HTML Binary Hacks & GIF89a Ployglot

May 26, 2008Download as PPT, PDF4 likes4,699 views

takesako

http://conferences.yapcasia.org/ya2008/talk/1299

HTML Quiz <img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112/”1.gif” src=”2.gif”> (1) 1.gif (2) 2.gif (3) N/A Answers. Q1. What will you see? (on your browser)

$Q2. What’s this? <img /src = /slideshow/html-binary-hacks-gif89a-ployglot/429112/”1.gif” ”” src{\x00} = ”2.gif” ’ src{\x0c} = ”3.gif” src = ”4.gif” /> (1) 1.gif (2) 2.gif (3) 3.gif (4) 4.gif Answers. -> ie -> Safari -> firefox -> others$

$print<<EOF; <img /src \x00 ="ie.gif" /''src \x00 ="firefox1_5.gif" /''src=/slideshow/html-binary-hacks-gif89a-ployglot/429112/"firefox2_0.gif" /""src="gecko_others.gif" "s \x00 rc="safari2.gif" "src="safari3.gif" ""src="konqueror.gif" src \x00 ="w3m.gif" src \x0c ="opera.gif" src="others.gif" src="lynx.gif" /> EOF$

Mozilla/5.0 (PLAYSTATION 3; 1.00) ? others.gif

Polyglot DEMO HTML/CSS & JS & Perl & GIF89a

$JavaScript in GIF GIF89a( q /*....../);sub GIF89a{print "Hello Perl!"} __END__#*/ =1 );function GIF89a(){alert("Hello JavaScrpt!")} /*<body style=visibility:hidden> <div style=position:relative;visibility:visible> <h1>Hello HTML!</h1><img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112?> <script src=# language=JavaScript></script></div> */ // ;$

$HTML/CSS in GIF GIF89a(q/*....../);sub GIF89a{print "Hello Perl!"} __END__#*/=1);function GIF89a(){alert("Hello JavaScrpt!")} /* <body style=visibility:hidden> <div style=position:relative;visibility:visible> <h1>Hello HTML!</h1>  <img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112?> <script src=# language=JavaScript></script> </div> */// ;$

$Perl in GIF GIF89a(q /*....../ );sub GIF89a{print "Hello Perl!"} __END__ #*/=1);function GIF89a(){alert("Hello JavaScrpt!")} /*<body style=visibility:hidden> <div style=position:relative;visibility:visible> <h1>Hello HTML!</h1><img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112?> <script src=# language=JavaScript></script></div> */// ;$

1. Income from house property is taxed under section 22 if the property is owned, consists of buildings or land, and is not used for business purposes. 2. Gross annual value is the standard to assess income and is the higher of expected rent and actual rent received less vacancy. 3. Deductions include municipal taxes paid, standard deduction of 30% of net annual value, and interest on borrowed capital. Income from self-occupied property allows deduction of interest up to Rs. 1.5 lakh.

Time of supply of goods or service in GST- ca amit kumarAmit Kumar

This document defines key terms used in India's Goods and Services Tax (GST) law such as supplier, recipient, removal, reverse charge, continuous supply of goods and services, and time of supply provisions for goods and services. It outlines provisions for issuing tax invoices, determining the time of supply for normal and reverse charge situations, and the tax treatment of supplies made prior to the introduction of GST but pursuant to pre-existing contracts.

Agricultural income - Relevant Income Tax IssuesAmitoz Singh

Aggregation of incomeNeelam Chauhan

Tax deduction at sourcecaacgangji

This document outlines the tax deduction at source (TDS) compliance process in India. It applies to all corporate and government deductors who are required to get their accounts audited. The key steps are: 1) apply for and obtain a TAN number; 2) deduct tax from applicable payments like salaries, interest, rent, etc. at the time of payment or credit; 3) deposit the deducted tax with the government treasury by the due dates; 4) file quarterly electronic TDS returns; and 5) issue TDS certificates to deductees. Failure to comply can result in penalties like interest charges, fines, and in severe cases, imprisonment.

