I hereby claim:
- I am insiderphd on github.
- I am insiderphd (https://keybase.io/insiderphd) on keybase.
- I have a public key whose fingerprint is CFD3 B6E3 1FB7 42D7 F4A9 04BA 031B 8B44 177C DCC8
To claim this, I am signing this object:
Katie Paxton-Fear InsiderPhD
InsiderPhD
/ vuln-verify.skill
Created
May 13, 2026 19:15
A skill for manually verifying SAST findings using Burp/CAIDO
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: vuln-verify | |
| description: Guide the user through manually verifying a security finding (CVE, SAST result, bug report) against a live local instance of a target application. Use this skill whenever the user provides a GitHub repo URL plus a vulnerability finding and wants to confirm exploitability — even if they say "just check this", "is this real?", "can you verify?", "test this finding", "does this actually work?", or "PoC this". Also triggers when the user pastes a finding with source/sink/trace details and asks any question about its validity. The skill is opinionated: it skips re-summarizing static analysis and instead tells the user exactly what to do and what to look for. The USER does the testing. Claude provides the instructions and sets up Docker automatically. | |
| --- | |
| # Vulnerability Verification | |
| ## Your role | |
| You are a guide. You set up the environment. The user does the testing. |
InsiderPhD
/ eink_bom.txt
Created
August 18, 2025 20:20
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Freenove ESP32-S3-WROOM Board Lite (or any EPS32 with 8MB flash memory): https://www.amazon.co.uk/dp/B0DHJYR4D4/ref=twister_B0DHK68DDG?_encoding=UTF8&psc=1 | |
| Freenove Breakout Board for ESP32 / ESP32-S3 - optional because not confident in soldering: https://www.amazon.co.uk/FREENOVE-Breakout-ESP32-S3-Terminal-Outputs/dp/B0CD2512JV | |
| PN532 NFC NXP RFID Module V3: https://www.amazon.co.uk/Module-Communication-Arduino-Raspberry-Android/dp/B07YDG6X2V/ | |
| TFT SPI Touchscreen 2.4": https://www.aliexpress.com/item/1005007038377189.html | |
| WeActStudio 2.13" epaper: display https://www.aliexpress.com/item/1005004644515880.html | |
| Magnetic connectors: https://www.aliexpress.com/item/1005006908797109.html | |
| Protoyping PCB (to run the buses for SPI and the connector for the screens): https://www.amazon.co.uk/Prototype-Snappable-Arduino-Electronics-Gold-Plated/dp/B081R4YBY7/ | |
| 10x2mm magnets: https://www.amazon.co.uk/dp/B09W8S8WSW | |
| 25mm NFC coin stickers (or the stickers of your choice, these were £3 when I bought them): https://www.amazon |
InsiderPhD
/ gist:0624b15012eb7b68a0f5b9cee7ace7f6
Created
October 20, 2024 21:54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // ==UserScript== | |
| // @name Neopets - Search Helper | |
| // @version 1.0.27 | |
| // @namespace neopets | |
| // @description Adds convenient search icons to many places | |
| // @author diceroll123 | |
| // @match *://*.neopets.com/auctions.phtml* | |
| // @match *://*.neopets.com/closet.phtml* | |
| // @match *://*.neopets.com/dome/neopets.phtml* | |
| // @match *://*.neopets.com/faerieland/darkfaerie.phtml* |
InsiderPhD
/ keybase.md
Created
October 15, 2024 16:29
InsiderPhD
/ raindrop-highlight-obsidian.py
Created
October 17, 2022 11:46
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| import re | |
| import shutil | |
| import requests | |
| token = 'PASTE YOUR TOKEN HERE' | |
| perpage = 50 | |
| # get all the items |
InsiderPhD
/ EmailController.php
Created
November 29, 2021 15:07
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| namespace App\Http\Controllers; | |
| use App\Models\Email; | |
| use Illuminate\Http\Request; | |
| use Illuminate\Support\Facades\Auth; | |
| class EmailController extends AuthApiController | |
| { |
InsiderPhD
/ blanketgen.php
Created
November 27, 2021 21:59
generates a temperature blanket from a csv of temps
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <style> | |
| </style> | |
| <div> | |
| <table> | |
| <tbody> | |
| <tr> | |
| <?php | |
| echo 30/3; |
InsiderPhD
/ AuthApiController.php
Created
September 5, 2021 21:33
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| namespace App\Http\Controllers; | |
| use App\Models\Email; | |
| use Illuminate\Http\Request; | |
| use Illuminate\Support\Facades\DB; | |
| class AuthApiController extends ApiController | |
| { |
InsiderPhD
/ ffuf_oneline.sh
Created
September 1, 2020 22:20
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Basic Usage | |
| ffuf -w wordlist.txt -u http://127.0.0.1:8000/api/FUZZ/6 -o output.txt -replay-proxy http://127.0.0.1:8080 | |
| # Basic Usage With a Cookie | |
| ffuf -w wordlist.txt -u http://127.0.0.1:8000/api/FUZZ/6 -o output.txt -replay-proxy http://127.0.0.1:8080 -b "laravel_session=eyJpdiI6Ii8wQU11dTVlUkg2alRHUXBIVzlGSnc9PSIsInZhbHVlIjoiOWs3YllJWTdqNC9xa1pMeFRvMFh0OE1vRFpaWm9GSzFkRktVZS9yUHBDM0lIazZ4K0NsbndxWVIxQ05VZWhqZUZaR0RGQWlFdmdDc24yWllYRklGSXI5STd2b05Pam4yRXIwV1BUWkZhUnFLNUFzOWsycmRHcnlxS0FqRWNsSnEiLCJtYWMiOiI3ZTliMmM2YzIxOTExNDE0NmVjYTYyMGI4Nzg4YzJiYjNmNjVkNDI1YzEyODYwMzY5YzczNzY3NTUwZDk0OGYzIn0%3D;" | |
| # Adding a delay | |
| ffuf -w wordlist.txt -u http://127.0.0.1:8000/api/FUZZ/6 -o output.txt -replay-proxy http://127.0.0.1:8080 –p 1 –t 3 | |
| # Adding a delay (new method) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| FROM python:3 | |
| WORKDIR /usr/src/app | |
| COPY requirements.txt ./ | |
| RUN pip install --no-cache-dir -r requirements.txt | |
| RUN mkdir data | |
| COPY . . |
NewerOlder