Github Action Public_Private
This is a set of communication interactions between Github open source and privacyFunction: Synchronize README.md Sync hub.docker Overview The private warehouse is successfully constructed and the information is sent to the public warehouse to complete the construction Build containers and push to Aliyun, Hub.docker, etc. Open source warehouse receives signal to update README 这是一套关于Github 开源和隐私之间的通信交互功能: 同步 README.md 同步 hub.docker 的 Overview 私有仓库构建成功发送信息到公有仓库完成构建 构建容器并推送到 Aliyun,...
PHP FPM Docker
Please compile manually, github action may time out USE123FROM xrsec/php:latest | FROM xrsec/php:5.6 | FROM xrsec/php:7.4 | FROM xrsec/php:initLABEL From="xrsec"ARG TARGETPLATFORM 123RUN mkdir -p /www /www/server /www/bak /www/server/php74 /www/server/php56COPY --from=xrsec/php:7.4 /www/server/php74 /www/server/php74COPY --from=xrsec/php:5.6 /www/server/php56 /www/server/php56 123456789101112131415161718RUN ln -sf /www/server/php74/bin/php /www/env/php74 \ &&...
Oracle Java Docker
README This warehouse code and container are prohibited from commercial use OracleJava Dockerfile official Oracle Java Step Download Split 1234567891011split -b 50m jdk-8u301-linux-x64.rpm jdk-8u301-linux-amd64-split -b 50m jdk-11.0.12_linux-x64_bin.rpm jdk-11.0.12_linux-amd64-split -b 50m jdk-11.0.12_linux-aarch64_bin.rpm jdk-11.0.12_linux-arm64-split -b 50m jdk-16.0.2_linux-x64_bin.rpm jdk-16.0.2_linux-amd64-split -b 50m jdk-16.0.2_linux-aarch64_bin.rpm jdk-16.0.2_linux-arm64-split...
微信公众号 Markdown 排版工具
用于格式化 Markdown,粘贴到微信公众号的工具。 在线使用地址https://wxweb.zygd.site/ Docker 部署1docker run -it -d --restart=always -p 5052:80 --name wxweb wxweb:latest 问题反馈 & 建议https://github.com/softwarefly/online-markdown/issues/new 致谢 @Phodal @barretlee @dyc87112 @softwarefly XRSec has the right to modify and interpret this article. If you want to reprint or disseminate this article, you must ensure the integrity of this article, including all contents such as copyright notice. Without the permission...
Code Server Update
Run VS Code on any machine anywhere and access it in the browser. Highlights Code on any device with a consistent development environment Use cloud servers to speed up tests, compilations, downloads, and more Preserve battery life when you’re on the go; all intensive tasks run on your server RequirementsSee requirements for minimum specs, as well as instructions on how to set up a Google VM on which you can install code-server. TL;DR: Linux machine with WebSockets enabled, 1 GB RAM,...
Goby Server By Docker
About Attack surface mapping The new generation of network security technology achieves rapid security emergency through the establishment of a complete asset database for the target. Info123127.0.0.1:15001Username: gobyPassword: docker logs goby | grep " Goby_PassWord :" Github : https://github.com/XRSec/Goby-Docker.git UseInStall12345docker run -it --name goby -p 15001:15001 -e password=password -e port=15001 xrsec/goby:latest# Installing containers or updating goby requires...
Github Action with Docker
12DOCKERHUB_USERNAMEDOCKERHUB_TOKEN Lite versionCanvas_Docker_Build.yml1234567891011121314151617181920212223242526272829303132333435363738394041name: Canvas Docker Buildon: push: branches: - main schedule: - cron: '0 0 * * MON'jobs: Canvas_Docker_Build: name: Canvas Docker Build runs-on: ubuntu-latest steps: - name: Private Actions Checkout uses: actions/checkout@v2.3.4 - name: Docker Setup QEMU uses:...
Xiaomi Mi Router 4C OpenWrt
刷机恩山无线论坛 小米路由器4C 刷 OpenWrt 废话不多说哈 1234567891011121314151617dd if=/dev/mtd0 of=/tmp/all.bindd if=/dev/mtd1 of=/tmp/bootloader.bindd if=/dev/mtd3 of=/tmp/eeprom.bin#nc -l 9995 > all.bin[ mi4c ] nc 192.168.31.226 9995 < /tmp/all.binnc -l 9995 > bootloader.bin[ mi4c ] nc 192.168.31.226 9995 < /tmp/bootloader.binnc -l 9995 > eeprom.bin[ mi4c ] nc 192.168.31.226 9995 < /tmp/eeprom.bin## 注意方向[ mi4c ] nc -l 9995 < breed-mt7688-reset38.binnc 192.168.31.226 9995 >...
