nullenc0de

## content_discovery_nullenc0de.txt
/
$$$lang-translate.service.js.aspx
$367-Million-Merger-Blocked.html
$defaultnav
${idfwbonavigation}.xml
$_news.php
$search2
£º
.0

## passwords.txt
August1
August123
August20
August20!
August2020
August2020!
August@20
August@2020
Autumn1
Autumn123

## proxy.sh
#!/bin/bash

# Set the proxy server and port
PROXY_SERVER="127.0.0.1"
PROXY_PORT="8080"

# Install Proxychains4
echo "Installing Proxychains4..."
sudo apt-get update
sudo apt-get install -y proxychains4

## block_sec.sh
#!/bin/bash

apt install golang -y
GOROOT="/usr/local/go"
PATH="${PATH}:${GOROOT}/bin"
GOPATH=$HOME/go
PATH="${PATH}:${GOROOT}/bin:${GOPATH}/bin"

go install github.com/projectdiscovery/asnmap/cmd/asnmap@latest

## auto_git_query
https://github.com/search?q=BROWSER_STACK_ACCESS_KEY= OR BROWSER_STACK_USERNAME= OR browserConnectionEnabled= OR BROWSERSTACK_ACCESS_KEY=&s=indexed&type=Code
https://github.com/search?q=CHROME_CLIENT_SECRET= OR CHROME_EXTENSION_ID= OR CHROME_REFRESH_TOKEN= OR CI_DEPLOY_PASSWORD= OR CI_DEPLOY_USER=&s=indexed&type=Code
https://github.com/search?q=CLOUDAMQP_URL= OR CLOUDANT_APPLIANCE_DATABASE= OR CLOUDANT_ARCHIVED_DATABASE= OR CLOUDANT_AUDITED_DATABASE=&s=indexed&type=Code
https://github.com/search?q=CLOUDANT_ORDER_DATABASE= OR CLOUDANT_PARSED_DATABASE= OR CLOUDANT_PASSWORD= OR CLOUDANT_PROCESSED_DATABASE=&s=indexed&type=Code
https://github.com/search?q=CONTENTFUL_PHP_MANAGEMENT_TEST_TOKEN= OR CONTENTFUL_TEST_ORG_CMA_TOKEN= OR CONTENTFUL_V2_ACCESS_TOKEN=&s=indexed&type=Code
https://github.com/search?q=-DSELION_BROWSER_RUN_HEADLESS= OR -DSELION_DOWNLOAD_DEPENDENCIES= OR -DSELION_SELENIUM_RUN_LOCALLY=&s=indexed&type=Code
https://github.com/search?q=ELASTICSEARCH_PASSWORD= OR ELASTICSEARCH_USERNAME= OR EMAIL_NOTIFI

## qualys_wordlist.txt
/
/.
/.*
/../../../../../../../../../../../
/../../../../../../../../../../../../boot.ini
/../../../../../../../../../../../../etc/passwd
/../../../../../../../winnt/system32/cmd.exe
/../../..//index.html
/../index.html
/.bzr/

## params.txt
0
1
11
12
13
14
15
16
17
2

## sort.sh
#!/bin/bash

declare -A companies

while read -r line; do
    domain=$(echo "$line" | awk -F'[:[]' '{print $1}' | tr -d ' ')
    company=$(echo "$line" | awk -F'[][]' '{print $2}' | tr -d ' ')

    if [ -n "$domain" ] && [ -n "$company" ]; then
        if [ -z "${companies[$company]}" ]; then

## gist:14989ca1d0f48b6797a9d8df2505638e
curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq -r '.prefixes[] | select(.region | startswith("us")) | .ip_prefix' | sort -u | tlsx -san -cn -silent -nc | awk -F'[][]' '{print $2}' | unfurl format %r.%t |tee aws_company.txt
sort ./aws_company.txt | uniq -c | sort -nr | awk '$1 >= 500'

