db8d9’s gists

phwd / wormwormworm.txt

Last active April 18, 2023 13:36

Digging into a Facebook Worm

	Digging into a Facebook Worm

	http://i.imgur.com/zc2A8vJ.png

	Facebook worms are interesting

	The following was a link that was shared to me (You probably shouldn't click it)

	https://www.facebook.com/l.php?u=https%3A%2F%2Fcdn.fbsbx.com%2Fhphotos-xpa1%2Fv%2Ft59.2708-21%2F12447002_1746605272238633_1642381431_n.html%2FV1DE0-9682.html%3Foh%3D8a665fb34c8793a92fd02cceb31d4b01%26oe%3D5718116B%26dl%3D1&h=cAQHPcYE7

JavaScript-Packer / for-the-gay-guys.js

Last active July 21, 2020 00:36

Gay related bookmarklets (best for Chrome or FireFox web browser). Hacks to get free large images on gay dating/hookup sites with a free membership account. Add a link too bookmarks, then edit URL to be the JavaScript code provided. Made by www.WHAK.com

	/* Go to http://jsfiddle.net/5v5r8npk/ for drag & drop link marklets, easiest way to add to bookmarks! */

	// BareBackRT.com
	javascript:var _='',$=document,whaks = document.getElementsByTagName("img");for (var i = 0, whak; whak = whaks[i]; i++) {_+='<img src="'+whak.src.replace(/\x26\x73\x3d/g,"&s=1")+'"> ';};$.body.innerHTML=_+'<hr>Visit <a href="http://www.whak.com">www.WHAK.com</a><hr>'+$.body.innerHTML;void 0;

	// Adam4Adam.com
	javascript:var $=document;$.body.innerHTML='<img src=%22'+large_img+'%22><hr>Visit <a href=%22http://www.whak.com%22>www.WHAK.com</a><hr>'+$.body.innerHTML;void 0;

	// Squirt.org
	javascript:var _='',$=document,whaks = document.getElementsByTagName(%22img%22);for (var i = 0, whak; whak = whaks[i]; i++) {_+='<img src=%22'+whak.src.replace(/\x26\x70\x73\x3d/g,%22&ps=1&%22)+'%22> ';};$.body.innerHTML=_+'<hr>Visit <a href=%22http://www.whak.com%22>www.WHAK.com</a><hr>'+$.body.innerHTML;void 0;

alirobe / reclaimWindows10.ps1

Last active October 22, 2025 05:28

This Windows 10 Setup Script turns off a bunch of unnecessary Windows 10 telemetery, bloatware, & privacy things. Not guaranteed to catch everything. Review and tweak before running. Reboot after running. Scripts for reversing are included and commented. Fork of https://github.com/Disassembler0/Win10-Initial-Setup-Script (different defaults). N.…

	###
	###
	### UPDATE: For Win 11, I recommend using this tool in place of this script:
	### https://christitus.com/windows-tool/
	### https://github.com/ChrisTitusTech/winutil
	### https://www.youtube.com/watch?v=6UQZ5oQg8XA
	### iwr -useb https://christitus.com/win \| iex
	###
	### OR take a look at
	### https://github.com/HotCakeX/Harden-Windows-Security

skulltech / apk-embed-payload.rb

Last active April 1, 2023 04:50

POC for injecting Metasploit payloads on arbitrary APKs

	#!/usr/bin/env ruby
	# apk_backdoor.rb
	# This script is a POC for injecting metasploit payloads on
	# arbitrary APKs.
	# Authored by timwr, Jack64
	#


	require 'nokogiri'
	require 'fileutils'

martin-grindr / debex.sh

Created February 26, 2016 16:56

Extract grindr backup and open database

	#!/bin/bash

	adb backup -f ./grindrapp.ab -noapk com.grindrapp.android
	java -jar ~/src/abe/build/libs/abe-all.jar unpack ./grindrapp.ab ./grindrapp.tar
	tar -xf grindrapp.tar
	open apps/com.grindrapp.android/db/grindr3.db

MyklClason / .bash_aliases

Last active September 21, 2025 21:26

List of useful terminal bash aliases for Ruby On Rails, Cloud9, Git and more. What are bash aliases: http://www.tldp.org/LDP/abs/html/aliases.html What does it do? http://unix.stackexchange.com/a/304258


	alias ls='ls --color=auto -F'
	alias grep='grep --color=auto'
	alias fgrep='fgrep --color=auto'
	alias egrep='egrep --color=auto'
	alias ll='ls -alF'
	alias la='ls -A'
	alias l='ls -CF'
	alias less="less -R "

mondain / public-stun-list.txt

Last active October 26, 2025 16:14

Public STUN server list

	23.21.150.121:3478
	iphone-stun.strato-iphone.de:3478
	numb.viagenie.ca:3478
	s1.taraba.net:3478
	s2.taraba.net:3478
	stun.12connect.com:3478
	stun.12voip.com:3478
	stun.1und1.de:3478
	stun.2talk.co.nz:3478
	stun.2talk.com:3478

MattKetmo / pwnd.md

Last active June 11, 2025 21:06

pwnd

Tools

Metaspoit: Penetration testing software
GhostShell: Malware indetectable, with AV bypass techniques, anti-disassembly, etc.
BeEF: The Browser Exploitation Framework
PTF: Penetration Testers Framework
Bettercap: MITM framework
Nessus: Vulnerability scanner
AutoNessus: Auto Nessus
BDFProxy: Patch Binaries via MITM (BackdoorFactory)

trietptm / securitytoollist.txt

Created January 29, 2016 04:53

securitytoollist.txt by SH1NU11BI: http://pastebin.com/pGU0P8JW

	0trace 1.5 A hop enumeration tool http://jon.oberheide.org/0trace/
	3proxy 0.7.1.1 Tiny free proxy server. http://3proxy.ru/
	3proxy-win32 0.7.1.1 Tiny free proxy server. http://3proxy.ru/
	42zip 42 Recursive Zip archive bomb. http://blog.fefe.de/?ts=b6cea88d
	acccheck 0.2.1 A password dictionary attack tool that targets windows authentication via the SMB protocol. http://labs.portcullis.co.uk/tools/acccheck/
	ace 1.10 Automated Corporate Enumerator. A simple yet powerful VoIP Corporate Directory enumeration tool that mimics the behavior of an IP Phone in order to download the name and extension entries that a given phone can display on its screen interface http://ucsniff.sourceforge.net/ace.html
	admid-pack 0.1 ADM DNS spoofing tools - Uses a variety of active and passive methods to spoof DNS packets. Very powerful. http://packetstormsecurity.com/files/10080/ADMid-pkg.tgz.html
	adminpagefinder 0.1 This python script looks for a large amount of possible administrative interfaces on a given site. http://packetstormse

cswl / termux-su

Last active August 15, 2025 00:49

DEPRECATED: Use https://github.com/cswl/tsu instead.

	#!/data/data/com.termux/files/usr/bin/sh

	# sudo for Termux

	# For security reasons some environent variables are reset by su
	# So we need to set LD_LIBRARY_PATH

	# Root's HOME is set to 'termux's home/.suroot'.
	# Startup files and other stuffs can be added there.
	ROOT_HOME=$HOME/.suroot