
| an | |
| ao |
yehgdotnet
/ mandros.py
Created
March 20, 2018 13:41
— forked from xassiz/mandros.py
Reverse MSSQL shell
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys | |
| import requests | |
| import threading | |
| import HTMLParser | |
| from BaseHTTPServer import HTTPServer, BaseHTTPRequestHandler | |
| ''' | |
| Description: Reverse MSSQL shell through xp_cmdshell + certutil for exfiltration | |
| Author: @xassiz | |
| ''' |
yehgdotnet
/ delete-git-recursively.sh
Created
March 13, 2018 14:25
— forked from facelordgists/delete-git-recursively.sh
Recursively remove .git folders
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ( find . -type d -name ".git" && find . -name ".gitignore" && find . -name ".gitmodules" ) | xargs rm -rf |
yehgdotnet
/ rduck-pinbrute.py
Created
March 13, 2018 05:34
— forked from joswr1ght/rduck-pinbrute.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # rduck-pinbrute: Generate Duckyscript file that brute forces all 4-digit | |
| # PIN values for use in attacking Android devices. Prioritizes common | |
| # PIN values before resorting to exhaustive 0000-9999 search. | |
| # Joshua Wright, josh@willhackforsushi.com. Public Domain. | |
| # | |
| # Inspired by Darren Kitchen script: | |
| # https://forums.hak5.org/index.php?/topic/28165-payload-android-brute-force-4-digit-pin/ | |
| # Data Genetics high probability list |
yehgdotnet
/ macosx_remove_java9.sh
Last active
March 11, 2018 08:51
— forked from schnell18/macosx_remove_java9.sh
[Android-SDK | Java9 incompatibility fix - MacOS X] remove Java 9 and install Java 8
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ avdmanager | |
| Exception in thread "main" java.lang.NoClassDefFoundError: javax/xml/bind/annotation/XmlSchema | |
| at com.android.repository.api.SchemaModule$SchemaModuleVersion.<init>(SchemaModule.java:156) | |
| at com.android.repository.api.SchemaModule.<init>(SchemaModule.java:75) | |
| at com.android.sdklib.repository.AndroidSdkHandler.<clinit>(AndroidSdkHandler.java:81) | |
| at com.android.sdklib.tool.AvdManagerCli.run(AvdManagerCli.java:213) | |
| at com.android.sdklib.tool.AvdManagerCli.main(AvdManagerCli.java:200) | |
| Caused by: java.lang.ClassNotFoundException: javax.xml.bind.annotation.XmlSchema | |
| at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:582) | |
| at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:185) |
yehgdotnet
/ JAVA-ADVISORY.md
Created
March 7, 2018 03:34
— forked from frohoff/JAVA-ADVISORY.md
Java 7u21 Security Advisory
Chris Frohoff – Qualcomm Information Security and Risk Management
- Affected Product(s): Java SE 6, Java SE 7
- Fixed in: Java SE 7u25 (2013-06-18), Java SE 8 (2014-03-18)
- Vendor Contact: secalert_us@oracle.com
- Vulnerability Type: Unsafe Object Deserialization
NewerOlder