Anthony Bordel minkione
minkione
/ nuclei-scan.sh
Created
January 22, 2021 13:23
— forked from dwisiswant0/nuclei-scan.sh
Automate nuclei for given hosts
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| OUT="~/nuclei-results/$1" | |
| TPL="~/nuclei-templates" | |
| mkdir -p ${OUT} | |
| SUB=$(subfinder -d $1 -silent | httprobe | tee ${OUT}/$1.txt) | |
| cd ${TPL}; git pull origin master && cd - | |
| for tpl in $(find $TPL -name "*.yaml"); do $GOPATH/bin/nuclei -l ${OUT}/$1.txt -t $tpl -o "${OUT}/$(basename "$tpl" .yaml).txt"; done | |
| find ${OUT} -name "*.txt" -size 0 -delete |
minkione
/ auto.sh
Created
January 22, 2021 13:23
— forked from nandakrr/auto.sh
Combination of Multiple Tools to Automate Recon Process
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Combination of Multiple Tools for Personal Use by @nk1202 . | |
| #!/bin/bash | |
| url=$1 | |
| if [ ! -d "output/$url" ];then | |
| mkdir output/$url | |
| fi | |
| if [ ! -d "output/$url/recon" ];then |
minkione
/ bbhtv2.sh
Created
January 22, 2021 09:17
— forked from KathanP19/bbhtv2.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| RED=$(tput setaf 1) | |
| GREEN=$(tput setaf 2) | |
| BLUE=$(tput setaf 4) | |
| RESET=$(tput sgr0) | |
| AMASS_VERSION=3.8.2 | |
minkione
/ Install.sh
Created
January 22, 2021 09:16
— forked from j3rrykh4n/Install.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| echo "you should die now :3 it'll be take some time" | |
| #@Tomnomnom | |
| go get -u -v github.com/tomnomnom/anew | |
| go get -u -v github.com/tomnomnom/httprobe | |
| go get -u -v github.com/tomnomnom/assetfinder | |
| go get -u -v github.com/tomnomnom/waybackurls | |
| go get -u -v github.com/tomnomnom/fff | |
| go get -u -v github.com/tomnomnom/qsreplace |
minkione
/ install.sh
Created
January 21, 2021 20:02
— forked from khanjanny/install.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| apt update | |
| apt install wget curl python python3 python-pip python3-pip python-dev zip git phantomjs whatweb python-virtualenv bc locate dnsutils apache2 tree jq | |
| pip install boto wfuzz google wafw00f truffleHog | |
| #install golang phantomjs | |
| #golang profile... |
minkione
/ auto_xss.sh
Created
January 20, 2021 21:19
Automating the process of finding reflected characters in websites
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| subfinder -d domain.com -all -nC -nW -silent -t 30 | sort -u | httprobe -c 100 | waybackurls | sort -u | gf xss | qsreplace -a > myxss.txt && cat myxss.txt | qsreplace -a | kxss2 2> /dev/null | grep -v "\[\]" |
minkione
/ SSTI_RCE_Automated.sh
Created
January 20, 2021 21:17
Pass in a file containing subdomains. Replaces GET params with daman{{9*9}} and checks if it executes
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| while read Line | |
| do | |
| echo "|||$Line" | |
| # First grab the subdomain and check wayback for urls | |
| # Replace each GET param in each URL with the template injection | |
| # Use ffuf to request the URL and check if daman81 is in the response | |
| waybackurls "$Line" | sort -u | qsreplace -a 2> /dev/null | qsreplace "rce<%= 9 * 9 %>rce{{9*9}}rce{{9*'9'}}rce#{9*9}" 2> /dev/null | grep rce > temp_file.txt && ffuf -u FUZZ -s -w temp_file.txt -mr "rce81|rce999999999" -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0)HackerOne Gecko/20100101 Firefox/81.0" | |
| done < "${1:-/dev/stdin}" |
minkione
/ setupmykl.sh
Created
January 20, 2021 21:14
— forked from todmephis/setupmykl.sh
Script to setup my kl installation. (deprecated)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| #LAST UPDATE: 30/03/2020 | |
| #LAS CHANGE: added pkg-config. | |
| RED='\033[0;31m' | |
| GRN='\033[0;32m' | |
| YLL='\033[1;33m' | |
| NC='\033[0m' # No Color | |
| #FILE NAMES | |
| PTROOTDIR="pentestTools" | |
| PTDIRS="{lists,tools,shells/{klbuiltin,}}" |
minkione
/ amass.sh
Created
January 20, 2021 20:55
— forked from LuD1161/amass.sh
Scripts for different tools are here, run setup_bbty.sh to copy these in the scripts folder
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| domain=$1 | |
| resultDir=$2 | |
| resultfile=$resultDir/$domain.amass.txt | |
| touch $resultfile | |
| echo "" >> $resultDir/log.txt | |
| echo "AMASS Logs Now" >> $resultDir/log.txt | |
| echo "" >> $resultDir/log.txt |
minkione
/ setup_bbty.sh
Last active
January 21, 2021 14:14
— forked from LuD1161/setup_bbty.sh
Setup Bug Bounty Tools on AWS instance / any VPS for that matter
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # Execute as wget -O - https://gist.github.com/LuD1161/66f30da6d8b6c1c05b9f6708525ea885/raw | bash | |
| # # Thanks JeffreyShran for the gist url thing | |
| # | |
| # | |
| # It's debian based, so for centos and likewise you have to change apt to yum and similarly | |
| # | |
| InstallationStartTime=$(date +%s) |