Industrial dispute act 1947-974Partha Sarathi Panda

This document defines important terms under the Industrial Disputes Act such as appropriate government, industry, workman, and wages. It also explains what constitutes an industrial dispute according to the Act. The key aspects covered are: the definition of industrial dispute, who can raise disputes, and issues that can be subject to disputes. Further, it describes the functioning of dispute settlement machineries under the Act including conciliation procedures conducted by conciliation officers and boards, and adjudication procedures handled by labour courts, tribunals and national tribunals. The roles and powers of these conciliation and adjudication bodies are summarized.

Methods of settling industrial disputesSachin Kharecha

This document discusses various methods for settling industrial disputes, including both non-state and state intervention approaches. Non-state approaches include collective bargaining without conciliation, and voluntary arbitration. State intervention approaches discussed include compulsory establishment of bipartite committees, compulsory collective bargaining, compulsory investigation, compulsory conciliation and mediation, and compulsory arbitration or adjudication. The document also provides details on collective bargaining, voluntary arbitration, and machinery for dispute settlement in India such as standing orders, grievance procedures, and codes of discipline.

Inter se Transfer of Shares under SEBI (SAST) Regulations, 2011Corporate Professionals

The document discusses the exemptions available under Regulation 10 of SEBI (SAST) Regulations, 2011 for inter se transfer of shares. It provides five categories of inter se transfers that are exempt from open offer requirements: 1) between immediate relatives, 2) between promoters for over 3 years, 3) between qualifying parties such as subsidiaries of the same holding company, 4) between persons acting in concert for over 3 years, and 5) between shareholders acting in concert for over 3 years and companies wholly owned by them. It outlines various conditions for availing these exemptions including pricing and disclosure requirements.

Income from other sources IshitaSrivastava21

Agricultural incomevatsaj

The document defines agricultural income and non-agricultural income for tax purposes. Agricultural income includes any income derived from land used for agricultural purposes in India, such as rent, crop sales, or farm building income. Non-agricultural income includes income from activities like stone quarries, dairy farming, poultry, fisheries, and brick making. Some incomes are partially agricultural and partially business. For individuals and HUFs with both agricultural and non-agricultural income, tax is calculated by integrating the incomes and comparing to the tax on agricultural income alone.

As 15 vs ind as 19Archana CA

The document compares accounting for employee benefits under AS 15 and Ind AS 19. It provides details on the recognition, measurement, and presentation of short-term employee benefits, other long-term employee benefits, and post-employment benefits. It also discusses the accounting for defined contribution plans and defined benefit plans, including current service cost, interest cost, past service cost and expected return on plan assets. Ind AS 19 requires more extensive disclosures and includes an appendix on impairment testing of employee benefit assets not found in AS 15.

Partnership Actashutoshpratap

The document defines a partnership under Indian law as a relationship between persons who have agreed to share the profits of a business carried on by all or any of them acting for all. The essential elements of a partnership are a contract between two or more persons to carry on business with the objective of sharing profits. There are two main kinds of partnerships - partnership at will which has an indefinite duration, and particular partnership which is formed for a fixed term or venture. A partnership can be dissolved by agreement between partners, by notice from a partner, or upon certain events such as the expiration of a fixed term, completion of an undertaking, death or insolvency of a partner.

Tdsakash gupta

TDS stands for Tax Deduction at Source. It is a mechanism for collecting income tax in India whereby the tax is deducted at source from payments like salary, interest, rent, etc. at the time of payment/credit. The payer has to deduct tax as per rates specified in the Income Tax Act 1961 from the payments made and deposit it with the government. The payer also has to obtain a Tax Deduction Account Number (TAN), file quarterly TDS returns, and issue TDS certificates to the payee. The payee can then claim credit for the TDS while filing their income tax return.

Aggregation of income, set off and carry forwardCA Dr. Prithvi Ranjan Parhi

Indian Contract Act 1872Mayank Goel

Strikekinnari raval

The document discusses strikes in industrial relations. It defines a strike and explains the different types of strikes such as sympathetic strikes, partial stoppage of work, picketing and boycotts. It also defines gherao and discusses relevant sections of the Industrial Disputes Act, 1947 regarding prohibition of strikes and lockouts in public utility services, illegal strikes and lockouts, and penalties for illegal strikes and lockouts.

