| Title | Description
Thomas Vendetta thomasv314
stevenringo
/ reinvent-2017-youtube.md
Created
December 3, 2017 23:01
Links to YouTube recordings of AWS re:Invent 2017 sessions
EdOverflow
/ github_bugbountyhunting.md
Last active
November 8, 2024 20:13
My tips for finding security issues in GitHub projects.
GitHub repositories can disclose all sorts of potentially valuable information for bug bounty hunters. The targets do not always have to be open source for there to be issues. Organization members and their open source projects can sometimes accidentally expose information that could be used against the target company. in this article I will give you a brief overview that should help you get started targeting GitHub repositories for vulnerabilities and for general recon.
You can just do your research on github.com, but I would suggest cloning all the target's repositories so that you can run your tests locally. I would highly recommend @mazen160's GitHubCloner. Just run the script and you should be good to go.
$ python githubcloner.py --org organization -o /tmp/output
dennisfaust
/ sidekiq_unique_jobs_hash_compactor.rb
Created
July 12, 2017 20:46
sidekiq-unique-jobs gem not deleting expired keys in its uniquejobs hash
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # https://github.com/mhenrixon/sidekiq-unique-jobs/issues/161 | |
| # Even worse: https://github.com/mhenrixon/sidekiq-unique-jobs/issues/234 | |
| class SidekiqUniqueJobsHashCompactor | |
| include Sidekiq::Worker | |
| sidekiq_options queue: "slow" | |
| def perform | |
| # Skip if there are jobs queued... | |
| return unless Sidekiq::Queue.all.select { |q| q.size > 100 }.blank? |
joho
/ staff_development.md
Created
April 20, 2016 05:38
Follow on resources from a work talk I gave related to developing staff.
Guiding frameworks
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # The "tmuxifier" | |
| # Execute parallel processes in an arbitrary number of tmux panes | |
| # This script requires the path to an existing script to | |
| # execute in parallel. Optionally, the number of threads to | |
| # and the name of the tmux session can be input. If threads | |
| # and session name are not entered, threads are determined | |
| # automatically and session names is set to a default. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| INTRO | |
| I get asked regularly for good resources on AWS security. This gist collects some of these resources (docs, blogs, talks, open source tools, etc.). Feel free to suggest and contribute. | |
| Short Link: http://tiny.cc/awssecurity | |
| Official AWS Security Resources | |
| * Security Blog - http://blogs.aws.amazon.com/security/ | |
| * Security Advisories - http://aws.amazon.com/security/security-bulletins/ | |
| * Security Whitepaper (AWS Security Processes/Practices) - http://media.amazonwebservices.com/pdf/AWS_Security_Whitepaper.pdf | |
| * Security Best Practices Whitepaper - http://media.amazonwebservices.com/AWS_Security_Best_Practices.pdf |
mttdffy
/ unvalidate.rb
Last active
November 17, 2017 19:59
RoR/Mongoid module for removing validations from a model
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| module Mongoid | |
| module Unvalidate | |
| extend ActiveSupport::Concern | |
| module ClassMethods | |
| # Removes specified validations from existing models for a given field | |
| # | |
| # @param [Symbol] field the field to remove validations from | |
| # @param [Array<Symbol> | Symbol] validations validations to remove from field |
DavidWittman
/ hipchat-relay.go
Last active
May 10, 2016 14:37
Room-to-room message relay for Hipchat, with support across accounts.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "flag" | |
| "fmt" | |
| "github.com/andybons/hipchat" | |
| "log" | |
| "os" | |
| "path" | |
| "strings" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Updated for Ruby 2.3 | |
| string_t = None | |
| def get_rstring(addr): | |
| s = addr.cast(string_t.pointer()) | |
| if s['basic']['flags'] & (1 << 13): | |
| return s['as']['heap']['ptr'].string() | |
| else: | |
| return s['as']['ary'].string() |
XVilka
/ TrueColour.md
Last active
October 29, 2024 09:43
True Colour (16 million colours) support in various terminal applications and terminals
THIS GIST WAS MOVED TO TERMSTANDARD/COLORS REPOSITORY.
PLEASE ASK YOUR QUESTIONS OR ADD ANY SUGGESTIONS AS A REPOSITORY ISSUES OR PULL REQUESTS INSTEAD!
NewerOlder