A Pen by freeCodeCamp.org on CodePen.
T0NG-J
/ fcc-technical-documentation-page.markdown
Created
August 2, 2020 13:58
FCC: Technical Documentation Page
T0NG-J
/ CVE-2023-41892-POC.md
Created
February 22, 2024 15:08
— forked from to016/CVE-2023-41892-POC.md
CVE-2023-41892 (Craft CMS Remote Code Execution) - POC [HTB] Surveillance
This Gist provides a Proof-of-Concept (POC) for CVE-2023-41892, a Craft CMS vulnerability that allows Remote Code Execution (RCE).
CVE-2023-41892 is a security vulnerability discovered in Craft CMS, a popular content management system. Craft CMS versions affected by this vulnerability allow attackers to execute arbitrary code remotely, potentially compromising the security and integrity of the application.
This POC is depending on writing webshell, so finding a suitable folder with writable permission is necessary.
T0NG-J
/ gist:951cc962236d354b23dc93941ecedf14
Created
April 19, 2024 16:21
Tonggy tmux configuration file backup
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set -g mouse on | |
| #set-window-option -g mode-keys vi | |
| #set -g status-keys vi | |
| #tmux copy vi mode | |
| setw -g mode-keys vi | |
| set -g @tmux_power_user_icon '㉿' |
T0NG-J
/ gist:4bf7ca59ea06cbb7e1e9e0360548cdd9
Created
August 13, 2024 12:09
android14-move-certs.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Create a separate temp directory, to hold the current certificates | |
| # Otherwise, when we add the mount we can't read the current certs anymore. | |
| mkdir -p -m 700 /data/local/tmp/tmp-ca-copy | |
| # Copy out the existing certificates | |
| cp /apex/com.android.conscrypt/cacerts/* /data/local/tmp/tmp-ca-copy/ | |
| # Create the in-memory mount on top of the system certs folder | |
| mount -t tmpfs tmpfs /system/etc/security/cacerts |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Backup the existing system certificates to the user certs folder | |
| cp /system/etc/security/cacerts/* /data/misc/user/0/cacerts-added/ | |
| # Create the in-memory mount on top of the system certs folder | |
| mount -t tmpfs tmpfs /system/etc/security/cacerts | |
| # copy all system certs and our user cert into the tmpfs system certs folder | |
| cp /data/misc/user/0/cacerts-added/* /system/etc/security/cacerts/ | |
| # Fix any permissions & selinux context labels |