Skip to content

Instantly share code, notes, and snippets.

Discover gists

@maple3142
maple3142 / CVE-2025-55182.http
Last active December 20, 2025 04:15
CVE-2025-55182 React Server Components RCE POC
POST / HTTP/1.1
Host: localhost
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Next-Action: x
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx8jO2oVc6SWP3Sad
Content-Length: 459
------WebKitFormBoundaryx8jO2oVc6SWP3Sad
Content-Disposition: form-data; name="0"
@joshbuchea
joshbuchea / semantic-commit-messages.md
Last active December 20, 2025 04:03
Semantic Commit Messages

Semantic Commit Messages

See how a minor change to your commit message style can make you a better programmer.

Format: <type>(<scope>): <subject>

<scope> is optional

Example

@senhorjabiroca
senhorjabiroca / windowsimagecollection.md
Created January 20, 2025 13:14 — forked from ProdeusUnity/windowsimagecollection.md
Windows ISO files
OS version Arch File HOST sIZE download link Rate lIMITS
Windows 1.0 8086 Winworld (Kansas City, Missouri) 541KB Download ❌ Yes, 25 per day
Windows 2.0 386 Winworld (Kansas City, Missouri) 2.80MB Download ❌ Yes, 25 per day
Windows 3.0 8086/386
@sydney-runkle
sydney-runkle / demo_todo_list.py
Created November 6, 2025 22:30
import os
import subprocess
import tempfile
from langchain.agents import create_agent
from langchain.agents.middleware import TodoListMiddleware
from langchain_core.tools import tool
@tool(parse_docstring=True)
@Lola917492710
Lola917492710 / xvideos.py
Last active December 20, 2025 03:51 — forked from hahshshshshd/xvideos.py
xvideos downloader
import os
from os import path
from werkzeug import secure_filename
from tobikko.core import *
from tobikko.patch import *
patch_all()
import urllib2
from pyquery import PyQuery as pq
import urllib
from urlparse import urlparse
@roalcantara
roalcantara / 0_tldr.zsh
Last active December 20, 2025 03:50
Glob (globbing)
## TL;DR
setopt extendedglob
ls *(<tab> # to get help regarding globbing
rm ../debianpackage(.) # remove files only
ls -d *(/) # list directories only
ls /etc/*(@) # list symlinks only
ls -l *.(png|jpg|gif) # list pictures only
ls *(*) # list executables only
ls /etc/**/zsh # which directories contain 'zsh'?
@Rakise
Rakise / DiscordQuest.md
Created December 20, 2025 02:41

Since the original creator aamiaa dont want improvements/new features to their code. i made this gist with some improvements/QOL stuff

my version still respects discord API

How to use this script:

  1. Accept a quest under Discover -> Quests
  2. Press Ctrl+Shift+I to open DevTools
  3. Go to the Console tab
  4. Paste the following code and hit enter:
Details
@hackermondev
hackermondev / writeup.md
Last active December 20, 2025 03:32
How we pwned X (Twitter), Vercel, Cursor, Discord, and hundreds of companies through a supply-chain attack

hi, i'm daniel. i'm a 16-year-old high school senior. in my free time, i hack billion dollar companies and build cool stuff.

about a month ago, a couple of friends and I found serious critical vulnerabilities on Mintlify, an AI documentation platform used by some of the top companies in the world.

i found a critical cross-site scripting vulnerability that, if abused, would let an attacker to inject malicious scripts into the documentation of numerous companies and steal credentials from users with a single link open.

(go read my friends' writeups (after this one))
how to hack discord, vercel, and more with one easy trick (eva)
Redacted by Counsel: A supply chain postmortem (MDL)

@awni
awni / mlx_distributed_deepseek.md
Last active December 20, 2025 03:13
Run DeepSeek R1 or V3 with MLX Distributed

Setup

On every machine in the cluster install openmpi and mlx-lm:

conda install conda-forge::openmpi
pip install -U mlx-lm

Next download the pipeline parallel run script. Download it to the same path on every machine: