Skip to content

Instantly share code, notes, and snippets.

Discover gists

@win3zz
win3zz / GitHub-Leaked-API-Keys-and-Secrets.md
Last active December 31, 2025 03:32

GitHub Search Syntax for Finding API Keys/Secrets/Tokens

As a security professional, it is important to conduct a thorough reconnaissance. With the increasing use of APIs nowadays, it has become paramount to keep access tokens and other API-related secrets secure in order to prevent leaks. However, despite technological advances, human error remains a factor, and many developers still unknowingly hardcode their API secrets into source code and commit them to public repositories. GitHub, being a widely popular platform for public code repositories, may inadvertently host such leaked secrets. To help identify these vulnerabilities, I have created a comprehensive search list using powerful search syntax that enables the search of thousands of leaked keys and secrets in a single search.

Search Syntax:

(path:*.{File_extension1} OR path:*.{File_extension-N}) AND ({Keyname1} OR {Keyname-N}) AND (({Signature/pattern1} OR {Signature/pattern-N}) AND ({PlatformTag1} OR {PlatformTag-N}))

Examples:

**1.

@elliottminns
elliottminns / .zshrc
Last active December 31, 2025 03:30
# ===========================================
# ZSH Hacks - Dreams of Code
# ===========================================
# Add these to your .zshrc file
# ===========================================
# -------------------------------------------
# 1. Edit Command Buffer
# -------------------------------------------
# Open the current command in your $EDITOR (e.g., neovim)
@aashari
aashari / 00 - Cursor AI Prompting Rules.md
Last active December 31, 2025 03:26
Cursor AI Prompting Rules - This gist provides structured prompting rules for optimizing Cursor AI interactions. It includes three key files to streamline AI behavior for different tasks.

The Autonomous Agent Prompting Framework

This repository contains a disciplined, evidence-first prompting framework designed to elevate an Agentic AI from a simple command executor to an Autonomous Principal Engineer.

The philosophy is simple: Autonomy through discipline. Trust through verification.

This framework is not just a collection of prompts; it is a complete operational system for managing AI agents. It enforces a rigorous workflow of reconnaissance, planning, safe execution, and self-improvement, ensuring every action the agent takes is deliberate, verifiable, and aligned with senior engineering best practices.

I also have Claude Code prompting for your reference: https://gist.github.com/aashari/1c38e8c7766b5ba81c3a0d4d124a2f58

@aaqidmasoodi
aaqidmasoodi / Running Real Python 3 Turtle Graphics in the Browser.md
Last active December 31, 2025 03:25

Running Real Python 3 Turtle Graphics in the Browser.

Most browser-based "Python Turtle" tools are essentially toys. They look like Python but under the hood, they are often restricted wrappers or transpilers that break as soon as you try to do something advanced.

CodeScapes is different. It runs unmodified, standard CPython 3.11 directly in your browser via WebAssembly.

This means you get real Turtle Graphics (without using Tkinter):

  • Blocking execution (time.sleep(), infinite loops work correctly)
  • Native syntax (no weird browser-specific hacks needed)
@101arrowz
101arrowz / README.md
Last active December 31, 2025 03:25
Download a McGraw Hill Education eTextbook

Download a McGraw Hill Education eTextbook

If you purchase a textbook from McGraw Hill, the website to view it is clunky and only works on some devices. You can't go to specific page numbers, the search is super slow, etc. That's why I wrote this script to download the textbook as an ePub file for your own viewing.

Using this script is 100% legal. McGraw Hill publicly hosts their ebooks online in order for their web client to download it. Moreover, to use it, you must already have purchased the book you would like to download, so it is legally yours to use as you please. However, it IS illegal to use this for piracy purposes. DO NOT DISTRIBUTE ANY TEXTBOOKS YOU DOWNLOAD USING THIS SCRIPT.

@osipxd
osipxd / change-phone-number.md
Last active December 31, 2025 03:25
Редактирование номера телефона SIM-карты на Android

Что нужно?

  • Root
  • ADB (или любое приложение Terminal на телефоне)

Шаги

Подключение

Подключитесь к телефону через ADB и в открывшейся консоли переключитесь в режим Super User:

@L-Kov
L-Kov / ctf.ts
Created January 6, 2023 20:01
Conditional Tokens Framework Calculations
import { keccak256 as solidityKeccak256 } from "@ethersproject/solidity";
import BN from "bn.js";
export const getConditionId = (oracle: string, questionId: string, outcomeSlotCount: number): string =>
solidityKeccak256(["address", "bytes32", "uint256"], [oracle, questionId, outcomeSlotCount]);
const altBN128P = new BN("21888242871839275222246405745257275088696311157297823662689037894645226208583");
const altBN128PRed = BN.red(altBN128P);
const altBN128B = new BN(3).toRed(altBN128PRed);
const zeroPRed = new BN(0).toRed(altBN128PRed);
@justinian
justinian / linux-x64-nasm-cheatsheet.md
Last active December 31, 2025 03:23
x64 NASM Cheat Sheet

x64 NASM cheat sheet

Registers

64 bit 32 bit 16 bit 8 bit
A (accumulator) RAX EAX AX AL
B (base, addressing) RBX EBX BX BL
C (counter, iterations) RCX ECX CX CL
D (data) RDX EDX DX DL
@mikelane
mikelane / claude-code-metrics.json
Created December 11, 2025 06:13
{
"apiVersion": "dashboard.grafana.app/v2beta1",
"kind": "Dashboard",
"metadata": {
"name": "claude-code-metrics",
"generation": 12,
"creationTimestamp": "2025-12-10T13:33:56Z",
"labels": {},
"annotations": {}
},
@nickloewen
nickloewen / bret_victor-reading_list.md
Last active December 31, 2025 03:17
Bret Victor’s Reading List

This is a plain-text version of Bret Victor’s reading list. It was requested by hf on Hacker News.

Highly recommended things!

This is my five-star list. These are my favorite things in all the world.

A few of these works have had an extraordinary effect on my life or way of thinking. They get a sixth star. ★