Discover gists

Discord app protocol routes

Home:

/: discord://-/
friends: discord://-/channels/@me/
nitro: discord://-/store
shop: discord://-/shop
message requests: discord://-/message-requests
family centre: discord://-/family-center

Título

Descrição do problema

Devemos explicar o problema claramente e identificar detalhes adicionais que a equipe precise saber. Devemos aqui descrever o contexto, o que foi feito até agora e o estado atual.

A descrição também serve como uma trilha à qual podemos voltar no futuro para entender o raciocínio que tínhamos na época e ver quais restrições e requisitos mudaram.

Possíveis abordagens

GitHub Search Syntax for Finding API Keys/Secrets/Tokens

As a security professional, it is important to conduct a thorough reconnaissance. With the increasing use of APIs nowadays, it has become paramount to keep access tokens and other API-related secrets secure in order to prevent leaks. However, despite technological advances, human error remains a factor, and many developers still unknowingly hardcode their API secrets into source code and commit them to public repositories. GitHub, being a widely popular platform for public code repositories, may inadvertently host such leaked secrets. To help identify these vulnerabilities, I have created a comprehensive search list using powerful search syntax that enables the search of thousands of leaked keys and secrets in a single search.

Search Syntax:

(path:*.{File_extension1} OR path:*.{File_extension-N}) AND ({Keyname1} OR {Keyname-N}) AND (({Signature/pattern1} OR {Signature/pattern-N}) AND ({PlatformTag1} OR {PlatformTag-N}))

Examples:

**1.

Generating session cookie

Enter Laravel Tinker

php artisan tinker

Authenticate

All-in-One WP Migration Restore From Server (without pro version)

If you don't want to pay for the PRO version of this plugin, and you want to use the "Restore from Server" functionally that was present in the version 6.77, follow the instructions below:

Open the js file: wp-content/plugins/all-in-one-wp-migration/lib/view/assets/javascript/backups.min.js
On line 1208, replace the code below:

$('.ai1wm-backup-restore').click(function (e) {

	import tiktoken
	import langdetect
	T = tiktoken.get_encoding("o200k_base")

	length_dict = {}

	for i in range(T.n_vocab):
	try:
	length_dict[i] = len(T.decode([i]))
	except:

	@(set "0=%~f0"^)#) & powershell -nop -c iex([io.file]::ReadAllText($env:0)) & exit /b
	#:: just copy-paste into powershell - it's a standalone hybrid script
	sp 'HKCU:\Volatile Environment' 'Edge_Removal' @'

	$also_remove_webview = 1
	## why also remove webview? because it is 2 copies of edge, not a slimmed down CEF, and is driving bloated web apps
	$also_remove_widgets = 1
	## why also remove widgets? because it is a webview glorified ad portal on msn and bing news cathering to stupid people
	$also_remove_xsocial = 1
	## why also remove xsocial? because it starts webview setup every boot - xbox gamebar will still work without the social crap

	import java.awt.event.ItemEvent;

	import javax.swing.*;

	public class MainGUI extends JFrame{

	public MainGUI(){
	setTitle("Main GUI");
	setDefaultCloseOperation(JFrame.EXIT_ON_CLOSE);
	setSize(400,300);

	using UnityEngine;
	using UnityEditor;
	using UnityEditor.SceneManagement;

	// Adds a "Edit Prefab" option in the Assets menu (or right clicking an asset in the project browser).
	// This opens an empty scene with your prefab where you can edit it.
	// Put this script in your project as Assets/Editor/EditPrefab.cs

	public class EditPrefab {
	static Object getPrefab(Object selection) {

	// SPDX-License-Identifier: MIT
	pragma solidity ^0.8.17;

	import "@openzeppelin/contracts/token/ERC20/ERC20.sol";

	contract SimpleToken is ERC20 {
	constructor() ERC20("My Token", "MTK") {
	uint initialSupply = 2_000_000_000;
	_mint(msg.sender, initialSupply * 1 ether);
	}