Malayke
Malayke
/ gist:43f51f9073feff7a67f847e20da4072b
Created
September 6, 2017 02:15
S2-052 CVE-2017-9805 POC
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| POST /struts2-rest-showcase/orders/3 HTTP/1.1 | |
| Host: localhost:8080 | |
| Content-Length: 1670 | |
| Cache-Control: max-age=0 | |
| Origin: http://localhost:8080 | |
| Upgrade-Insecure-Requests: 1 | |
| User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 | |
| Content-Type: application/xml | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 | |
| DNT: 1 |
Malayke
/ how beef gathers browser details on initialization
Created
March 26, 2017 15:19
— forked from xntrik/how beef gathers browser details on initialization
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Most of the logic resides in https://github.com/beefproject/beef/tree/master/core/main/client | |
| https://github.com/beefproject/beef/blob/master/core/main/client/beef.js establishes the beef object in the browser's DOM | |
| window.onload then runs beef_init() https://github.com/beefproject/beef/blob/master/core/main/client/init.js#L24 | |
| Within beef_init() we run beef.net.browser_details() https://github.com/beefproject/beef/blob/master/core/main/client/init.js#L67 | |
| Within beef.net.browser_details() we gather response from beef.browser.getDetails() https://github.com/beefproject/beef/blob/master/core/main/client/net.js#L503 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| Author: Casey Smith @subTee | |
| License: BSD3-Clause | |
| .SYNOPSIS | |
| Simple Reverse Shell over HTTP. Execute Commands on Client. | |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Show hidden characters
| { | |
| "auto_complete_commit_on_tab": true, | |
| "color_scheme": "Packages/Theme - Spacegray/base16-eighties.dark.tmTheme", | |
| "enable_tab_scrolling": false, | |
| "ensure_newline_at_eof_on_save": true, | |
| "file_exclude_patterns": | |
| [ | |
| ".DS_Store", | |
| "*.sublime-workspace", | |
| "*.scssc" |
Malayke
/ pretty_print_mfoc_data.py
Last active
February 26, 2017 04:20
Colorful output M1(Mifare Classic) Card data from mfoc
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # coding = utf-8 | |
| # Colorful print Mfoc data | |
| # date: 2015-3-21 ,Nuruz | |
| # changelog: | |
| # 2017-2-26: | |
| # change output color to similar with Mifare Classic Tools. | |
| __author__ = 'Malayke' |
Malayke
/ items.py
Last active
August 29, 2015 14:16
Crawl https://default-password.info All Usernames And Passwords
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- coding: utf-8 -*- | |
| # Define here the models for your scraped items | |
| # | |
| # See documentation in: | |
| # http://doc.scrapy.org/en/latest/topics/items.html | |
| import scrapy |
NewerOlder