Security Researcher

PushkraJ PushkraJ99

Security Researcher

🥷🏻 Upgrade Tools For Fun

remonsec / s3ToverPolicy

Created August 9, 2020 15:43

This is the bucket policy of takeover AWS s3 bucket

vijay922 / wordlist.txt

Last active May 14, 2024 19:29

ShubhamPy / shodanRecon

Last active September 21, 2023 06:59

	org: org_name
	kibana content-length:217
	org:”Amazon” ssl:”target”
	ssl:”target”
	html:”Dashboard Jenkins” http.component:”jenkins”
	http.title:”302 Found”
	http.component%3A”java”
	https://www.shodan.io/host/ip#9200
	https://www.shodan.io/host/ip
	X-Redirect-By: WordPress ssl:”name”

sbnsec / webshell-list.txt

Created May 8, 2020 08:59

List of well known webshell

gwen001 / ejs.sh

Last active July 7, 2024 07:33

onliner to extract endpoints from JS files of a given host

	curl -L -k -s https://www.example.com \| tac \| sed "s#\\\/#\/#g" \| egrep -o "src['\"]?\s[=:]\s['\"]?[^'\"]+.js[^'\"> ]" \| awk -F '//' '{if(length($2))print "https://"$2}' \| sort -fu \| xargs -I '%' sh -c "curl -k -s \"%\" \| sed \"s/[;}\)>]/\n/g\" \| grep -Po \"(['\\\"](https?:)?[/]{1,2}[^'\\\"> ]{5,})\|(\.(get\|post\|ajax\|load)\s\(\s*['\\\"](https?:)?[/]{1,2}[^'\\\"> ]{5,})\"" \| awk -F "['\"]" '{print $2}' \| sort -fu

	# using linkfinder
	function ejs() {
	URL=$1;
	curl -Lks $URL \| tac \| sed "s#\\\/#\/#g" \| egrep -o "src['\"]?\s[=:]\s['\"]?[^'\"]+.js[^'\"> ]*" \| sed -r "s/^src['\"]?[=:]['\"]//g" \| awk -v url=$URL '{if(length($1)) if($1 ~/^http/) print $1; else if($1 ~/^\/\//) print "https:"$1; else print url"/"$1}' \| sort -fu \| xargs -I '%' sh -c "echo \"\n##### %\";wget --no-check-certificate --quiet \"%\"; basename \"%\" \| xargs -I \"#\" sh -c 'linkfinder.py -o cli -i #'"
	}

	# with file download (the new best one):
	# but there is a bug if you don't provide a root url

abdelhady360 / dorks.txt

Created February 20, 2020 09:34

List of Google Dorks for sites that have responsible disclosure program / bug bounty program

	inurl /bug bounty
	inurl : / security
	inurl:security.txt
	inurl:security "reward"
	inurl : /responsible disclosure
	inurl : /responsible-disclosure/ reward
	inurl : / responsible-disclosure/ swag
	inurl : / responsible-disclosure/ bounty
	inurl:'/responsible disclosure' hoodie
	responsible disclosure swag r=h:com

jhaddix / Github bash generated search links (from hunter.sh)

Created January 12, 2020 19:55

Github bash generated search links (from hunter.sh)



	echo ""
	echo "********** Github Dork Links (must be logged in) *****************"
	echo ""
	echo " password"
	echo "https://github.com/search?q=%22$1%22+password&type=Code"
	echo "https://github.com/search?q=%22$without_suffix%22+password&type=Code"
	echo ""
	echo " npmrc _auth"

yassineaboukir / List of API endpoints & objects

Last active April 22, 2025 14:13

A list of 3203 common API endpoints and objects designed for fuzzing.

warecrash / makekali.sh

Last active March 10, 2025 21:20

Convert Debian to Kali

	apt update
	apt -y install wget gnupg dirmngr
	wget -q -O - https://archive.kali.org/archive-key.asc \| gpg --import
	gpg --keyserver hkp://keys.gnupg.net --recv-key 44C6513A8E4FB3D30875F758ED444FF07D8D0BF6
	echo "deb http://http.kali.org/kali kali-rolling main non-free contrib" >> /etc/apt/sources.list
	gpg -a --export ED444FF07D8D0BF6 \| sudo apt-key add -
	apt update
	apt -y upgrade
	apt -y dist-upgrade
	apt -y autoremove --purge

Zawadidone / Dutch-Government-Domains

Last active November 18, 2024 20:06