Write-up H1-212
Title | Description |
---|---|
Tools | The tools etc. which I used during this CTF |
My journey | My experience during this CTF |
The steps | The steps to reproduce |
Things learned | Summary of things we used/learned in this CTF |
H1-212
Title | Description |
---|---|
Tools | The tools etc. which I used during this CTF |
My journey | My experience during this CTF |
The steps | The steps to reproduce |
Things learned | Summary of things we used/learned in this CTF |
while read -r line | |
do | |
echo "$line.$2" >> $3 | |
done < $1 |
~/scripts/append_subdomains.sh ~/wordlists/commonspeak2-subdomains.txt $domain "wordlist.txt" |
awk -F ". " '{print $1}' "wordlist-online.txt" > "wordlist-filtered.txt" && mv "wordlist-filtered.txt" "wordlist-online.txt" |
subfinder -d $domain -nW -o "subfinder-online.txt" -rL ~/wordlists/resolvers.txt > /dev/null 2>&1 |
python ~/tools/altdns/altdns.py -i "subdomains.txt" -o "altdns-wordlist.txt" -w ~/tools/altdns/words.txt |
sort -u "subdomains.txt" -o "subdomains.txt" |
cat wordlist-online.txt subfinder-online.txt > subdomains.txt |
003random:~/ $ printf "https://poc-server.com\nhttps://example.com\nhttps://notexisting003.com\nhttp://google.com" | online | |
https://poc-server.com | |
https://example.com | |
http://google.com |
domain="poc-server.com" | |
for port in `sed '/^$/d' "ports.txt"`; do | |
url="$domain:$port" | |
http=false | |
https=false | |
protocol="" | |
if [[ $(echo "http://$url" | online) ]]; then http=true; else http=false; fi | |
if [[ $(echo "https://$url" | online) ]]; then https=true; else https=false; fi |