This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http.html:"Wordpress" | |
http.html:"Discourse" | |
http.html:"Grafana" | |
http.html:"Jenkins" | |
http.html:"MongoDB" | |
http.html:"JBoss" | |
http.html:"Drupal" | |
http.html:"Joomla" | |
http.html:"Kibana" | |
http.html:"Elastic" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http.title:"Grafana" | |
http.title:"Jenkins" | |
http.title:"MongoDB" | |
http.title:"JBoss" | |
http.title:"Django" | |
http.title:"Drupal" | |
http.title:"Joomla" | |
http.title:"Discourse" | |
http.title:"Wordpress" | |
http.title:"Kibana" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http.status:"101" -------------------------------------------------------------- Switching Protocols (For finding web socket hijacking) | |
http.status:"102" -------------------------------------------------------------- WebDAV (For checking enabled webdav) | |
http.status:"200" -------------------------------------------------------------- OK | |
http.status:"301" -------------------------------------------------------------- Moved Permanently | |
http.status:"302" -------------------------------------------------------------- Moved Temporarily | |
http.status:"307" -------------------------------------------------------------- Temporary Redirect | |
http.status:"308" -------------------------------------------------------------- Permanent Redirect | |
http.status:"401" -------------------------------------------------------------- Unauthorized (For checking authorization bypass) | |
http.status:"403" -------------------------------------------------------------- Forbidden (For checking forbidden bypass) | |
http.status:"404" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
port:21 "proftpd" | |
port:21 "220" "230 Login successful." | |
port:27017 "MongoDB Server Information" | |
port:22 OpenSSH | |
port:25 "exim" | |
port:80 "Apache httpd" | |
port:3389 "remote desktop" | |
NOTE 1 : You need to enumerate and look for the sensitive information. This dorks will not give you the direct hit to vulnerabilities. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http.favicon.hash:"81586312" ------------------------------------------------------- Jenkins | |
http.favicon.hash:"743365239" ------------------------------------------------------- Atlassian | |
http.favicon.hash:"628535358" ------------------------------------------------------- Atlassian | |
http.favicon.hash:"705143395" ------------------------------------------------------- Atlassian | |
http.favicon.hash:"855273746" ------------------------------------------------------- JIRA | |
http.favicon.hash:"981867722" ------------------------------------------------------- Atlassian – JIRA | |
http.favicon.hash:"552727997" ------------------------------------------------------- Atlassian – JIRA | |
http.favicon.hash:"-1581907337" ------------------------------------------------------- Atlassian – JIRA | |
http.favicon.hash:"-305179312" ------------------------------------------------------- Atlassian – Confluence | |
http.favicon.hash:"-1642532491" ------------------------------------------- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
"For finding template injection" | |
http.component:"AngularJS" | |
http.component:"Ruby" | |
http.component:"Ruby on Rails" | |
http.component:"Python" | |
------------------------------- | |
"For finding php vulnerabilites" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http.component_category:"Programming languages" | |
http.component_category:"Databases" | |
http.component_category:"CDN" | |
http.component_category:"Caching" | |
http.component_category:"Javascript libraries" | |
http.component_category:"Javascript frameworks" | |
http.component_category:"Security" | |
http.component_category:"Miscellaneous" | |
http.component_category:"Maps" | |
http.component_category:"CMS" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http.waf:"Cloudflare" | |
http.waf:"Cloudfront" | |
http.waf:"Akamai" | |
http.waf:"AWS" | |
http.waf:"Azure" | |
http.waf:"Imperva" | |
http.waf:"Nginx" | |
http.waf:"Barracuda" | |
http.waf:"F5" | |
http.waf:"Sucuri" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ssl.alpn:"http/1.0" | |
ssl.alpn:"http/1.1" | |
ssl.alpn:"http/2" | |
ssl.alpn:"http/2.0" | |
ssl.alpn:"h2" | |
ssl.alpn:"spdy/1" | |
ssl.alpn:"spdy/2" | |
ssl.alpn:"spdy/3" | |
ssl.alpn:"http/0.9" | |
ssl.alpn:"acme-tls/1" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
product:"Apache httpd" | |
product:"OpenSSH" | |
product:"ciscoSystems" | |
product:"nginx" | |
product:"BigIP" | |
product:"Microsoft HTTPAPI httpd" | |
product:"Apache Tomcat/Coyote JSP engine" | |
product:"OpenResty" | |
product:"Postfix smtpd" | |
product:"MySQL" |