ZephrFish

import requests
import sys
import urllib3

urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)


def quickWin(url, paths):
    with open(paths, 'r') as f:
        for path in f.read().splitlines():

ZephrFish

# Dir Checker
# Prints out URLs and Paths together
import itertools
import sys

def dirprint(urls, paths):
    x = open(urls).read().split("\n")
    y = open(paths).read().split("\n")
    for a, b in itertools.product(x, y):
        print("{}/{}".format(a, b))

ZephrFish

<html>
<head>
<link rel="stylesheet" type="text/css" href="css/bootstrap.min.css">
<link rel="stylesheet" type="text/css" href="css/custom.css">
<link rel="stylesheet" href="http://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css">
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.0/jquery.min.js"></script>
<script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"></script>
<title>Application Loader ZSEC-Net</title>
<style>
.ad-left {

ZephrFish

Keybase proof

I hereby claim:

• I am ZephrFish on github.
• I am zephrfish (https://keybase.io/zephrfish) on keybase.
• I have a public key whose fingerprint is FADA 204E 6BAE 1870 E42F D105 0DD0 B1CC 7DF5 ADC0

To claim this, I am signing this object:

ZephrFish

def escape_csv(payload):
    if payload[0] in ('@','+','-', '=', '|'):
            payload = "'" + payload
            payload = payload.replace("|", "\|")
    return payload

# Example
payload = "@cmd|' /C calc'!A0"
print("The Unescaped version is: " + payload)
print("When passed though escape function the value is: " + escape_csv(payload))

ZephrFish

### Keybase proof

I hereby claim:

  * I am ZephrFish on github.
  * I am zephrfish (https://keybase.io/zephrfish) on keybase.
  * I have a public key whose fingerprint is EC67 4DC5 F2F0 87E5 598B  B920 ED66 4E92 D071 41CA

To claim this, I am signing this object: