Skip to content

Instantly share code, notes, and snippets.

💭
Hacking!

Robbie random-robbie

💭
Hacking!
Block or report user

Report or block random-robbie

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View jhat base searches
select {o: s,val:s.value.toString()} from java.lang.String s
where
/^[0-9A-Za-z!\\\/\"\?/+=;\&\(\)\[\]\.:-_@\'\#\*]{5,15}$/.test(s.value.toString())
select {o: s,val:s.value.toString()} from java.lang.String s
where
/^[0-9A-Za-z!\\\/\"\?/+=;\&\(\)\[\]\.:-_@\'\#\*]{19,31}$/.test(s.value.toString())
select {o: s,val:s.value.toString()} from java.lang.String s
where
View s3tko.sh
#!/bin/bash
touch index.html
touch error.html
aws s3api create-bucket --bucket my-bucket --region us-east-1
aws s3 website s3://my-bucket/ --index-document index.html --error-document error.html
aws s3 cp index.html s3://mybucket --acl public-read
View Dockerfile
FROM ubuntu:latest
ENV DEBIAN_FRONTEND noninteractive
RUN apt-get update -y && \
apt-get install -y \
git \
xvfb \
x11vnc \
wget \
View content_nullenc0de.txt
This file has been truncated, but you can view the full file.
!.gitignore
!.htaccess
!.htpasswd
!access_setup.asp
!Admin
!archiv
!Archive
!backup
!bin/ads/google
View null-find.sh
#!/bin/bash
wget https://gist.githubusercontent.com/jhaddix/86a06c5dc309d08580a018c66354a056/raw/96f4e51d96b2203f19f6381c8c545b278eaa0837/all.txt
amass enum -config config.ini -brute -w all.txt
wget https://gist.githubusercontent.com/nullenc0de/96fb9e934fc16415fbda2f83f08b28e7/raw/146f367110973250785ced348455dc5173842ee4/content_discovery_nullenc0de.txt
gobuster -u http://example.com -w content_discovery_nullenc0de.txt
View cors.txt
Issue detected : CORS misconfiguration amazonlive-portal.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration amazonlive-portal.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: https://doesnot.exists
Issue detected : CORS misconfiguration dexr.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration dexr.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: https://doesnot.exists
Issue detected : CORS misconfiguration internal.campfire.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration internal-gamma.campfire.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration internal.campfire.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: https://doesnot.exists
Issue dete
View start.sh
cat urls.txt | while read url; do gobuster -u https://"$url" -q -e -k -w content_discovery_all.txt; done > sub_url.txt; cat sub_url.txt| cut -d ' ' -f 1 > /opt/parameth/params.txt;cd /opt/parameth;cat params.txt | while read url; do python /opt/parameth/parameth.py -u http://"$url"; done
View box.txt
http://ameritascorp.account.box.com
http://amplifiedoffice.account.box.com
http://arcadvisorygroup.account.box.com
http://archigate.account.box.com
http://baylor.account.box.com
http://buffalo.account.box.com
http://cisco.account.box.com
http://clemson.account.box.com
http://cotterservices.app.box.com
http://cwru.account.box.com
View binaryedge.py
import sys
from pybinaryedge import BinaryEdge
def main():
##### CONFIG #####
be_api_key = "YOURAPIKEY"
##################
# Iterate over the first page of IPs having specific ssh configuration
be = BinaryEdge(be_api_key)
You can’t perform that action at this time.