AGRICULTURAL INCOME.docxRajiv839406

Agricultural income derived from land situated in India is exempt from income tax under section 10(1) of the Income Tax Act of 1961. For income to be considered agricultural income, it must be derived from basic agricultural operations on the land like cultivation, planting, harvesting, etc. and subsequent operations related to making the produce fit for market. The income can be in the form of rent received in cash or kind, or revenue from the land. The land must be used for genuine agricultural purposes and situated in India. The burden of proof that income is agricultural income lies with the taxpayer.

Understanding Income Tax - Profits & Gains of Business or Profession [Sec 36 ...DVSResearchFoundatio

Objectives & Agenda : To analyse and interpret the provisions of the Income-tax Act relating to computation of 'Profits and gains of business or profession' (PGBP). In this Webinar, we shall look at the general admissible deductions, amounts not deductible, deductions subject to payments, Computation of income in case of construction and service contracts, Insurance business, etc. Finally, the Webinar will touch upon relevant Judicial Precedents.

All About TDS Return Filing Online 2024.pptxLegal Pillers

All about Advance Tax in India - With CalculationRishi Menon

Gst ReconciliationAdmin SBS

This document provides an overview of the statutory requirements for annual returns and audits under the Goods and Services Tax (GST) in India. It discusses key provisions regarding the requirement for audits based on annual turnover thresholds, the types of annual returns to be filed by different registered taxpayers, and the reconciliation statement that must be submitted along with audited annual accounts. The reconciliation statement aims to reconcile the turnover and tax amounts declared in the annual return with the audited financial statements. The document also clarifies differences in the turnover thresholds referenced in the GST law versus rules.

Chapter vi a deductionsDVSResearchFoundatio

Every assessee earning more than the basic exemption are eligible to seek deduction from Gross Total Income by way of deductions allowed for investments or payments made, under Chapter VI-A of the Income Tax Act. Chapter VI-A helps an assessee to reduce the overall tax burden to the extent of investment and expenses made within the ambit of law and fulfilemt of prescribed conditions. In this Webinar, we shall be focusing on the provisions of Chapter VI-A which are essential for Individuals, HUF and Firms for the purpose of claiming deductions against their total income.

TDSTabeer Yousuf

offices of NSDL within the due date. NSDL will act as intermediary and upload the data to the Income Tax Department's central system. 1. The document provides information on Tax Deduction at Source (TDS) and TCS, including the objectives, nature of payments subject to TDS/TCS, persons responsible for deductions, rates of deduction, deposit and filing of returns. 2. It discusses the consequences of failure to deduct or deposit TDS/TCS on time such as interest, penalties, and disallowance of expenses. 3. The mandatory requirements for electronic filing of T

Formation, Deed, Registration OF PARTNERSHIPSUBROTOACADEMICS

Partnerships can be formed through a contractual agreement without needing to be in writing. Partnerships can also be registered by filing an application with the Registrar of Firms, which defines the terms of the partnership in a deed. Key contents of a partnership deed include the name of the firm, capital contributions, profit sharing ratios, and procedures for changes. While registration is not required, it allows partners to enforce claims against each other and third parties, while non-registration limits these enforcement abilities.

EXEMPTIONS OF CAPITAL GAINMd. Furqan Sabri

SEBI(LODR)Regulations - Obligations on listing of specified securities - Part IIDVSResearchFoundatio

Industrial relations ( A Case Of Pakistan)Aftab Alam

Articles of Association and its Alterations Simplified.Ankit Shah

The document discusses the articles of association, which are the internal rules and regulations that govern a company. It explains that articles of association define how a company is administered, including provisions around share capital, directors, meetings, and other internal operations. The document also discusses how and when articles of association can be altered, with limitations like requiring shareholder approval and not contradicting the company's memorandum.

