-
Go to C:\Users\UserName.ssh
-
Copy and paste the id_rsa file
-
Rename it to something else, eg.
example -
Open the renamed file and replace the key with your own private key
-
cdto that directory
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- coding: utf-8 -*- | |
| from bs4 import BeautifulSoup | |
| import requests | |
| import re | |
| import sys | |
| url = sys.argv[1] | |
| page = requests.get(url).text | |
| soup = BeautifulSoup(page, "html.parser") |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| wget -O https://slproweb.com/download/Win64OpenSSL-1_1_1d.exe | |
| set OPENSSL_CONF="C:\Program Files\OpenSSL-Win64\bin\openssl.cfg" |
Isopach
/ add-private-key.md
Last active
February 24, 2020 23:04
To use your own private key with SSH on Windows 10. Solves https://superuser.com/a/1528039/530249
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import datetime, wmi; print("Boot time was around {}:{}:{}".format((datetime.datetime.now() - datetime.timedelta(seconds=int(wmi.WMI().Win32_PerfFormattedData_PerfOS_System()[-1].SystemUpTime))).hour,(datetime.datetime.now() - datetime.timedelta(seconds=int(wmi.WMI().Win32_PerfFormattedData_PerfOS_System()[-1].SystemUpTime))).minute,(datetime.datetime.now() - datetime.timedelta(seconds=int(wmi.WMI().Win32_PerfFormattedData_PerfOS_System()[-1].SystemUpTime))).second)) |
Isopach
/ getLocalStoragePropertyDescriptor.js
Created
March 2, 2020 15:02
Reconstruct Discord's removed LocalStorage func and call email_cache
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function abc(){const e=document.createElement("iframe");document.head.append(e);const o=Object.getOwnPropertyDescriptor(e.contentWindow,"localStorage");return e.remove(),o}Object.defineProperty(window,"localStorage",abc()),window.localStorage.email_cache; |
Isopach
/ hideBlockedElements.css
Created
March 15, 2020 04:49
One-line CSS to hide discord blocked messages
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <style>div[class^="blockedSystemMessage-"],div[class*="blockedSystemMessage-"]{display:none !important;}</style> |
Isopach
/ backup_ios-13.5.md
Last active
May 21, 2020 18:07
How to backup iOS 13.5 and extract ipa to Windows 10
- Create backup of ipad in default location because you cant change it
- Copy the backup folder
%APPDATA%\Apple Computerto your desired location - Open CMD prompt as administrator
- Make symbolic link with
mklink /D "Z:\iPad\Backups\Apple Computer" "%APPDATA%\Roaming\Apple Computer" - Install iMazing
- Connect iPad/iPhone, Sign in, then click on
Manage Apps - Right-click on app you want to download, then select
Download to Library. You may need to make a backup first. Ensure that both your backup and library location are in the same parent folder (it will be the same by default) - Mission accomplished!
Isopach
/ burp-collab.md
Created
June 1, 2020 15:37
Using Burp Collaborator to get internal IP to check for SSRF
- Open Burp Collaborator
- Click on
Generate- this will copy a collaborator hostname to your clipboard - Paste the domain to any Link scanner
- Burp will do the polling and return DNS/HTTP results.
- Get the IP(s) from the HTTP results
- Do a whois check
- If registrant states the owner of the company, it is likely an internal IP
- Put it into your Link scanner
- Pray it doesn't return 500 and you might have gotten an SSRF!
Isopach
/ community-predictions-20200601.sh
Created
June 1, 2020 21:08
DotA2 Community Predictions using OpenDota API
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl 'https://api.opendota.com/api/findMatches?teamA=21&teamA=23&teamA=16&teamA=40&teamA=35&teamB=44&teamB=56&teamB=71&teamB=26&teamB=5' \ | |
| > -H 'authority: api.opendota.com' \ | |
| > -H 'user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.138 Safari/537.36' \ | |
| > -H 'accept: */*' \ | |
| > -H 'origin: https://www.opendota.com' \ | |
| > -H 'sec-fetch-site: same-site' \ | |
| > -H 'sec-fetch-mode: cors' \ | |
| > -H 'sec-fetch-dest: empty' \ | |
| > -H 'referer: https://www.opendota.com/combos?teamA=21&teamA=23&teamA=16&teamA=40&teamA=35&teamB=44&teamB=56&teamB=71&teamB=26&teamB=5&queryType=public' \ | |
| > -H 'accept-language: en-US;q=0.9,en;q=0.7,zh-CN;q=0.6,zh;q=0.5' \ |
- Download ossutil
- Run it with
configset the access token and secret from your alibaba account (top right >> AccessKey) - Do
./ossutil ls oss://hostname
Hostname is the bolded part only!
abcdefg.oss-ap-northeast-1.aliyuncs.com