The Web Application Hacker's Handbook
Web Application Hacker's Handbook Task checklist as a Github-Flavored Markdown file
#!/bin/bash | |
# Written by Frans Rosén (twitter.com/fransrosen) | |
_debug="$2" #turn on debug | |
_timeout="20" | |
#you need a valid key, since the errors happens after it validates that the key exist. we do not need the secret key, only access key | |
_aws_key="AKIA..." | |
H_ACCEPT="accept-language: en-US,en;q=0.9,sv;q=0.8,zh-TW;q=0.7,zh;q=0.6,fi;q=0.5,it;q=0.4,de;q=0.3" | |
H_AGENT="user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.146 Safari/537.36" |
echo "" | |
echo "************ Github Dork Links (must be logged in) *******************" | |
echo "" | |
echo " password" | |
echo "https://github.com/search?q=%22$1%22+password&type=Code" | |
echo "https://github.com/search?q=%22$without_suffix%22+password&type=Code" | |
echo "" | |
echo " npmrc _auth" |
for i in $(cat yahoobgp); do echo""; echo "ASN $i";echo ""; amass.netdomains -asn $i;echo ""; done |
#!/bin/bash | |
expand $1 |cut -d " " -f1|sed 's/AS//g' | |
echo "" | |
echo "" | |
lined=`expand $1 |cut -d " " -f1|sed 's/AS//g'| tr '\n' ','` |
#!/bin/bash | |
export DEBIAN_FRONTEND=noninteractive; | |
echo "[*] Starting Install... [*]" | |
echo "[*] Upgrade installed packages to latest [*]" | |
echo -e "\nRunning a package upgrade...\n" | |
apt-get -qq update && apt-get -qq dist-upgrade -y | |
apt full-upgrade -y | |
apt-get autoclean | |
echo "[*] Install stuff I use all the time [*]" |
. | |
.. | |
........ | |
@ | |
* | |
*.* | |
*.*.* | |
🎠|
` | |
~/ | |
~ | |
×™× | |
___ | |
__ | |
_ |
## AWS | |
# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories | |
http://169.254.169.254/latest/user-data | |
http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME] | |
http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME] | |
http://169.254.169.254/latest/meta-data/ami-id | |
http://169.254.169.254/latest/meta-data/reservation-id | |
http://169.254.169.254/latest/meta-data/hostname | |
http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key |
Web Application Hacker's Handbook Task checklist as a Github-Flavored Markdown file
. | |
.. | |
........ | |
@ | |
* | |
*.* | |
*.*.* | |
🎠|