Skip to content

Instantly share code, notes, and snippets.

View ebertek's full-sized avatar

David Ebert ebertek

10 followers · 27 following
View GitHub Profile
@jerome-labidurie
jerome-labidurie / HALegoTrain.ino
Last active May 5, 2024 19:21
Lego PoweredUp control from HomeAssistantt
/**
* Lego (Powered Up) train control from Home Assistant / MQTT with BellRing
*
* Licence: GPLv3
*
* needed libraries:
* legoino https://github.com/corneliusmunz/legoino
* > 1.1.0, tested with commit 4daae4f683b087b8c443a4c813934e3dfff41d69
* home-assistant-integration https://github.com/dawidchyrzynski/arduino-home-assistant
* 1.3.0
@EdOverflow
EdOverflow / github_bugbountyhunting.md
Last active August 3, 2024 14:38
My tips for finding security issues in GitHub projects.

GitHub for Bug Bounty Hunters

GitHub repositories can disclose all sorts of potentially valuable information for bug bounty hunters. The targets do not always have to be open source for there to be issues. Organization members and their open source projects can sometimes accidentally expose information that could be used against the target company. in this article I will give you a brief overview that should help you get started targeting GitHub repositories for vulnerabilities and for general recon.

Mass Cloning

You can just do your research on github.com, but I would suggest cloning all the target's repositories so that you can run your tests locally. I would highly recommend @mazen160's GitHubCloner. Just run the script and you should be good to go.

$ python githubcloner.py --org organization -o /tmp/output
@pudquick
pudquick / gist:8307185
Last active July 5, 2016 13:18
Workflow for editing the index.xml in a iBooks Author .iba file without issues
@aras-p
aras-p / preprocessor_fun.h
Last active September 8, 2024 07:43
Things to commit just before leaving your job
// Just before switching jobs:
// Add one of these.
// Preferably into the same commit where you do a large merge.
//
// This started as a tweet with a joke of "C++ pro-tip: #define private public",
// and then it quickly escalated into more and more evil suggestions.
// I've tried to capture interesting suggestions here.
//
// Contributors: @r2d2rigo, @joeldevahl, @msinilo, @_Humus_,
// @YuriyODonnell, @rygorous, @cmuratori, @mike_acton, @grumpygiant,
@madbence
madbence / bme.js
Created April 5, 2013 16:08
var net = require('net');
net.createServer(function(sock) {
console.log('rikveszt!');
var start = new Date().getTime();
var payload = '';
for (var i = 0; i < 10000; i++) {
payload += 'LoL';
}
var j = 0;
@brandonb927
brandonb927 / osx-for-hackers.sh
Last active September 8, 2024 11:59
OSX for Hackers: Yosemite/El Capitan Edition. This script tries not to be *too* opinionated and any major changes to your system require a prompt. You've been warned.
#!/bin/sh
###
# SOME COMMANDS WILL NOT WORK ON macOS (Sierra or newer)
# For Sierra or newer, see https://github.com/mathiasbynens/dotfiles/blob/master/.macos
###
# Alot of these configs have been taken from the various places
# on the web, most from here
# https://github.com/mathiasbynens/dotfiles/blob/5b3c8418ed42d93af2e647dc9d122f25cc034871/.osx