HTML5 for Security FolksVaibhav Gupta

Application Security Vulnerabilities: OWASP Top 10 -2007Vaibhav Gupta

More Related Content

What's hot (20)

Income from other sources IshitaSrivastava21

Agricultural incomevatsaj

As 15 vs ind as 19Archana CA

Partnership Actashutoshpratap

Tdsakash gupta

Aggregation of income, set off and carry forwardCA Dr. Prithvi Ranjan Parhi

Indian Contract Act 1872Mayank Goel

Strikekinnari raval

AGRICULTURAL INCOME.docxRajiv839406

Understanding Income Tax - Profits & Gains of Business or Profession [Sec 36 ...DVSResearchFoundatio

All About TDS Return Filing Online 2024.pptxLegal Pillers

All about Advance Tax in India - With CalculationRishi Menon

Gst ReconciliationAdmin SBS

Chapter vi a deductionsDVSResearchFoundatio

TDSTabeer Yousuf

Formation, Deed, Registration OF PARTNERSHIPSUBROTOACADEMICS

EXEMPTIONS OF CAPITAL GAINMd. Furqan Sabri

SEBI(LODR)Regulations - Obligations on listing of specified securities - Part IIDVSResearchFoundatio

Industrial relations ( A Case Of Pakistan)Aftab Alam

Articles of Association and its Alterations Simplified.Ankit Shah

Income from other sources IshitaSrivastava21

Agricultural incomevatsaj

As 15 vs ind as 19Archana CA

Partnership Actashutoshpratap

Tdsakash gupta

Aggregation of income, set off and carry forwardCA Dr. Prithvi Ranjan Parhi

Indian Contract Act 1872Mayank Goel

Strikekinnari raval

AGRICULTURAL INCOME.docxRajiv839406

Understanding Income Tax - Profits & Gains of Business or Profession [Sec 36 ...DVSResearchFoundatio

All About TDS Return Filing Online 2024.pptxLegal Pillers

All about Advance Tax in India - With CalculationRishi Menon

Gst ReconciliationAdmin SBS

Chapter vi a deductionsDVSResearchFoundatio

TDSTabeer Yousuf

Formation, Deed, Registration OF PARTNERSHIPSUBROTOACADEMICS

EXEMPTIONS OF CAPITAL GAINMd. Furqan Sabri

SEBI(LODR)Regulations - Obligations on listing of specified securities - Part IIDVSResearchFoundatio

Industrial relations ( A Case Of Pakistan)Aftab Alam

Articles of Association and its Alterations Simplified.Ankit Shah

Viewers also liked (6)

HTML5 for Security FolksVaibhav Gupta

Application Security Vulnerabilities: OWASP Top 10 -2007Vaibhav Gupta

OAuth 2.0 & Security ConsiderationsVaibhav Gupta

Application Security Risk RatingVaibhav Gupta

The document discusses two problems related to application security risk rating: 1) limited resources to test a large number of applications, and 2) assigning risk levels to vulnerabilities found during manual assessments. For the first problem, the document proposes prioritizing applications by categorizing them into high, medium, and low risk based on a risk assessment analyzing business criticality and risk posture. For the second problem, the document outlines the OWASP risk rating methodology in six steps: identifying risks, estimating likelihood, estimating impact, determining severity, deciding what to fix, and customizing the risk rating model.

Security Automation using ZAPVaibhav Gupta

The document discusses automating security scans using the Zed Attack Proxy (ZAP). It provides an overview of ZAP and its graphical user interface. It then discusses how various aspects of ZAP can be automated using its APIs, including spidering, passive scanning, active scanning, and authenticated scanning. It provides Python code examples to initialize ZAP, run spiders and scans, and access other ZAP features programmatically. It concludes with use cases for automating ZAP at scale or integrating it with continuous integration systems.

Polyglot payloads in practice by avlidienbrunn at HackPraMathias Karlsson

HTML5 for Security FolksVaibhav Gupta

Application Security Vulnerabilities: OWASP Top 10 -2007Vaibhav Gupta

OAuth 2.0 & Security ConsiderationsVaibhav Gupta

Application Security Risk RatingVaibhav Gupta

Security Automation using ZAPVaibhav Gupta

Polyglot payloads in practice by avlidienbrunn at HackPraMathias Karlsson

More from takesako (19)

