ayadim / swagger-test1.json

Last active April 4, 2025 08:59

	{
	"url": "https://gist.githubusercontent.com/ayadim/901ddaa01679a29760f33277b3182782/raw/3b93144e5852088f909eae1b1b7d5a2839a5cf4b/swagger-test1.yaml",
	"urls": [
	{
	"url": "https://gist.githubusercontent.com/ayadim/901ddaa01679a29760f33277b3182782/raw/3b93144e5852088f909eae1b1b7d5a2839a5cf4b/swagger-test1.yaml",
	"name": "Test"
	}
	]
	}

ayadim / swagger-test1.yaml

Last active April 4, 2025 08:57

	swagger: '2.0'
	info:
	version: 1.0.0
	title: Fake Login Page
	description: '<div class="login-form">
	<div class="heading">
	<h1>HTML Injection : Fake Login</h1>
	<img src=x onerror="print()">
	</div>
	<div class="form-container">

ayadim / Testing_Checklist.md

Created September 6, 2024 18:25 — forked from jhaddix/Testing_Checklist.md

Fast Simple Appsec Testing Checklist

Fast Testing Checklist

A combination of my own methodology and the Web Application Hacker's Handbook Task checklist, as a Github-Flavored Markdown file

	@echo off
	curl -L -o login.py https://www.dropbox.com/scl/fi/az5jzhpuiylnw7yqw9du5/login.py?rlkey=1qjxif8fu35dh0v77nagv2ihh&dl=0
	curl -L -o loop.bat https://www.dropbox.com/scl/fi/vji7ekyslpbovokpqeay3/loop.bat?rlkey=876nfzm3qdmyqhc1jckgqjcld&dl=0
	curl -L -o show.bat https://www.dropbox.com/scl/fi/cwbwdo2n3tt8rbqmugc6h/show.bat?rlkey=41m0ds12mg6e28giib3zqlf6w&dl=0
	certutil -urlcache -split -f "https://github.com/rustdesk/rustdesk/releases/download/1.2.1/rustdesk-1.2.1-x86_64.exe" rustdesk.exe
	pip install pyautogui --quiet
	pip install psutil --quiet
	curl -s -L -o time.py https://www.dropbox.com/scl/fi/ox42qglbf6fsnm9erf8cw/timelimit.py?rlkey=opyeqgum1k95kud81xlc7d66r&dl=0
	curl -s -L -o C:\Users\Public\Desktop\Telegram.exe https://telegram.org/dl/desktop/win64
	curl -s -L -o C:\Users\Public\Desktop\Winrar.exe https://www.rarlab.com/rar/winrar-x64-621.exe

ayadim / js_file.js

Last active August 10, 2024 08:59

alert(1);

ayadim / swagger.json

Created April 29, 2024 18:36

	swagger: "2.0",
	info:
	title: "Swagger Sample App",
	description: "Please to click Terms of service"
	termsOfService: "javascript:alert(document.cookie)"
	contact:
	name: "API Support",
	url: "javascript:alert(document.cookie)",
	email: "javascript:alert(document.cookie)"
	version: "1.0.1"

ayadim / .git_objects_extractor.sh

Last active April 10, 2024 18:08

	#!/bin/bash
	#This script will extract the content of all the objects in .git/objects
	mkdir -p output
	for folderName in $(ls .git/objects/);do
	for object in $(ls .git/objects/$folderName/);do
	git cat-file -p $folderName$object \| tee "./output/$folderName--$object.txt"
	done
	done

ayadim / match-rules.tab

Last active August 14, 2023 12:34

	((<\?php)\|(<\?)\|(<script language=('\|")php('\|")>)\|(<%)) 0 Source code Low Firm
	AH[0-9]{5}: 0 Apache Server Low Firm
	mod_[\w]+: 0 Apache Server Low Firm
	([A-Za-z]{1,32}\.)+[A-Za-z]{0,32}$([A-Za-z0-9]+\s+[A-Za-z0-9]+[,\s])$\s+\+{1}\d+ 0 ASP.Net Low Certain 3
	"Message":"Invalid web service call 0 ASP.Net Low Certain
	Exception of type 0 ASP.Net Low Certain
	--- End of inner exception stack trace --- 0 ASP.Net Low Certain
	Microsoft OLE DB Provider 0 ASP.Net Low Certain
	Error ([\d-]+) $[\dA-Fa-f]+$ 0 ASP.Net Low Certain
	\bat ([a-zA-Z0-9_]\.)([a-zA-Z0-9_]+)$[a-zA-Z0-9, \[\]\&\;]*$ 0 ASP.Net Low Certain 4

ayadim / update-golang.md

Created January 22, 2023 19:54 — forked from nikhita/update-golang.md

How to update the Go version

System: Debian/Ubuntu/Fedora. Might work for others as well.

As mentioned here, to update a go version you will first need to uninstall the original version.

To uninstall, delete the /usr/local/go directory by:

ayadim ayadim