Twitter | Search | |
Dаvіd Вucһаnаn
Assuming this all works out, the image in this tweet is also a valid ZIP archive, containing a multipart RAR archive, containing the complete works of Shakespeare. This technique also survives twitter's thumbnailer :P
Reply Retweet Like More
Dаvіd Вucһаnаn Oct 29
Replying to @David3141593
I tried reporting this techinque to twitter's bug bounty program, but it's . Fair enough, but that just means we can have some fun with it 🤣
Reply Retweet Like
David 'BrokenGlass' Freitag seeks cuddles Oct 29
Replying to @David3141593
inb4 twitter compresses it and you're hosed
Reply Retweet Like
Dаvіd Вucһаnаn Oct 29
Replying to @David3141593
curl '' > && unzip && unrar x shakespeare.part001.rar
Reply Retweet Like
Dаvіd Вucһаnаn Oct 29
Replying to @dvdfreitag
It survives all of twitters scaling, compression and thumbnailing. /how/ is left as an exercise to the reader :P
Reply Retweet Like
(((webhat))) Oct 29
Replying to @David3141593
Didn't seem to work for me, this is what I downloaded
Reply Retweet Like
Dаvіd Вucһаnаn Oct 29
Replying to @webhat
Interesting, what URL did you download via? (and what did you click etc. to get to that URL?)
Reply Retweet Like
Dаvіd Вucһаnаn Oct 30
Replying to @David3141593
I'll post my source code soon™ (It's a bit of a mess at the moment, split across multiple hacky python scripts...)
Reply Retweet Like
Allan Wirth Oct 30
Replying to @David3141593
Well, I guess I should say profiles. The multipart RAR is a cute trick to work around the JPEG block size limitation. I like this a lot 🙂
Reply Retweet Like
Dаvіd Вucһаnаn Oct 30
Replying to @Allan_Wirth
I also have plans for a JPG/PDF combo, which should be doable without too much difficulty - just have to generate it so that the "boundaries" are comments or something. Even better, you could probably embed the PDF in a webpage directly from twitter's CDN...
Reply Retweet Like
Dаvіd Вucһаnаn Oct 30
Replying to @David3141593
Fun fact: Just before this tweet got popular, I had 666 followers. It was an omen...
Reply Retweet Like
Maxime Borges Oct 30
Replying to @David3141593
had to replace unzip&&unrar with unzip;unrar for unknown reason
Reply Retweet Like
Dаvіd Вucһаnаn Oct 30
Replying to @maximeborges
Haha, thanks - I did notice just after I'd posted it, but I didn't think anyone else would actually notice 😆 && doesn't work because unzip returns an error code (because of a warning about junk data at the start, lol)
Reply Retweet Like
Dаvіd Вucһаnаn Oct 30
Replying to @David3141593
Reply Retweet Like
Ben Nuttall Oct 30
Replying to @David3141593
DMCA notice
Reply Retweet Like
Dаvіd Вucһаnаn Oct 30
Nope, thanks to
Reply Retweet Like
Jernej Simončič Oct 31
Reply Retweet Like
Dаvіd Вucһаnаn Oct 31
Discord is no surprise, since they keep the original file. is a nice surprise, since they are infamous for recompressing files etc.
Reply Retweet Like
Dаvіd Вucһаnаn Oct 31
Replying to @David3141593
Source code. This one is also a PDF :P
Reply Retweet Like
[redacted]ch0c Oct 31
Replying to @David3141593
Trying to use it but I keep getting this error. Using the same files has this one.
Reply Retweet Like