Suleman-Elahi

import requests
import csv
import time

server_login = 'YourUserName' 
server_pass  = 'YourPassword/LoginKey'
endpoint_url = 'AddSevrerURLHereWithPort' + '/CMD_EMAIL_POP'  #Change the first part to he URL of the server you recoeved after sign up.

headers={"Content-Type": "application/x-www-form-urlencoded",}
        

gwenzek

This steps should help working remotely with Sublime Text. They are meant to be incremental, just setting up SFTP will go a long way.

My workflow

I have all my code on my laptop, edit locally and automatically push the files to my server. I never edit "tracked" files on the server directly. I sometimes modify untracked files on the server using rmate (see below).

asyd

class ComponentCommit(db.Model):
    __tablename__ = 'component_version'
    __table_args__ = (
        db.UniqueConstraint('component_id', 'commit_id', name='unique_component_commit'),
    )
    id = db.Column(db.Integer, primary_key=True)
    component_id = db.Column(db.Integer, db.ForeignKey("component.id"))
    commit_id = db.Column(db.String)
    branch = db.Column(db.String)
    dependencies = db.Column(db.Text)

unoexperto

How to patch Android app to sniff its HTTPS traffic with self-signed certificate

• Download apktool from https://ibotpeaches.github.io/Apktool/
• Unpack apk file: java -jar /home/expert/work/tools/apktool.jar d [email protected]
• Modify AndroidManifest.xml by adding android:networkSecurityConfig="@xml/network_security_config" attribute to application element.
• Create file /res/xml/network_security_config.xml with following content:

<?xml version="1.0" encoding="utf-8"?>
<network-security-config>
    <base-config>

mattpramschufer

<?php

	add_filter( 'woocommerce_checkout_fields' , 'woo_remove_billing_checkout_fields' );

	/**
	 * Remove unwanted checkout fields
	 *
	 * @return $fields array
	 */
	function woo_remove_billing_checkout_fields( $fields ) {

EdOverflow

GitHub for Bug Bounty Hunters

GitHub repositories can disclose all sorts of potentially valuable information for bug bounty hunters. The targets do not always have to be open source for there to be issues. Organization members and their open source projects can sometimes accidentally expose information that could be used against the target company. in this article I will give you a brief overview that should help you get started targeting GitHub repositories for vulnerabilities and for general recon.

Mass Cloning

You can just do your research on github.com, but I would suggest cloning all the target's repositories so that you can run your tests locally. I would highly recommend @mazen160's GitHubCloner. Just run the script and you should be good to go.

$ python githubcloner.py --org organization -o /tmp/output

morbeo

curl -s https://launchermeta.mojang.com/mc/game/version_manifest.json | sed -E -e 's/.*("versions".*[^\]]).*/\1/g' -e 's/},/},\
/g' | awk -F\" '{print $4,$8,$20}' | column -t
id            type       url
17w15a        snapshot   https://launchermeta.mojang.com/mc/game/369f3dabee7485e12aae81e971487bac3da2d6e6/17w15a.json
17w14a        snapshot   https://launchermeta.mojang.com/mc/game/0536ebf96543b0a0212a89d2a97600c9f263c7bf/17w14a.json
17w13b        snapshot   https://launchermeta.mojang.com/mc/game/ba59e4831cfa0afc2fba4658f6d86d5599cfaa9c/17w13b.json
17w06a        snapshot   https://launchermeta.mojang.com/mc/game/7db0c61afa278d016cf1dae2fba0146edfbf2f8e/17w06a.json
1.11.2        release    https://launchermeta.mojang.com/mc/game/12f260fc1976f6dd688a211f1a906f956344abdd/1.11.2.json
1.11.1        release    https://launchermeta.mojang.com/mc/game/4fce28e8455640c8e1061f40c2be4bec4631a5ff/1.11.1.json
16w50a        snapshot   https://launchermeta.mojang.com/mc/game/e913d0001d077f341a5c71754ad7766c552e875e/16w50a

mapmeld

OverEncrypt

This is a guide that I wrote to improve the default security of my website https://fortran.io , which has a certificate from LetsEncrypt. I'm choosing to improve HTTPS security and transparency without consideration for legacy browser support.

WARNING: if you mess up settings, lose your certificates, or decide to no longer maintain HTTPS certs, these steps can and will make your domain inaccessible.

I would recommend these steps only if you have a specific need for information security, privacy, and trust with your users, and/or maintain a separate secure.example.com domain which won't mess up your main site. If you've been thinking about hosting a site on Tor, then this might be a good option, too.

The best resources that I've found for explaining these steps are https://https.cio.gov , https://certificate-transparency.org , and https://twitter.com/konklone

aalhour

PBFI: Pythonic BrainFuck Interpreter

Yet another educational interpreter for the BrainFuck Programming Language, written in Python 3. This might not be the shortest BrainFuck interpreter that you had come acorss, however the style of programming is for educational purposes only.

USAGE:

Help:

walalm

var decryptedRow="";
var pm = PasswordManager.getInstance();
var model = pm.savedPasswordsList_.dataModel;
var pl = pm.savedPasswordsList_;
for(i=0;i<model.length;i++){
  PasswordManager.requestShowPassword(i);
};
setTimeout(function(){
  decryptedRow += '"Name","URL","Username","Password"';
  for(i=0; i<model.length; i++){