Jacqueline L. jaml
jaml
/ cve-2019-1003000-jenkins-rce-poc noverify
Created
February 26, 2019 23:47
Disable SSL cert verification https://github.com/adamyordan/cve-2019-1003000-jenkins-rce-poc/blob/1a107e0f5f4cb4ba0c35e6f0ecce512257c66475/exploit.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- exploit.py 2019-02-26 18:43:27.142543504 -0500 | |
| +++ exploit_noverify.py 2019-02-26 18:45:43.523191756 -0500 | |
| @@ -10,6 +10,7 @@ | |
| import jenkins | |
| import time | |
| from xml.etree import ElementTree | |
| +import os | |
| payload = ''' | |
| import org.buildobjects.process.ProcBuilder |
jaml
/ hex to ascii
Created
March 9, 2015 18:37
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| # Takes a string from command line, strips spaces and hex delimiters, and returns ASCII equivalent | |
| # Usage example: | |
| # $ python hexconvert.py --hex "x6d\X79 X20 X73\x68\x65\x6c\x6c\x63\x6f\x64\x65" | |
| # my shellcode | |
| import sys, argparse |
jaml
/ PHP equal identical
Created
August 26, 2014 18:11
Stolen from http://stackoverflow.com/questions/80646/how-do-the-php-equality-double-equals-and-identity-triple-equals-comp
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // "===" means that they are identical | |
| // "==" means that they are equal | |
| // "!=" means that they aren't equal. | |
| false null array() 0 "0" 0x0 "0x0" "000" "0000" | |
| false === == == == == == != != != | |
| null == === == == != == != != != | |
| array() == == === != != != != != != | |
| 0 == == != === == === == == == | |
| "0" == != != == === == == == == |
jaml
/ gist:10436887
Last active
June 21, 2022 11:55
PHP explanation for <?=($_=@$_GET[2]).@$_($_GET[1])?>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?= PHP short opening tag | |
| ( | |
| $_ temporary variable | |
| = assignment (of temporary variable $_) | |
| @ suppress PHP errors | |
| $_GET[2] value corresponding to key 2 in array of values of HTTP GET (these are the arguments you see in a URL like ?argument1=foo&argument2=foo2) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Quick & dirty script for sign-in for instalfests | |
| while [ 1 ]; do | |
| while [ -z "$fname" ]; do | |
| echo "First Name: " | |
| read fname | |
| done | |
| while [ -z "$lname" ]; do |
jaml
/ testclient.c
Created
May 16, 2012 07:45
Simple IPv4 TCP client for diagnosing whether issues are with the proxy or the client (for CS118 project)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */ | |
| // CS118 - Project 1 | |
| #include <iostream> | |
| #include <string> | |
| #include <cstring> | |
| #include <stdio.h> | |
| // includes for socket, bind, connect, listen, accept, read, recv, write, send, | |
| //gethostbyname, Hostent, sockaddr_in, sockaddr | |
| #include <sys/types.h> |