Skip to content

Instantly share code, notes, and snippets.

💭
OWASP Cheat Sheet Series project V2 is out 😎

Dominique RIGHETTO righettod

💭
OWASP Cheat Sheet Series project V2 is out 😎
Block or report user

Report or block righettod

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@righettod
righettod / ws_soap_fuzz.py
Last active Aug 14, 2019
Simple dirty script to fuzz a SOAP request using the BURP Sniper approach using Windows authentication
View ws_soap_fuzz.py
# Simple dirty script to fuzz a SOAP request using the Burp Sniper approach:
# See https://portswigger.net/burp/documentation/desktop/tools/intruder/positions
# Dependencies:
# pip install lxml requests_ntlm requests tabulate tqdm
import requests
import urllib3
from requests_ntlm import HttpNtlmAuth
from lxml import etree as ET
from tabulate import tabulate
from hashlib import sha1
@righettod
righettod / payloads.txt
Last active Aug 11, 2019
Payloads to try to discover blind SQLi when no error is returned.
View payloads.txt
# The situation is the following:
# Your enter ab in a feature and it return data to you but when your enter ab' it indicate that there is not data found.
#
# So, does it means that there is no SQLi because ab' is well handled OR the error is catched
# and a "not data found message" is returned?
#
# The goal here is to submit a payload that, if interpreted by the SQL DB, will give ab and then data will be returned
# then indicating that there is a SQLi because the payload is interpreted.
ab';#
ab';--
@righettod
righettod / check_cve_state.py
Last active Mar 24, 2019
Script to verify, for a set of CVE, if the MITRE has released them and if a link to the security advisory on the CVE owner site has been added (python 3).
View check_cve_state.py
#!/usr/bin/python
# -*- coding: utf-8 -*-
"""
Script to verify, for a set of CVE, if the MITRE has released them
and if a link to the security advisory on the CVE owner site has been added.
Dependencies: pip install requests
"""
import requests
import collections
@righettod
righettod / rpc-req.md
Last active Oct 11, 2018
Request template to test XML RPC service exposed from CMS like Drupal, Wordpress...
View rpc-req.md

XML RPC method exposed:

  • system.multicall
  • system.methodSignature
  • system.getCapabilities
  • system.listMethods
  • system.methodHelp

Request template:

<?xml version="1.0"?>
@righettod
righettod / git_repos_full_backup.py
Last active Oct 13, 2018
Clone or update all local clones of GitHub public repositories and gists for the target specified user.
View git_repos_full_backup.py
import requests
import colorama
import os
import git
import argparse
import shutil
import json
from git import Repo
from termcolor import colored
@righettod
righettod / GetApkFromSmartphoneWithADB.md
Last active Oct 11, 2018
Retrieve Android APK from Smartphone using ADB
View GetApkFromSmartphoneWithADB.md
  1. List package in order to find application package name: adb shell pm list packages
  2. Display package path: adb shell pm path [PACKAGE_NAME]
  3. Download APK: adb pull [PACKAGE_PATH]
@righettod
righettod / rp_session_cookie.py
Created Apr 25, 2014
Function to obtain an session cookie from the reverse proxy Microsoft ISA.
View rp_session_cookie.py
You can’t perform that action at this time.