## 365doms.py
#!/usr/bin/env python3

"""
Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.
Based on: https://github.com/thalpius/Microsoft-Defender-for-Identity-Check-Instance.
Usage: ./check_mdi.py -d <domain>
"""

import argparse
import dns.resolver
	/
	$$$lang-translate.service.js.aspx
	$367-Million-Merger-Blocked.html
	$defaultnav
	${idfwbonavigation}.xml
	$_news.php
	$search2
	£º
	.0
	August1
	August123
	August20
	August20!
	August2020
	August2020!
	August@20
	August@2020
	Autumn1
	Autumn123
	#!/bin/bash

	# Set the proxy server and port
	PROXY_SERVER="127.0.0.1"
	PROXY_PORT="8080"

	# Install Proxychains4
	echo "Installing Proxychains4..."
	sudo apt-get update
	sudo apt-get install -y proxychains4
	#!/bin/bash

	apt install golang -y
	GOROOT="/usr/local/go"
	PATH="${PATH}:${GOROOT}/bin"
	GOPATH=$HOME/go
	PATH="${PATH}:${GOROOT}/bin:${GOPATH}/bin"

	go install github.com/projectdiscovery/asnmap/cmd/asnmap@latest
	https://github.com/search?q=BROWSER_STACK_ACCESS_KEY= OR BROWSER_STACK_USERNAME= OR browserConnectionEnabled= OR BROWSERSTACK_ACCESS_KEY=&s=indexed&type=Code
	https://github.com/search?q=CHROME_CLIENT_SECRET= OR CHROME_EXTENSION_ID= OR CHROME_REFRESH_TOKEN= OR CI_DEPLOY_PASSWORD= OR CI_DEPLOY_USER=&s=indexed&type=Code
	https://github.com/search?q=CLOUDAMQP_URL= OR CLOUDANT_APPLIANCE_DATABASE= OR CLOUDANT_ARCHIVED_DATABASE= OR CLOUDANT_AUDITED_DATABASE=&s=indexed&type=Code
	https://github.com/search?q=CLOUDANT_ORDER_DATABASE= OR CLOUDANT_PARSED_DATABASE= OR CLOUDANT_PASSWORD= OR CLOUDANT_PROCESSED_DATABASE=&s=indexed&type=Code
	https://github.com/search?q=CONTENTFUL_PHP_MANAGEMENT_TEST_TOKEN= OR CONTENTFUL_TEST_ORG_CMA_TOKEN= OR CONTENTFUL_V2_ACCESS_TOKEN=&s=indexed&type=Code
	https://github.com/search?q=-DSELION_BROWSER_RUN_HEADLESS= OR -DSELION_DOWNLOAD_DEPENDENCIES= OR -DSELION_SELENIUM_RUN_LOCALLY=&s=indexed&type=Code
	https://github.com/search?q=ELASTICSEARCH_PASSWORD= OR ELASTICSEARCH_USERNAME= OR EMAIL_NOTIFI
	/
	/.
	/.*
	/../../../../../../../../../../../
	/../../../../../../../../../../../../boot.ini
	/../../../../../../../../../../../../etc/passwd
	/../../../../../../../winnt/system32/cmd.exe
	/../../..//index.html
	/../index.html
	/.bzr/
	#!/bin/bash

	declare -A companies

	while read -r line; do
	domain=$(echo "$line" \| awk -F'[:[]' '{print $1}' \| tr -d ' ')
	company=$(echo "$line" \| awk -F'[][]' '{print $2}' \| tr -d ' ')

	if [ -n "$domain" ] && [ -n "$company" ]; then
	if [ -z "${companies[$company]}" ]; then
	curl -s https://ip-ranges.amazonaws.com/ip-ranges.json \| jq -r '.prefixes[] \| select(.region \| startswith("us")) \| .ip_prefix' \| sort -u \| tlsx -san -cn -silent -nc \| awk -F'[][]' '{print $2}' \| unfurl format %r.%t \|tee aws_company.txt
	sort ./aws_company.txt \| uniq -c \| sort -nr \| awk '$1 >= 500'
	#!/usr/bin/env python3

	"""
	Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.
	Based on: https://github.com/thalpius/Microsoft-Defender-for-Identity-Check-Instance.
	Usage: ./check_mdi.py -d <domain>
	"""

	import argparse
	import dns.resolver