This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const fs = require('fs') | |
| const splitted = fs.readFileSync('./input.txt', 'utf-8').split(String.fromCharCode(0x0a)) | |
| function buildDictionary(splt) { | |
| let dict = [] | |
| splt.forEach((el, i) => { | |
| if (!el.length) { | |
| return | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const fs = require('fs') | |
| const splitted = fs.readFileSync('./input.txt', 'utf-8').split(String.fromCharCode(0x0a)) | |
| function buildDictionary(splt) { | |
| let dict = [] | |
| splt.forEach((el) => { | |
| if (el.length === 0) { | |
| return; | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Don't worry, it will be updated periodically. | |
| general control-flow-graph. | |
| -------------------- | |
| - normal binding step (ng-bind or '{{ }}') | |
| - start | |
| - mutate existing DOM element with angular.element (see last line of uncompressed source code) | |
| - in 'bind:', check if event.preventDefault is set to 'false', then assign callback | |
| which set event.returnValue = false (in IE) in event.preventDefault | |
| - in 'bind:', check if event.stopPropagation is set to 'false', then assign callback |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| (1) Lab: Reflected XSS into HTML context with nothing encoded | |
| -------------------- | |
| solution: <script>alert(1)</script> | |
| -------------------- | |
| (2) Lab: Reflected XSS into HTML context with most tags and attributes blocked | |
| -------------------- | |
| -------------------- | |
| allowed global DOM tags |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [no protection] | |
| -------------------- | |
| <script>alert(1)</script> | |
| <script>alert(document.cookie)</script> | |
| <script>alert(navigator.userAgent)</script> | |
| -------------------- | |
| ['script' tag prohibition] | |
| -------------------- | |
| <img src=x onerror=alert(1)> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [function prologue] | |
| push {r11} -> push current value in r11 (frame pointer) to stack | |
| add r11, sp, #0 -> add value of stack pointer with 0 and move to r11 | |
| [function epilogue] | |
| add sp, r11, #0 -> add value of r11 register with 0 and move to sp | |
| pop {r11} -> pop current pushed value in function prologue back to r11 (frame pointer) | |
| bx lr -> branch and exchange to link regs. (same as 'ret' or 'retf' in intel 80386 arch) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "net" | |
| ) | |
| func main() { | |
| ip, err := net.ResolveIPAddr("ip", "127.0.0.1") |
plvhx
/ read_and_write.go
Created
April 24, 2020 14:38
io.ReadCloser and io.WriteCloser being wrapped together in io.TeeReader
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "errors" | |
| "fmt" | |
| "io" | |
| "io/ioutil" | |
| "log" | |
| ) |
plvhx
/ read_then_close.go
Created
April 19, 2020 14:08
slight implementation of io.Read and io.Close
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "errors" | |
| "fmt" | |
| "io" | |
| "sync/atomic" | |
| ) | |
| const ( |
plvhx
/ complete_and_probably_lame.go
Last active
April 18, 2020 15:10
complete (probably lame) implementation of io.Reader and io.Writer
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "io" | |
| "sync/atomic" | |
| ) | |
| type WriteStreamContract interface { | |
| io.Writer |