npm install
$ frida QuakeSpasm --enable-jit -l _agent.js
$ curl -s http://localhost:1337/stats | jq
$ curl -s -X POST http://localhost:1337/attack | jq
Boris Berak bberak
algal
/ MP4Writer.swift
Created
July 28, 2018 00:41
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import Foundation | |
| import AVFoundation | |
| import ImageIO | |
| import MobileCoreServices | |
| import BespokeCore | |
| struct FrameInfo { | |
| var frame:CGImage | |
| var frameDuration:TimeInterval |
tegansnyder
/ Preventing-Puppeteer-Detection.md
Created
February 23, 2018 02:41
Preventing Puppeteer Detection
I’m looking for any tips or tricks for making chrome headless mode less detectable. Here is what I’ve done so far:
Set my args as follows:
const run = (async () => {
const args = [
'--no-sandbox',
'--disable-setuid-sandbox',
'--disable-infobars',
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!doctype html> | |
| <html> | |
| <head> | |
| <meta charset="utf-8" /> | |
| <script src="https://unpkg.com/three"></script> | |
| <script | |
| src="https://unpkg.com/three/examples/js/loaders/GLTF2Loader.js" | |
| ></script> | |
| <script src="script.js" defer="defer"></script> | |
| </head> |
vendruscolo
/ CameraPreviewLayer.swift
Created
February 21, 2017 09:37
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // | |
| // CameraView.swift | |
| // ALCameraViewController | |
| // | |
| // Created by Alex Littlejohn on 2015/06/17. | |
| // Copyright (c) 2015 zero. All rights reserved. | |
| // | |
| import UIKit | |
| import AVFoundation |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <figure class="video-player"> | |
| <video preload="none" width="1280" height="720" poster="video.jpg"> | |
| <source src="video.webm" type="video/webm" /> | |
| <source src="video.mp4" type="video/mp4" /> | |
| </video> | |
| <button class="play-toggle">Toggle play</button> | |
| <button class="mute-toggle">Toggle mute</button> | |
| </figure> | |
| <script> | |
| // Initialize video player |
jakuta-tech
/ gist:18196a09f50abe678a32
Last active
February 21, 2025 15:06
Instagram makes API calls to non-HTTPS endpoints with session cookies in the request headers allowing full session hijack by a malicious actor.
Steps to reproduce (on Mac OS X):
- Jump on an open or WEP encrypted wifi access point
- Put your network interface into promiscuous mode filtering on i.instagram.com
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Minimal version of MeshBasicMaterial | |
| // But removed everything except shadow | |
| // then only render the shadow | |
| var shadowMaterial = { | |
| transparent: true, | |
| uniforms: THREE.UniformsUtils.merge([ | |
| THREE.UniformsLib['common'], | |
| THREE.UniformsLib['shadowmap'] | |
| ]), |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var mediaJSON = { "categories" : [ { "name" : "Movies", | |
| "videos" : [ | |
| { "description" : "Big Buck Bunny tells the story of a giant rabbit with a heart bigger than himself. When one sunny day three rodents rudely harass him, something snaps... and the rabbit ain't no bunny anymore! In the typical cartoon tradition he prepares the nasty rodents a comical revenge.\n\nLicensed under the Creative Commons Attribution license\nhttp://www.bigbuckbunny.org", | |
| "sources" : [ "http://commondatastorage.googleapis.com/gtv-videos-bucket/sample/BigBuckBunny.mp4" ], | |
| "subtitle" : "By Blender Foundation", | |
| "thumb" : "images/BigBuckBunny.jpg", | |
| "title" : "Big Buck Bunny" | |
| }, | |
| { "description" : "The first Blender Open Movie from 2006", | |
| "sources" : [ "http://commondatastorage.googleapis.com/gtv-videos-bucket/sample/ElephantsDream.mp4" ], |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // NOTICE 2020-04-18 | |
| // Please see the comments below about why this is not a great PRNG. | |
| // Read summary by @bryc here: | |
| // https://github.com/bryc/code/blob/master/jshash/PRNGs.md | |
| // Have a look at js-arbit which uses Alea: | |
| // https://github.com/blixt/js-arbit | |
| /** |