Skip to content

Instantly share code, notes, and snippets.

View tr7zw's full-sized avatar
:octocat:
git commit -am "some changes" (+647, -1049)

tr7zw tr7zw

:octocat:
git commit -am "some changes" (+647, -1049)
176 followers · 16 following
View GitHub Profile
@hackermondev
hackermondev / zendesk.md
Last active May 3, 2025 05:23
1 bug, $50,000+ in bounties, how Zendesk intentionally left a backdoor in hundreds of Fortune 500 companies

hi, i'm daniel. i'm a 15-year-old with some programming experience and i do a little bug hunting in my free time. here's the insane story of how I found a single bug that affected over half of all Fortune 500 companies:

say hello to zendesk

If you've spent some time online, you’ve probably come across Zendesk.

Zendesk is a customer service tool used by some of the world’s top companies. It’s easy to set up: you link it to your company’s support email (like [email protected]), and Zendesk starts managing incoming emails and creating tickets. You can handle these tickets yourself or have a support team do it for you. Zendesk is a billion-dollar company, trusted by big names like Cloudflare.

Personally, I’ve always found it surprising that these massive companies, worth billions, rely on third-party tools like Zendesk instead of building their own in-house ticketing systems.

your weakest link

@FxMorin
FxMorin / ScummyMods.md
Last active July 20, 2024 16:22 — forked from kyrptonaught/ScummyMods.md
The Scummy Behavior of mods that act like modpacks

Introduction

Let me start by clarifying that the following doesn't exclusively apply to Debugify, but they serve as an excellent illustration of the heinous behavior outlined in the following. The mods in question shall therefore be collectively referred to as "Scummy Mods".

Scummy Mods are mods that incorporate or outright copy foreign code bases, without permission from the original author. They commonly state to either "replace" or "include" the original work, if any mention is given at all. Developing a mod is not easy. Many mod creators sacrifice significant chunks of their personal time and resources to their creations, essentially for free. Curseforge offers a symbolic compensation for the hours poured, but it's usually insignificant and just a nice bonus.

The Problem

The majority of the original projects are still in development. Since the creators behind Scummy Mods typically do not understand the code they copied to begin with, they lack the knowledge required to eliminate the bugs that will

@happyzleaf
happyzleaf / build.gradle
Created December 11, 2018 11:00
Forge Mixins
buildscript {
repositories {
jcenter()
maven {
name = 'forge'
url = 'https://files.minecraftforge.net/maven'
}
maven {
url = 'http://repo.spongepowered.org/maven'
@MitchBarnett
MitchBarnett / saliensbot.js
Last active December 20, 2018 19:38
CEnemyManager.prototype.BuildEnemy = function(){};
(function(context) {
const app = gApp;
const GAME = gGame;
const SERVER = gServer;
const PLAYER = gPlayerInfo;
const TryContinue = function Continue() {