Skip to content

Instantly share code, notes, and snippets.

View SynapseScribe's full-sized avatar

SynapseScribe

View GitHub Profile
@chowder
chowder / README.md
Last active May 23, 2026 03:05
Exporting Microsoft Authenticator TOTP secrets

Background

Workplaces may enforce TOTP 2FA to be enabled Office 365 accounts, which require the Microsoft Authenticator app to be installed.

Regular TOTP applications (such as Aegis, Authy, or LastPass) cannot be used as Microsoft uses a proprietary scheme called phonefactor. Furthermore, the application requires Google Services Framework (GSF) to be installed (likely to provide device notifications), and will refuse to work when it is not present on the device.

Forunately, after the registration is complete, the underlying mechanism the app uses to generate TOTP codes is regular otpauth, and its secrets can be exported with a little bit of effort.

Extracting the keys

@FreddieOliveira
FreddieOliveira / docker.md
Last active May 25, 2026 21:44
This tutorial shows how to run docker natively on Android, without VMs and chroot.

Docker on Android 🐋📱

Edit 🎉

All packages, except for Tini have been added to termux-root. To install them, simply pkg install root-repo && pkg install docker. This will install the whole docker suite, left only Tini to be compiled manually.

Summary

@cocafe
cocafe / vmx_perf_tweaks.md
Last active March 2, 2026 12:23

VMware VMX Notes, Performance Tweaks, Interactivity Improvements

experimented on VMware Workstation 15.5.2 build-15785246, other verisons may not work, no guaranteed.

global config for all VMs

C:\ProgramData\VMware\VMware Workstation\config.ini

@johncantrell97
johncantrell97 / satoshistreasure.md
Last active May 8, 2026 20:25
How I Obtained Satoshi's Treasure Keys 1, 2, and 3 in Minutes

Today (April 16th 2019 at noon) the first major clues to discover key #1 was set to be released in a few cities. A QR code with the words 'orbital' were found at these locations and looked like this: (https://imgur.com/a/6rNmz7T). If you read the QR code with your phone you will be directed to this url: https://satoshistreasure.xyz/k1

At this URL you are prompted to input a passphrase to decrypt the first shard. An obvious first guess was to try the word 'orbital' from the QR code. Not suprisingly this worked! This reveals a congratulations page and presents the first key shard:

ST-0001-a36e904f9431ff6b18079881a20af2b3403b86b4a6bace5f3a6a47e945b95cce937c415bedaad6c86bb86b59f0b1d137442537a8.

Now, we were supposed to wait until April 17th to get clues from the other cities for keys #2 and #3 but that wouldn't stop me from digging around with all the new information we had. All that time "playing" notpron (http://notpron.org/notpron/) years ago was going to help me here.

The first thing I noticed was

@mrprobot
mrprobot / Spotify_Eliminate_Advertisements
Created June 20, 2018 17:31 — forked from opus-x/Spotify_Eliminate_Advertisements
Eliminate Spotify Advertisements + Complete Server List
##################################################
# ELIMINATE SPOTIFY ADS - UPDATED FREQUENTLY #
##################################################
SPOTIFY CURRENTLY WORKS HARD IMPROVING ITS APP AND NETWORK. WHAT IS REALIZED NOW? NO AUDIO/VIDEO ADS IN THE OLD APP,
THE NEW APP, CHROMECAST, WEBSITE (DID NOT TEST THAT ONE).
NOTE: SOMETIMES ONLY ANNOUNCEMENT OF AN AD!
ALTERNATIVELY YOU CAN ALSO BLOCK THE FOLLOWING IP ADDRESSES IN YOUR ROUTER:
@fay59
fay59 / icloud-album-download.sh
Last active May 7, 2026 04:06
Download entire iCloud shared albums
#!/bin/bash
# requires jq
# arg 1: iCloud web album URL
# arg 2: folder to download into (optional)
function curl_post_json {
curl -sH "Content-Type: application/json" -X POST -d "@-" "$@"
}
@sagivo
sagivo / gist:3a4b2f2c7ac6e1b5267c2f1f59ac6c6b
Last active May 26, 2026 06:40
webRTC stun / turn server list
to check if the server works - https://webrtc.github.io/samples/src/content/peerconnection/trickle-ice
stun:
stun.l.google.com:19302,
stun1.l.google.com:19302,
stun2.l.google.com:19302,
stun3.l.google.com:19302,
stun4.l.google.com:19302,
stun.ekiga.net,
stun.ideasip.com,
@adisib
adisib / youtube_hd.user.js
Last active February 10, 2026 15:09
Make youtube videos in HD and automatically resize
// ==UserScript==
// @name Youtube HD
// @author adisib
// @namespace namespace_adisib
// @description Select a youtube resolution and resize the player.
// @version 2025.04.13
// @match https://*.youtube.com/*
// @noframes
// @grant GM.getValue
// @grant GM.setValue
@paulirish
paulirish / how-to-view-source-of-chrome-extension.md
Last active May 23, 2026 02:02
How to view-source of a Chrome extension

Option 1: Command-line download extension as zip and extract

extension_id=jifpbeccnghkjeaalbbjmodiffmgedin   # change this ID
curl -L -o "$extension_id.zip" "https://clients2.google.com/service/update2/crx?response=redirect&os=mac&arch=x86-64&nacl_arch=x86-64&prod=chromecrx&prodchannel=stable&prodversion=44.0.2403.130&x=id%3D$extension_id%26uc" 
unzip -d "$extension_id-source" "$extension_id.zip"

Thx to crxviewer for the magic download URL.

@vagnernogueira
vagnernogueira / bogonsblocks.sh
Last active May 8, 2026 20:18
Firewall-D and IPSETs
#!/bin/bash
# geoip on firewall in centos 7
# this file: /etc/cron.weekly/bogonsblocks.sh
# sudo chmod +x /etc/cron.weekly/bogonsblocks.sh
## create tmp dir
# sudo mkdir /var/tmp/ipbogons
## create list on ipset
# sudo ipset create bogonslist hash:net maxelem 1000000
## create rule on firewall-cmd