绕过CSDN 爬虫限制
今天准备整理书签,首选 Visual Studio Code 正则过滤 + Sublime Text 多选删除, 删除到一半,我需要知道目标网址的 description img 等信息, 我想干脆 requests 请求 text 然后再正则很快就搞定了,没想到 请求 CSDN 无内容 requests 请求123python3 -c 'import requestsrequests.packages.urllib3.disable_warnings()print(requests.get("https://blog.csdn.net/qq_33451584/article/details/119834318", timeout=5, verify=False).content.decode("utf-8"))' urllib3请求12python3 -c 'import urllib3print(urllib3.PoolManager().urlopen("GET",...
Vulnhub EvilBox靶机打靶过程
靶机详解难度: 中级 环境 kali Linux 2021 192.168.0.104Linux Kernel 192.168.0.103 涉及技术主机发现 网络扫描 强制访问 参数爆破 文件包含 PHP封装器 任意文件读取 SSH公钥登录 离线密码破解 系统权限漏洞利用 打靶开始1sudo arp-scan -l 进行主机发现 发现目标主机IP为 192.168.0.103 进行端口扫描 1nmap -sC -sV -p- 192.168.0.103 发现目标主机打开的22,80端口,首先率先考虑 80 端口是否存在漏洞 打开后发现如下, 使用 dirsearch 进行目录爆破 1dirsearch -u http://192.168.0.103/ -w /home/yifang/fuzz/dirtop60000.txt -f 发现目标存在 secret文件夹,打开后发现了一段字符 hacker ,继续使用dirsearch 进行目录爆破,发现了在secret下有一个evil.php的文件。此时的渗透工作似乎进入了瓶颈期,想到了可以对evil.php下的文件的get...
Unix中路径中包含空格报错
IFS 介绍 Shell 脚本中有个变量叫 IFS(Internal Field Seprator) ,内部域分隔符。完整定义是The shell uses the value stored in IFS, which is the space, tab, and newline characters by default, to delimit words for the read and set commands, when parsing output from command substitution, and when performing variable substitution. Shell 的环境变量分为 set, env 两种,其中 set 变量可以通过 export 工具导入到 env 变量中。其中,set 是显示设置shell变量,仅在本 shell 中有效;env 是显示设置用户环境变量 ,仅在当前会话中有效。换句话说,set 变量里包含了 env 变量,但 set 变量不一定都是 env 变量。这两种变量不同之处在于变量的作用域不同。显然,env...
查找并删除
12find . -name '*.png' -type f -print -exec rm -rf {} \;find . -type f -name "*.log" -print0 | xargs -0 rm -f 指定一个替换字符串 {} XRSec has the right to modify and interpret this article. If you want to reprint or disseminate this article, you must ensure the integrity of this article, including all contents such as copyright notice. Without the permission of the author, the content of this article shall not be modified or increased or decreased arbitrarily, and it...
Online Config VS Code
Run VS Code on any machine anywhere and access it in the browser. Arm please vist code-server code-server arm View InstallCode Server Update Datebase :You are advised to create a Docker container for the database 12345678910docker run -it -d \--name vs-db \-p 8003:3306 \-e "MYSQL_ROOT_PASSWORD=code-server" \mariadb:latest# vs-db ipaddress# $ docker exec -it vs-db bash# $ apt update -y && apt upgrade -y && apt install net-tools iputils-ping# $ ifconfig |...
Vulnhub靶机打靶-hard-socnet2
Author: yifang 靶机详情 难度:高Tips 涉及知识:主机发现 端口扫描 SQL注入 文件上传 蚁剑上线 CVE-2021-3493 XMLRPC 逆向工程 动态调试 缓冲区溢出 漏洞利用代码编写 靶机下载地址:https://download.vulnhub.com/boredhackerblog/hard_socnet2.ova攻击方法有2种,CVE-2021-3493 另类提权方式攻击主机:kali Linux 2021 192.168.0.103目标主机: Ubuntu 18 攻击开始1nmap -p- -sV -sC...
Mac 向日葵 开启权限
大部分Mac用户可能都遇到过向日葵远程卡慢甚至远程不了的情况 主要介绍向日葵被控不了的情况 第一次安装是这样,然后 按照要求勾选 还是不行 ? 往下拉,你会发现一个 SunloginClient_Desktop 右键 在访达中显示 待会要用 现在 辅助功能 绿了,继续开启 屏幕录制 还是不行,为啥呢? 点击 + 号,选择我们刚刚那个 SunloginClient_Desktop 打开 完工,收工 XRSec has the right to modify and interpret this article. If you want to reprint or disseminate this article, you must ensure the integrity of this article, including all contents such as copyright notice. Without the permission of the author, the content of this article shall not...
