Chirag Artani Sachinart
🎯
Sachinart
/ prototype-pollution-payloads
Created
August 15, 2022 12:30
Prototype pollution payloads copied from https://github.com/BlackFan/client-side-prototype-pollution and created in one line for recon purposes
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ?__proto__[test]=test | |
| #__proto__[test]=test | |
| ?__proto__.test=test | |
| ?constructor.prototype.test=test | |
| ?__proto__.test=test | |
| ?__proto__[test]=test | |
| ?__proto__[test]={"json":"value"} | |
| ?__proto__.test=test | |
| ?constructor.prototype.test=test | |
| ?__proto__.array=1|2|3 |
Sachinart
/ apple-reverse-dns-all-domains-subdomains.txt
Last active
August 19, 2022 16:54
REVERSE DNS & BRUTEFORCING EVERY SUBDOMAIN OWNED BY APPLE
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 0-courier2.push.apple.com | |
| 0-courier2.sandbox.push.apple.com | |
| 0-courier.push.apple.com | |
| 0-courier.sandbox.push.apple.com | |
| 10-courier2.push.apple.com | |
| 10-courier2.sandbox.push.apple.com | |
| 10-courier.push.apple.com | |
| 10-courier.sandbox.push.apple.com | |
| 116-202-179-217.applebot.apple.com | |
| 11-courier2.push.apple.com |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| access | |
| account | |
| accounts | |
| app | |
| appdemo | |
| admin | |
| analytics | |
| api | |
| api-docs | |
| api2 |
Sachinart
/ apple-reverse-dns-subdomains.txt
Last active
September 21, 2022 07:04
It took me 16 hours to run reverse DNS against whole apple ASN and still I was able to find only 21K subdomains
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 144.178.16.100 usdal2-corpclient-vpn.apple.com. | |
| 144.178.16.101 usdal2-corpclient-vpn11.apple.com. | |
| 144.178.16.102 usdal2-corpclient-vpn12.apple.com. | |
| 144.178.16.103 usdal2-corpclient-vpn13.apple.com. | |
| 144.178.16.104 usdal2-corpclient-vpn14.apple.com. | |
| 144.178.16.105 usdal2-corpclient-vpn15.apple.com. | |
| 144.178.16.106 usdal2-corpclient-vpn16.apple.com. | |
| 144.178.16.10 ussjc1-client-vpn15.apple.com. | |
| 144.178.16.11 ussjc1-client-vpn16.apple.com. | |
| 144.178.16.12 ussjc1-dcvpnclient-vpn.apple.com. |
Sachinart
/ bruteforce-all-subdomains-directory-wordlist.txt
Created
November 5, 2022 08:09
custom directory list to bruteforce all subdomains
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /index.php.bak | |
| /backup.bak | |
| /index.aspx.bak | |
| /Index.aspx.bak | |
| /Download.aspx.bak | |
| /search.php.bak | |
| /wordpress-db.php.bak | |
| /db.php.bak | |
| /phpinfo.php | |
| /info.php |
Sachinart
/ resolvers-dns.txt
Created
January 11, 2023 13:06
Latest DNS Resolvers List 2023 (Updated) Average 24000 qps
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1.0.0.1 | |
| 1.0.0.19 | |
| 100.19.136.109 | |
| 1.0.0.2 | |
| 1.0.0.3 | |
| 100.36.236.67 | |
| 100.4.184.110 | |
| 101.0.95.212 | |
| 101.101.101.101 | |
| 101.102.103.104 |
Sachinart
/ apple.com-recon-data-chirag-artani.txt
Created
January 13, 2023 22:20
34300 apple.com subdomains & Complete AS714 & AS6185 Reverse DNS - 8809 subdomains with all apple own domains.
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 0-courier2.push.apple.com | |
| 0-courier2.sandbox.push.apple.com | |
| 0-courier.push.apple.com | |
| 0-courier.sandbox.push.apple.com | |
| 10-courier2.push.apple.com | |
| 10-courier2.sandbox.push.apple.com | |
| 10-courier.push.apple.com | |
| 10-courier.sandbox.push.apple.com | |
| 116-202-179-217.applebot.apple.com | |
| 11-courier2.push.apple.com |
Sachinart
/ common.txt
Last active
September 26, 2025 04:45
custom wordlist common.txt for bruteforce path or directory
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /.env | |
| /phpinfo.php | |
| /info.php | |
| /admin.php | |
| /api/apidocs | |
| /apidocs | |
| /api | |
| /api/v2 | |
| /api/v1 | |
| /api/v3 |
Sachinart
/ apple-recon-cidr-asn.txt
Last active
May 19, 2025 07:52
Apple Recon data - CIDR & ASN based all IPs scanned | reverse DNS
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 144.178.16.10 ussjc1-client-vpn15.apple.com. | |
| 144.178.16.100 usdal2-corpclient-vpn.apple.com. | |
| 144.178.16.101 usdal2-corpclient-vpn11.apple.com. | |
| 144.178.16.102 usdal2-corpclient-vpn12.apple.com. | |
| 144.178.16.103 usdal2-corpclient-vpn13.apple.com. | |
| 144.178.16.104 usdal2-corpclient-vpn14.apple.com. | |
| 144.178.16.105 usdal2-corpclient-vpn15.apple.com. | |
| 144.178.16.106 usdal2-corpclient-vpn16.apple.com. | |
| 144.178.16.11 ussjc1-client-vpn16.apple.com. | |
| 144.178.16.12 ussjc1-dcvpnclient-vpn.apple.com. |
Sachinart
/ confluence-recon.txt
Created
October 10, 2023 19:00
All Confluence Instance Recon By Chirag Artani
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| http://1.117.188.132 | |
| http://1.117.189.43 | |
| http://100.25.201.12 | |
| http://101.132.77.158 | |
| http://101.200.32.122 | |
| http://101.200.61.45 | |
| http://101.34.66.167 | |
| http://101.35.143.219 | |
| http://101.37.163.158 | |
| http://101.37.255.135 |