Skip to content

Instantly share code, notes, and snippets.

View Splint3r7's full-sized avatar
🎯
Focusing

Splint3r7 Splint3r7

🎯
Focusing
View GitHub Profile
# this command will return instances where the child_process module is loaded.
# that module is generally a good signal that the application is shelling out
egrep -r --exclude-dir "node_modules" --include "*.js" --exclude "*.min.*" -e "require(\s*)\((\s*)'child_process'(\s*))" .
# this command will return instances where code is dynamically executed.
egrep -r --exclude-dir "node_modules" --include "*.js" --exclude "*.min.*" -e "eval(\s*)\(" .
# this command will check common dangerous functions and report when strings are arguments
egrep -r --exclude-dir "node_modules" --include "*.js" --exclude "*.min.*" -e "(setInterval|setTimeout|new(\s*)Function)(\s*)\((\s*)\".*\"" .
We can make this file beautiful and searchable if this error is corrected: No commas found in this CSV file in line 0.
domain
123rf.com
1stdibs.com
2u.com
ba.com
babylist.com
bananatag.com
baylor.edu
bbcgoodfood.com
bcm.edu
@Splint3r7
Splint3r7 / rising-1.0.2-command-injection.md
Last active November 11, 2023 14:16
Command Injection Vulnerability in Rising 1.0.2
@Splint3r7
Splint3r7 / AllRubyGemNames.txt
Last active October 31, 2023 06:54
Extract All Ruby Gem Names From - https://rubygems.org/gems
This file has been truncated, but you can view the full file.
a
a--
A-
a0
a0-tzmigration-ruby
a1
a11n
A_123
a1330ks_bmi
a13g
[
"express",
"afnan"
]
@Splint3r7
Splint3r7 / CF_waf_generate.sh
Last active December 27, 2022 19:22
bash script to genereate a firewall rule for CloudFlare WAF
#!/bin/bash
filename=$1
output_str="("
while read -r line; do
output_str+="ip.src eq $line) or ("
done < "$filename"
output_str=${output_str% or (*}
@Splint3r7
Splint3r7 / npm-package-emails.py
Last active November 1, 2022 06:48
Extract Emails from Npm Packge Names - https://api.npms.io/
import requests
import sys
import json
import concurrent.futures
output_file = open("emails_res.txt", "w")
def Emails(package):
req = requests.get("https://api.npms.io/v2/package/{}".format(package))
@Splint3r7
Splint3r7 / content_discovery_all.txt
Created May 5, 2019 11:00 — forked from jhaddix/content_discovery_all.txt
a masterlist of content discovery URLs and files (used most commonly with gobuster)
This file has been truncated, but you can view the full file.
`
~/
~
ים
___
__
_
.aaa
.aarp
.abarth
.abb
.abbott
.abbvie
.abc
.able
.abogado
.abudhabi
@Splint3r7
Splint3r7 / similarity.py
Last active July 25, 2022 09:29
Domain Similarity Script
# Coded by Geekink
#!/usr/bin/env python3
import urllib.request
import sqlite3
import os.path
import re
import math