Skip to content

Instantly share code, notes, and snippets.

💭
Hacking!

Robbie random-robbie

💭
Hacking!
Block or report user

Report or block random-robbie

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View sources.list
## Note, this file is written by cloud-init on first boot of an instance
## modifications made here will not survive a re-bundle.
## if you wish to make changes you can:
## a.) add 'apt_preserve_sources_list: true' to /etc/cloud/cloud.cfg
## or do the same in user-data
## b.) add sources in /etc/apt/sources.list.d
## c.) make changes to template file /etc/cloud/templates/sources.list.tmpl
# See http://help.ubuntu.com/community/UpgradeNotes for how to upgrade to
# newer versions of the distribution.
View ruby-sensitive-files.txt
database.yml
database.yml_original
database.yml~
database.yml.pgsql
database.yml.sqlite3
config/database.yml
config/database.yml_original
config/database.yml~
config/database.yml.pgsql
config/database.yml.sqlite3
View textwrangler.md

^[^.]+. - This Removes everything before the . and including the . so handy for a list of sub doamins.

View jhat base searches
select {o: s,val:s.value.toString()} from java.lang.String s
where
/^[0-9A-Za-z!\\\/\"\?/+=;\&\(\)\[\]\.:-_@\'\#\*]{5,15}$/.test(s.value.toString())
select {o: s,val:s.value.toString()} from java.lang.String s
where
/^[0-9A-Za-z!\\\/\"\?/+=;\&\(\)\[\]\.:-_@\'\#\*]{19,31}$/.test(s.value.toString())
select {o: s,val:s.value.toString()} from java.lang.String s
where
View s3tko.sh
#!/bin/bash
touch index.html
touch error.html
aws s3api create-bucket --bucket $1 --region us-east-1
aws s3 website s3://$1/ --index-document index.html --error-document error.html
aws s3 cp index.html s3://$1 --acl public-read
aws s3 cp error.html s3://$1 --acl public-read
View Dockerfile
FROM ubuntu:latest
ENV DEBIAN_FRONTEND noninteractive
RUN apt-get update -y && \
apt-get install -y \
git \
xvfb \
x11vnc \
wget \
View content_nullenc0de.txt
This file has been truncated, but you can view the full file.
!.gitignore
!.htaccess
!.htpasswd
!access_setup.asp
!Admin
!archiv
!Archive
!backup
!bin/ads/google
View null-find.sh
#!/bin/bash
wget https://gist.githubusercontent.com/jhaddix/86a06c5dc309d08580a018c66354a056/raw/96f4e51d96b2203f19f6381c8c545b278eaa0837/all.txt
amass enum -config config.ini -brute -w all.txt
wget https://gist.githubusercontent.com/nullenc0de/96fb9e934fc16415fbda2f83f08b28e7/raw/146f367110973250785ced348455dc5173842ee4/content_discovery_nullenc0de.txt
gobuster -u http://example.com -w content_discovery_nullenc0de.txt
View cors.txt
Issue detected : CORS misconfiguration amazonlive-portal.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration amazonlive-portal.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: https://doesnot.exists
Issue detected : CORS misconfiguration dexr.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration dexr.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: https://doesnot.exists
Issue detected : CORS misconfiguration internal.campfire.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration internal-gamma.campfire.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: null
Issue detected : CORS misconfiguration internal.campfire.amazon.com Payload Send Origin response contains Access-Control-Allow-Origin: https://doesnot.exists
Issue dete
You can’t perform that action at this time.