SECCON CTF セキュリティ競技会コンテスト開催についてtakesako

CTFとは、世界的に有名な旗取り合戦（Capture The Flag）のことで、セキュリティ技術を競うコンテストの総称です。出題ジャンルは、暗号、バイナリ、ネットワーク、Web、プログラミングなど多岐に渡り、クイズ形式の問題の謎を解いたり、実験ネットワーク内で疑似的な攻防戦を行ったりするものです。セキュリティだけでなくプログラミングに関する知見も問われ、攻撃技術、防御技術、解析技術、暗号の知見、ネットワーク技術など、広範な知識と経験が必要となっています。CTFは総合的な問題解決力を磨く最適な競技と言えるでしょう。 CTFには既に20年近い歴史があり、ラスベガスのDEFCONでCTFが開催されたことをきっかけに、今やヨーロッパやアジア、オセアニアや南米など、各国で頻繁に競技会が開催されています。国際大会も多く、元祖DEFCONを筆頭に、マレーシアHack in the BOXや、韓国CODEGATEなど、世界中からチームがCTFに参戦して熱戦を繰り広げています。日本では2000年代の前半に「運動会」、それに続く「セキュリティスタジアム」が開催されましたが、現在に至るまで数年の空白期間があり、普及啓発や人材育成という面で世界に後れを取っているのが現状です。先日JNSA賞を受賞した日本チームsutegoma2の孤軍奮闘のおかげで昨年ようやくDEFCON CTFの世界予選を2位で突破しましたが、残念ながら本選ではふるわず、まだまだ世界とは大きな格差があると言わざるを得ません。そんな中、今年SECCON CTF実行委員会を発足し、日本全体のセキュリティ技術の底上げと人材発掘をはかる目的で、国内でも本格的にCTF競技会を開催することとしました。

Acme minechantakesako

Perlで無理ゲーム攻略 (How to play Win32::GuiTest) http://yapcasia.org/2011/talk/32 某MMORPGでゲーム中にPerlの同時起動を遮断する機能が追加されたことがありました。 Win32::GuiTest や Win32::Screenshot などのモジュールを利用して、Windows上で動作するゲームを自動でプレイするPerlプログラムを作成する方法について解説します。 Once upon a time, perl.exe was banned during a game by MMORPG. I will explain how to create the Perl bot program which plays automatically games on Windows using some modules such as Win32::GuiTest and Win32::Screenshot.

Acme::MineChan LT demotakesako

Node.js - JavaScript Thread Programmingtakesako

Node.js - sleep sort algorithmtakesako

x86x64 SSE4.2 POPCNTtakesako

再帰的正規表現JSON Validatortakesako

正规表现‐もう一つのバベルの塔‐木村浩一takesako

Perl6 Regex Programming with Rakudotakesako

That Goes Without Alpha-Num (or Does It ?) all your base10 are belong to ustakesako

The document discusses various programming languages and their characteristics in a non-standard formatting without using typical alphanumeric characters. (1) It examines MS-DOS 8086 assembly language programming and describes executing code on 16-bit x86 CPUs through binary instructions. (2) It also examines JavaScript, Perl, Ruby and compares some of their common features like comment syntax and string interpolation. (3) It then proposes executing x86 code without using binaries by manipulating the registers through hexadecimal subtraction and bitwise operations, though this method would be difficult to program and debug.

Devsumi2010 Ecmascript5 (ISO/IEC JTC1/SC22)takesako

Perl x86 JIT Programmingtakesako

YAPC::Asia 2008 Closing Ceremonytakesako

Devsumi2008 - YAPC::Asia 2008 Tokyotakesako

GIF89a Oldtypetakesako

Shibuyajs Digesttakesako

(1) The document summarizes a talk on the latest JavaScript trends in Japan. It discusses things like polyglot programming using HTML, CSS, JavaScript and Perl in a GIF image, cross-domain access protocols using GIFs, and various JavaScript frameworks and tools developed in Japan. (2) Several Japanese JavaScript projects are highlighted, including Mylingual.net for multilingual websites, AJAJA for server-side JavaScript, and Cycal for Ajax spreadsheets. (3) The talk also featured lightning talks on topics like implementing a Java virtual machine in JavaScript and fast XPath engines for JavaScript in Internet Explorer and Safari 2.

