KhanJanny khanjanny

## headers.txt
ab_idproot
accept-ch
accept-ch-lifetime
accept-ranges
access-control-allow-credentials
access-control-allow-headers
access-control-allow-method
access-control-allow-methods
access-control-allow-origin
access-control-expose-headers

## gist:0aee5a3a891ec83d203660e5e0279740
export GOPATH=$HOME/go
export GOROOT=/usr/local/go
export PATH=$PATH:$GOROOT/bin:$GOPATH/bin

## gist:1756d45eb4aa537f42975ae34b1fab2c
root:!:18816:0:99999:7:::
daemon:*:18667:0:99999:7:::
bin:*:18667:0:99999:7:::
sys:*:18667:0:99999:7:::
sync:*:18667:0:99999:7:::
games:*:18667:0:99999:7:::
man:*:18667:0:99999:7:::
lp:*:18667:0:99999:7:::
mail:*:18667:0:99999:7:::
news:*:18667:0:99999:7:::

## amass_config.ini
share = true
#mode = passive
mode = active

#output_directory = amass
scripts_directory = /home/khan/scripts

maximum_dns_queries = 10000

[resolvers]

## WAHH_Task_Checklist.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                khanjanny
                / WAHH_Task_Checklist.md
            
            
              Last active
              February 18, 2021 04:47
            
          
    The Web Application Hacker's Handbook

Web Application Hacker's Handbook Task checklist as a Github-Flavored Markdown file
Contents


Recon and analysis
Test handling of access
Test handling of input
Test application logic
Assess application hosting
Miscellaneous tests


## start_hunt.sh
#!/bin/bash
#This one is demo you can make your own stracture for yourself just add dir and file.... have fun

mkdir ~/work/$1
mkdir ~/work/$1/finaldata
mkdir ~/work/$1/finaldata/portscan
mkdir ~/work/$1/domains
mkdir ~/work/$1/recondata
mkdir ~/work/$1/needcheck
touch ~/work/$1/finaldata/subdomains.txt

## xfce4.sh
#!/bin/bash
echo "[+] Installing XFCE4, this will take a while"
sudo apt update
sudo apt dist-upgrade -y --force-yes
sudo apt --yes --force-yes install kali-desktop-xfce xorg xrdp
echo "[+] Configuring XRDP to listen on port 3390 (but not starting the service)..."
echo "[+] To start the service run: sudo /etc/init.d/xrdp start"
sudo sed -i 's/port=3389/port=3390/g' /etc/xrdp/xrdp.ini
sudo echo "alias startx=\"sudo /etc/init.d/xrdp start\"" > ~/.bash_aliases
sudo echo "alias stopx=\"sudo /etc/init.d/xrdp stop\"" > ~/.bash_aliases

## urlwatch_config
display:
  error: false
  new: true
  unchanged: false
job_defaults:
  all: {}
  browser: {}
  shell: {}
  url: {}
report:

## xunfeng.sh
#!/bin/sh
set -e
#
# This script is meant for quick & easy install via:
#   'curl -sSL https://raw.githubusercontent.com/ysrc/xunfeng/master/install/install.sh | sh'
# or:
#   'wget -qO- https://raw.githubusercontent.com/ysrc/xunfeng/master/install/install.sh | sh'
#
export MONGODB_URL="http://downloads.mongodb.org/linux/mongodb-linux-x86_64-3.4.0.tgz"
export XUNFENG_REPO="https://github.com/ysrc/xunfeng.git"

## reconjam
apt install git gcc make libpcap-dev python-argparse massdns golang python python3
pip install py-altdns


go get -v github.com/projectdiscovery/subfinder/cmd/subfinder
go get github.com/haccer/subjack
go get -u github.com/rverton/webanalyze/...
go get github.com/tomnomnom/httprobe
go get github.com/tomnomnom/waybackurls
	ab_idproot
	accept-ch
	accept-ch-lifetime
	accept-ranges
	access-control-allow-credentials
	access-control-allow-headers
	access-control-allow-method
	access-control-allow-methods
	access-control-allow-origin
	access-control-expose-headers
	export GOPATH=$HOME/go
	export GOROOT=/usr/local/go
	export PATH=$PATH:$GOROOT/bin:$GOPATH/bin
	root:!:18816:0:99999:7:::
	daemon:*:18667:0:99999:7:::
	bin:*:18667:0:99999:7:::
	sys:*:18667:0:99999:7:::
	sync:*:18667:0:99999:7:::
	games:*:18667:0:99999:7:::
	man:*:18667:0:99999:7:::
	lp:*:18667:0:99999:7:::
	mail:*:18667:0:99999:7:::
	news:*:18667:0:99999:7:::
	share = true
	#mode = passive
	mode = active

	#output_directory = amass
	scripts_directory = /home/khan/scripts

	maximum_dns_queries = 10000

	[resolvers]
	#!/bin/bash
	#This one is demo you can make your own stracture for yourself just add dir and file.... have fun

	mkdir ~/work/$1
	mkdir ~/work/$1/finaldata
	mkdir ~/work/$1/finaldata/portscan
	mkdir ~/work/$1/domains
	mkdir ~/work/$1/recondata
	mkdir ~/work/$1/needcheck
	touch ~/work/$1/finaldata/subdomains.txt
	#!/bin/bash
	echo "[+] Installing XFCE4, this will take a while"
	sudo apt update
	sudo apt dist-upgrade -y --force-yes
	sudo apt --yes --force-yes install kali-desktop-xfce xorg xrdp
	echo "[+] Configuring XRDP to listen on port 3390 (but not starting the service)..."
	echo "[+] To start the service run: sudo /etc/init.d/xrdp start"
	sudo sed -i 's/port=3389/port=3390/g' /etc/xrdp/xrdp.ini
	sudo echo "alias startx=\"sudo /etc/init.d/xrdp start\"" > ~/.bash_aliases
	sudo echo "alias stopx=\"sudo /etc/init.d/xrdp stop\"" > ~/.bash_aliases
	display:
	error: false
	new: true
	unchanged: false
	job_defaults:
	all: {}
	browser: {}
	shell: {}
	url: {}
	report:
	#!/bin/sh
	set -e
	#
	# This script is meant for quick & easy install via:
	# 'curl -sSL https://raw.githubusercontent.com/ysrc/xunfeng/master/install/install.sh \| sh'
	# or:
	# 'wget -qO- https://raw.githubusercontent.com/ysrc/xunfeng/master/install/install.sh \| sh'
	#
	export MONGODB_URL="http://downloads.mongodb.org/linux/mongodb-linux-x86_64-3.4.0.tgz"
	export XUNFENG_REPO="https://github.com/ysrc/xunfeng.git"
	apt install git gcc make libpcap-dev python-argparse massdns golang python python3
	pip install py-altdns



	go get -v github.com/projectdiscovery/subfinder/cmd/subfinder
	go get github.com/haccer/subjack
	go get -u github.com/rverton/webanalyze/...
	go get github.com/tomnomnom/httprobe
	go get github.com/tomnomnom/waybackurls