dwisiswant0

<?php
/*
 * XSS filter, recursively handles HTML tags & UTF encoding
 * Optionally handles base64 encoding
 *
 * ***DEPRECATION RECOMMENDED*** Not updated or maintained since 2011
 * A MAINTAINED & BETTER ALTERNATIVE => kses
 * https://github.com/RichardVasquez/kses/
 *
 * This was built from numerous sources

dwisiswant0

import requests
import sys
import json


def waybackurls(host, with_subs):
    if with_subs:
        url = 'http://web.archive.org/cdx/search/cdx?url=*.%s/*&output=json&fl=original&collapse=urlkey' % host
    else:
        url = 'http://web.archive.org/cdx/search/cdx?url=%s/*&output=json&fl=original&collapse=urlkey' % host

dwisiswant0

/((?:http|https):\/\/)?(?:www|m|mbasic|0|free)?(.facebook.com\/)((?:[a-zA-Z0-9.]+)?$|(?:profile.php\?id=\w+([0-9]*)))/

Matches patterns such as:

• http://www.facebook.com/zuck
• http://www.facebok.com/profile.php?id=4
• http://m.facebook.com/zuck
• http://m.facebok.com/profile.php?id=4
• http://mbasic.facebook.com/zuck

dwisiswant0

#!/bin/bash

# Mass cURL
# i made it for Sublist3r purposes
# --
# dw1, 2018

FILE=$1
RESULT_RESPONSE=""
PROTO="http"

dwisiswant0

# -*- coding: utf_8 -*-

# sudo pip install androguard django

import io
import os
import subprocess
import sys
from androguard.core.bytecodes import apk
from django.conf import settings

dwisiswant0

<?php
define("REST", 30);
date_default_timezone_set("Asia/Jakarta");

function randStr($l) {
	$data = "abcdefghijklmnopqrstuvwxyz1234567890";
	$word = "";
	for ($a=0; $a<$l; $a++) $word .= $data{rand(0, strlen($data) - 1 )};
	return $word;
}

dwisiswant0

# https://securitychops.com/2019/08/31/dev/random/one-liner-to-install-burp-cacert-into-android.html
#
curl --proxy http://127.0.0.1:8080 -o cacert.der http://burp/cert  \
&& openssl x509 -inform DER -in cacert.der -out cacert.pem \
&& cp cacert.der $(openssl x509 -inform PEM -subject_hash_old -in cacert.pem |head -1).0 \
&& adb root \
&& adb remount \
&& adb push $(openssl x509 -inform PEM -subject_hash_old -in cacert.pem |head -1).0 /sdcard/ \
&& echo -n "mv /sdcard/$(openssl x509 -inform PEM -subject_hash_old -in cacert.pem |head -1).0 /system/etc/security/cacerts/" | adb shell \
&& echo -n "chmod 644 /system/etc/security/cacerts/$(openssl x509 -inform PEM -subject_hash_old -in cacert.pem |head -1).0" | adb shell \

dwisiswant0

The following files show an example of how to create subdomains for onion site hidden services. (This hasn't been tested for hidden services for anything other than HTTP/HTTPS.)

(You might also want to read our blog post about ProPublica’s Tor hidden service, including a tutorial and notes on running a hidden service: https://www.propublica.org/nerds/item/a-more-secure-and-anonymous-propublica-using-tor-hidden-services )

In general, this works (maybe just in recent Tor clients) because Tor will handle the connection to www.xxxxxxxxxxxxxxxx.onion as a connection to xxxxxxxxxxxxxxxx.onion. The encapsulated HTTP/HTTPS connection contains the subdomain in the Host: header (and in the case of HTTPS, the SNI

dwisiswant0

#!/bin/bash

#####
#
# St8out - Extra one-liner for reconnaissance
#
# Usage: ./st8out.sh target.com
#
# Resources:
# - https://github.com/j3ssie/metabigor

dwisiswant0

#!/bin/bash
OUTPUT="$(pwd)"
TARGET=$(curl -s $1)
VIDEO_ID=$(echo "$TARGET" | grep -Eo '"video_id":[0-9]+' | sed 's/[^0-9]*//g')
TITLE=$(echo "$TARGET" | grep -Eo '<title>(.+)</title>' | sed 's/\///g; s/<title>//g' | sed 's/meTube.id - //')
INDEX=$(echo "$TARGET" | grep -Eo '"video_source":"(.+).m3u8' | sed 's/"//g; s/video_source//g' | cut -c2-)
CDN=$(echo "$INDEX" | sed 's/index.m3u8//')
LIST=($(curl -s "$INDEX" | sed '/^#/d'))
echo -e "Title: $TITLE\n"
echo "Choose video quality: "