Ryel ryelhunter
ryelhunter
/ content_discovery_all.txt
Created
August 24, 2025 23:40
— forked from jhaddix/content_discovery_all.txt
a masterlist of content discovery URLs and files (used most commonly with gobuster)
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ` | |
| ~/ | |
| ~ | |
| ×™× | |
| ___ | |
| __ | |
| _ |
ryelhunter
/ js_endpoints_new_tab.js
Created
August 19, 2025 14:31
— forked from mhmdiaa/js_endpoints_new_tab.js
All credit goes to @renniepak for the original bookmarklet https://twitter.com/renniepak/status/1602620834463588352
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| javascript: (function() { | |
| var scripts = document.getElementsByTagName("script"), | |
| regex = /(?<=(\"|\%27|\`))\/[a-zA-Z0-9_?&=\/\-\#\.]*(?=(\"|\'|\%60))/g; | |
| const results = new Set; | |
| for (var i = 0; i < scripts.length; i++) { | |
| var t = scripts[i].src; | |
| "" != t && fetch(t).then(function(t) { | |
| return t.text() | |
| }).then(function(t) { | |
| var e = t.matchAll(regex); |
ryelhunter
/ Github Dorks
Created
August 17, 2025 23:33
— forked from jhaddix/Github Dorks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| echo "" | |
| echo "************ Github Dork Links (must be logged in) *******************" | |
| echo "" | |
| echo " password" | |
| echo "https://github.com/search?q="hackertarget.site"+password&type=Code" | |
| echo "https://github.com/search?q=""hackertarget""+password&type=Code" | |
| echo "" | |
| echo " npmrc _auth" |
ryelhunter
/ pathtransversal
Created
August 17, 2025 23:30
— forked from felipecaon/pathtransversal
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| | Char | Encoded | | |
| | --- | --- | | |
| | space | %20 | | |
| | / | %2f | | |
| | \ | %5c | | |
| | % | %25 | | |
| | . | %2e | | |
| | f | %66 | | |
| | e | %65 | |
ryelhunter
/ httpheaders.txt
Created
August 17, 2025 23:30
— forked from felipecaon/httpheaders.txt
List of HTTP headders to be used as injection
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Client-IP | |
| Forwarded-For-Ip | |
| Forwarded-For | |
| Forwarded | |
| True-Client-IP | |
| X-Client-IP | |
| X-Custom-IP-Authorization | |
| X-Forward-For | |
| X-Forward | |
| X-Forwarded-By |
ryelhunter
/ scan_github_organization.sh
Created
August 17, 2025 23:28
— forked from felipecaon/scan_github_organization.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| while IFS= read -r ORG_NAME; do | |
| echo "[*] Processing organization: $ORG_NAME" | |
| mkdir -p "$ORG_NAME" | |
| cd "$ORG_NAME" || exit | |
| ##################################### | |
| # 1. Clone all non-fork repos | |
| ##################################### |