Web Application Hacker's Handbook Task checklist as a Github-Flavored Markdown file
Brutexploiter brutexploiter
🎯
brutexploiter
/ mobsec_apk_utils.sh
Created
July 15, 2024 09:06
https://gist.github.com/teknogeek/2333944a66cac49463975f11fb05dd36
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Simple alias functions | |
| PROCYON_VERSION="0.5.34" | |
| PLAYSTORE_DOWNLOADER_PATH="$HOME/.bb/MobSec/Android/PlaystoreDownloader" | |
| alias apktool="java -jar $HOME/.bb/MobSec/Android/Apktool/brut.apktool/apktool-cli/build/libs/apktool-cli-all.jar" | |
| alias jadx="JADX_OPTS='-Xmx16G' $HOME/.bb/MobSec/Android/jadx/build/jadx/bin/jadx --no-res --threads-count 12 --deobf --deobf-min 3 --deobf-use-sourcename --show-bad-code --escape-unicode" | |
| alias procyon="$(/usr/libexec/java_home -v 1.8)/bin/java -jar $HOME/.bb/MobSec/Android/procyon-decompiler-$PROCYON_VERSION.jar -ss" | |
| alias enjarify="$HOME/.bb/MobSec/Android/enjarify-go/enjarify-rs/target/release/enjarify-rs" |
brutexploiter
/ atopoc.js
Created
July 13, 2024 07:25
https://x.com/ArmanSameer95/status/1811177998453727534
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| document.body.innerHTML = ""; | |
| var scriptss = document.scripts; | |
| for (var i = scriptss.length - 1; i >= 0; i--) { | |
| var script = scriptss[i]; | |
| script.parentNode.removeChild(script); | |
| } | |
| var s = document.createElement('style'); | |
| var c = 'body > *:not(form):not(textarea) { display: none !important; }'; |
brutexploiter
/ httpserver.py
Created
April 10, 2024 05:19
https://gist.github.com/xdavidhu/9491a9918b4dfbaffb789a8b9f2d1672
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import http.server | |
| import ssl | |
| import sys | |
| import random | |
| import string | |
| import argparse | |
| import socket | |
| hostname = "httpserver.example.com" | |
| redirect_enabled = False |
brutexploiter
/ user-agents.txt
Created
July 10, 2023 08:23
Note: This list is provided for reference purposes and may not include the latest or most comprehensive user agents. It is recommended to update the list regularly to include new user agents as they become available.
This file has been truncated, but you can view the full file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Mozilla/5.0 (Linux; U; Android 4.4.2; en-us; SCH-I535 Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | |
| Mozilla/5.0 (Linux; U; Android 4.0.3; ko-kr; LG-L160L Build/IML74K) AppleWebkit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | |
| Mozilla/5.0 (Linux; U; Android 4.0.3; de-ch; HTC Sensation Build/IML74K) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | |
| Mozilla/5.0 (Linux; U; Android 2.3.5; zh-cn; HTC_IncredibleS_S710e Build/GRJ90) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 | |
| Mozilla/5.0 (Linux; U; Android 2.3.5; en-us; HTC Vision Build/GRI40) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 | |
| Mozilla/5.0 (Linux; U; Android 2.3.4; fr-fr; HTC Desire Build/GRJ22) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 | |
| Mozilla/5.0 (Linux; U; Android 2.3.4; en-us; T-Mobile myTouch 3G Slide Build/GRI40) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 | |
| Mozilla/5.0 (Linu |
brutexploiter
/ WAHH_Task_Checklist.md
Created
October 6, 2022 19:09
— forked from jhaddix/Testing_Checklist.md
The Web Application Hacker's Handbook - Task Checklist - Github-Flavored Markdown
brutexploiter
/ Generic keys
Created
September 12, 2022 10:02
— forked from h4x0r-dz/Generic keys
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| (?i)((access_key|access_token|admin_pass|admin_user|algolia_admin_key|algolia_api_key|alias_pass|alicloud_access_key|amazon_secret_access_key|amazonaws|ansible_vault_password|aos_key|api_key|api_key_secret|api_key_sid|api_secret|api.googlemaps AIza|apidocs|apikey|apiSecret|app_debug|app_id|app_key|app_log_level|app_secret|appkey|appkeysecret|application_key|appsecret|appspot|auth_token|authorizationToken|authsecret|aws_access|aws_access_key_id|aws_bucket|aws_key|aws_secret|aws_secret_key|aws_token|AWSSecretKey|b2_app_key|bashrc password|bintray_apikey|bintray_gpg_password|bintray_key|bintraykey|bluemix_api_key|bluemix_pass|browserstack_access_key|bucket_password|bucketeer_aws_access_key_id|bucketeer_aws_secret_access_key|built_branch_deploy_key|bx_password|cache_driver|cache_s3_secret_key|cattle_access_key|cattle_secret_key|certificate_password|ci_deploy_password|client_secret|client_zpk_secret_key|clojars_password|cloud_api_key|cloud_watch_aws_access_key|cloudant_password|cloudflare_api_key|cloudflare_auth_k |