Skip to content

Instantly share code, notes, and snippets.

View graste's full-sized avatar

Steffen Gransow graste

110 followers · 616 following
View GitHub Profile
@albinowax
albinowax / race-condition-probe.java
Last active April 24, 2025 14:39
Race condition custom action for Burp Repeater
// This will use the single-packet attack for HTTP/2, and last-byte synchronisation for HTTP/1
int NUMBER_OF_REQUESTS = 10;
var reqs = new ArrayList<HttpRequest>();
for (int i = 0; i < NUMBER_OF_REQUESTS; i++) {
reqs.add(requestResponse.request());
}
var responses = api().http().sendRequests(reqs);
var codes = responses.stream().map(HttpRequestResponse::response).map(HttpResponse::statusCode).toList();
logging().logToOutput(codes);
@odrotbohm
odrotbohm / restbucks-stereotypes.adoc
Last active April 19, 2025 23:51
Sample rendering of Spring RESTBucks stereotype structure

Spring Modulith / jMolecules Stereotype Tree

Legend

■ – Application
□ – Module
○ – Named Interface
⊙ – Stereotype
@mhoye
mhoye / gist:dcc2c2febeba230ca7ceb25c970390a1
Last active April 22, 2025 22:07
uBlock Origin Bonus Content
# The list below is my current set of uBlock Origin additions.
# My criteria are basically, if I think a page is slow I look at
# the network tab in devtools, and if I see many megabytes of
# javascript shimmed in there I block the server delivering it.
# If that changes literally nothing that I see or care about, I
# add it to the list.
# This breaks (most) youtube embeds, the "log in with google"
# popup, and twitter/facebook entirely. It also presents some
# usability problems with Google sites (gdocs, etc) that I decided
@galvao
galvao / docker.outage.sh
Created April 6, 2025 18:13
Can't connect to docker socket after power outage?
sudo systemctl stop docker && \
docker context use default && \
sudo systemctl start docker
@parrot409
parrot409 / writeup.md
Last active April 24, 2025 14:40
CVE-2025-3155 writeup - Affecting Ubuntu distros

Details

Intro

CVE-2025-3155 affects Yelp which is The Gnome's user help application. It's installed by default on Ubuntu desktop.

what is a scheme

A URI scheme is the part of a Uniform Resource Identifier (URI) that identifies a protocol or a specific application (steam://run/1337) that should handle the resource identified by the URI. It's the part that comes before the colon (://).

@jze
jze / email.md
Created March 6, 2025 16:00
Schreiben an Kommune

Sehr geehrte Damen und Herren,

Name der Kommune ist in Sachen Social Media auf Facebook und Instagram aktiv. Insbesondere im Hinblick auf die letzten Entwicklungen in den USA im Allgemeinen und Meta im Speziellen finde ich es problematisch, Bürgerinnen und Bürger diesem Konzern in die Arme zu treiben. Ohne einen Account dort hat man es deutlich schwerer, mit aktuellen Meldungen versorgt zu werden.

Es gibt aber eine einfache Möglichkeit, der Umklammerung der Konzerne zu entkommen: der Mastodon-Server des Landes. Damit ist man Teil des

@knudmoeller
knudmoeller / 20250213-dataset_with_resources_fisbriker.berlin.de.txt
Created February 13, 2025 21:30
Datasets with resources in fbinter.stadt-berlin.de (but not in gdi.berlin.de)
https://daten.berlin.de/datensaetze/20-grune-hauptwege-wanderkarte-wfs-99a22ff0
https://daten.berlin.de/datensaetze/20-grune-hauptwege-wanderkarte-wms-1f028343
https://daten.berlin.de/datensaetze/3d-gebaudemodelle-im-level-of-detail-1-lod-1-atom-e2a1e24e
https://daten.berlin.de/datensaetze/3d-gebaudemodelle-im-level-of-detail-2-lod-2-atom-3c7c49af
https://daten.berlin.de/datensaetze/3d-gebaudemodelle-im-level-of-detail-2-lod-2-wms-f2a8a483
https://daten.berlin.de/datensaetze/abstellflachen-fur-mikromobilitatsangebote-wfs-6185b5fb
https://daten.berlin.de/datensaetze/abstellflachen-fur-mikromobilitatsangebote-wms-e45c2176
https://daten.berlin.de/datensaetze/adressen-berlin-wfs-634ab8ba
https://daten.berlin.de/datensaetze/adressen-berlin-wms-130748fb
https://daten.berlin.de/datensaetze/adressen-im-inspire-datenmodell-atom-3bd15407
@knudmoeller
knudmoeller / 20250213-dataset_with_resources_gdi.berlin.de.txt
Created February 13, 2025 16:10
Datasets with resources in gdi.berlin.de
https://daten.berlin.de/datensaetze/abstellflachen-fur-mikromobilitatsangebote-wfs-6185b5fb
https://daten.berlin.de/datensaetze/abstellflachen-fur-mikromobilitatsangebote-wms-e45c2176
https://daten.berlin.de/datensaetze/adressen-berlin-wfs-634ab8ba
https://daten.berlin.de/datensaetze/adressen-berlin-wms-130748fb
https://daten.berlin.de/datensaetze/adressen-im-inspire-datenmodell-wms-ee802686
https://daten.berlin.de/datensaetze/adressen-regionales-bezugssystem-rbs-wfs-c43966c4
https://daten.berlin.de/datensaetze/adressen-regionales-bezugssystem-rbs-wms-d1c67d30
https://daten.berlin.de/datensaetze/afis-berlin-wfs-1408ef18
https://daten.berlin.de/datensaetze/afis-berlin-wms-c4897b9f
https://daten.berlin.de/datensaetze/alkis-berlin-bezirke-wfs-ced31d7d
@sleaze
sleaze / ente-io__ente__migration-guides__authy.md
Created December 19, 2024 17:50
Backup of auth.md from https://github.com/ente-io/ente/ @ 2024-03-01

Migrating from Authy

A guide written by Green, an ente.io lover

Migrating from Authy can be tiring, as you cannot export your 2FA codes through the app, meaning that you would have to reconfigure 2FA for all of your accounts for your new 2FA authenticator. But do not fear, as there is a much simpler way to migrate from Authy to ente!

A user on GitHub has written a guide to export our data from Authy (morpheus on Discord found this and showed it to us), so we are going to be using that for the migration.

Exporting from Authy

@galvao
galvao / Hydrator.js
Created November 17, 2024 19:15
A simple Hydrator in JS (ES6)
"use strict";
class Hydrator
{
#immutable;
fromEntity;
toEntity;
constructor (fromEntity, toEntity, lazy = true, immutable = true)