Skip to content

Instantly share code, notes, and snippets.

View wildanzrrr's full-sized avatar
🏠
Working from home

Wildanzrrr wildanzrrr

🏠
Working from home
30 followers · 46 following
View GitHub Profile
@wildanzrrr
wildanzrrr / nodejs_upload_file1.js
Created March 24, 2023 09:07
// Import required dependencies
const express = require("express");
const multer = require("multer");
const path = require("path");
const fs = require("fs");
@wildanzrrr
wildanzrrr / nodejs_upload_file2.js
Last active April 3, 2023 07:40
// Specifies the file upload location
const diskStorage = multer.diskStorage({
destination: (req, file, cb) => {
cb(null, path.join(__dirname, "uploads"));
},
filename: (req, file, cb) => {
cb(
null,
`${file.fieldname}-${Date.now()}${path.extname(file.originalname)}`
);
@wildanzrrr
wildanzrrr / nodejs_upload_file3.js
Created March 24, 2023 09:29
const acceptedFileTypes = [
"image/jpeg",
"image/png",
"image/svg+xml",
"video/mp4",
"video/quicktime",
"video/webm",
"application/pdf",
"application/msword",
"application/vnd.openxmlformats-officedocument.wordprocessingml.document",
@wildanzrrr
wildanzrrr / nodejs_upload_file4.js
Last active April 3, 2023 07:38
// Create an express app
const PORT = 5000; // Best practice use environment variable
const HOST = "http://localhost"; // Best practice use environment variable
const app = express();
app.use(express.json());
app.post("/uploads", upload.single("file"), (req, res) => {
const file = req.file;
if (!file) {
@wildanzrrr
wildanzrrr / nodejs_email_oauth1.ts
Last active April 24, 2023 15:26
// import required dependencies
import dotenv from 'dotenv';
import nodemailer from 'nodemailer';
import { google } from 'googleapis';
const OAuth2 = google.auth.OAuth2;
// init dotenv
dotenv.config();
// get environment variables
@wildanzrrr
wildanzrrr / nodejs_email_oauth2.ts
Created April 24, 2023 15:26
// create OAuth2 client
const oauth2Client = new OAuth2(
OAUTH_CLIENT_ID,
OAUTH_CLIENT_SECRET,
'https://developers.google.com/oauthplayground'
);
// set refresh token
oauth2Client.setCredentials({
refresh_token: OAUTH_REFRESH_TOKEN
@wildanzrrr
wildanzrrr / nodejs_email_oauth3.ts
Created April 24, 2023 15:27
// create reusable transporter object using the default SMTP transport
const transporter = nodemailer.createTransport({
service: 'gmail',
auth: {
type: 'OAuth2',
user: OAUTH_EMAIL,
clientId: OAUTH_CLIENT_ID,
clientSecret: OAUTH_CLIENT_SECRET,
refreshToken: OAUTH_REFRESH_TOKEN,
accessToken: accessToken.toString()
@wildanzrrr
wildanzrrr / gist:5e3dfb40ae0bbcf6804ee8b066cf7956
Created August 21, 2024 11:12
589228529
@wildanzrrr
wildanzrrr / gist:961023caebc4b7902e60de4d088e9e3c
Created August 23, 2024 01:26
39533366
@wildanzrrr
wildanzrrr / base-x-rareskills-4.md
Last active December 13, 2024 17:12
Base x RareSkills ERC721 topic

In order to steals Alice NFT on the Game contract, there's some way to do that:

Using Fake Attacker NFT

Step to reproduce:

  1. This method will need Bob to deploy his own NFT (fake) and mint an NFT with the same id that Alice deposited to the Game contract.
  2. Then, Bob will transfer his NFT to the Game contract. This action will rewrite the mapping tokenId 10 to Bob's address.
  3. Next, Bob will call withdraw function on the Game contract. This action will success because the validation doing check by comparing originalOwner[tokenId] == msg.sender