HTML2.0 - digg - OSC2007-falltakesako

Shibuya.pm#8 - ImageFight - HTML 2.0 New Browser Detectiontakesako

Shibuyajs24 JavaScript.GIF x LiveConnecttakesako

SECCON CTF セキュリティ競技会コンテスト開催についてtakesako

Acme minechantakesako

Acme::MineChan LT demotakesako

Node.js - JavaScript Thread Programmingtakesako

Node.js - sleep sort algorithmtakesako

x86x64 SSE4.2 POPCNTtakesako

再帰的正規表現JSON Validatortakesako

正规表现‐もう一つのバベルの塔‐木村浩一takesako

Perl6 Regex Programming with Rakudotakesako

That Goes Without Alpha-Num (or Does It ?) all your base10 are belong to ustakesako

Devsumi2010 Ecmascript5 (ISO/IEC JTC1/SC22)takesako

Perl x86 JIT Programmingtakesako

YAPC::Asia 2008 Closing Ceremonytakesako

Devsumi2008 - YAPC::Asia 2008 Tokyotakesako

GIF89a Oldtypetakesako

Shibuyajs Digesttakesako

HTML2.0 - digg - OSC2007-falltakesako

Shibuya.pm#8 - ImageFight - HTML 2.0 New Browser Detectiontakesako

Shibuyajs24 JavaScript.GIF x LiveConnecttakesako

HTML Binary Hacks & GIF89a Ployglot

1. HTML Binary Hacks - GIF89a Polyglot - Cybozu Labs, Inc. TAKESAKO <takesako@shibuya.pm.prg>

2. I’ll show you, HTML 2.0 hacks.

3. 1.0 HTML Browser Detection

4. HTML Quiz <img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112/”1.gif” src=”2.gif”> (1) 1.gif (2) 2.gif (3) N/A Answers. Q1. What will you see? (on your browser)

5. Q2. What’s this? <img /src = /slideshow/html-binary-hacks-gif89a-ployglot/429112/”1.gif” ”” src{\x00} = ”2.gif” ’ src{\x0c} = ”3.gif” src = ”4.gif” /> (1) 1.gif (2) 2.gif (3) 3.gif (4) 4.gif Answers. -> ie -> Safari -> firefox -> others

6. ?

7. print<<EOF; <img /src \x00 ="ie.gif" /''src \x00 ="firefox1_5.gif" /''src=/slideshow/html-binary-hacks-gif89a-ployglot/429112/"firefox2_0.gif" /""src="gecko_others.gif" "s \x00 rc="safari2.gif" "src="safari3.gif" ""src="konqueror.gif" src \x00 ="w3m.gif" src \x0c ="opera.gif" src="others.gif" src="lynx.gif" /> EOF

8. http://wafful.org Demo

9. ?

10. It can detect “Konqueror”, “Safari2” !

11. No JavaScript & No CSS hacks

12. lynx

13. w3m

14. Mozilla/5.0 (PLAYSTATION 3; 1.00) ? others.gif

15. ?

16. 1.0 The End

17. 2.0 GIF89a Polyglot

18. Animation GIF image Yappoc.gif

19. どう見ても Yappo です本当にありがとうございました（ｒｙ

20. Polyglot DEMO HTML/CSS & JS & Perl & GIF89a

21. JavaScript in GIF GIF89a( q /*....../);sub GIF89a{print "Hello Perl!"} __END__#*/ =1 );function GIF89a(){alert("Hello JavaScrpt!")} /*<body style=visibility:hidden> <div style=position:relative;visibility:visible> <h1>Hello HTML!</h1><img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112?> <script src=# language=JavaScript></script></div> */ // ;

22. HTML/CSS in GIF GIF89a(q/*....../);sub GIF89a{print "Hello Perl!"} __END__#*/=1);function GIF89a(){alert("Hello JavaScrpt!")} /* <body style=visibility:hidden> <div style=position:relative;visibility:visible> <h1>Hello HTML!</h1>  <img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112?> <script src=# language=JavaScript></script> </div> */// ;

23. Perl in GIF GIF89a(q /*....../ );sub GIF89a{print "Hello Perl!"} __END__ #*/=1);function GIF89a(){alert("Hello JavaScrpt!")} /*<body style=visibility:hidden> <div style=position:relative;visibility:visible> <h1>Hello HTML!</h1><img src=/slideshow/html-binary-hacks-gif89a-ployglot/429112?> <script src=# language=JavaScript></script></div> */// ;

24. Demo

25. ?

26. ?

27. Thank you

狠狠撸

HTML Binary Hacks & GIF89a Ployglot

Recommended

More Related Content

What's hot (20)

Viewers also liked (6)

More from takesako (19)

HTML Binary Hacks & GIF89a Ployglot