Last active
July 9, 2022 00:55
-
-
Save tedmdelacruz/46d00dff572dc15de6a37d2d184f5616 to your computer and use it in GitHub Desktop.
Personal bug bounty commands
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Download all URLs from a text file | |
| while read line; do; wget $line; done<urls.txt | |
| # Quick probe of an asset | |
| function probe(){ | |
| TARGET=$1 | |
| whatweb $TARGET | |
| gau $TARGET | |
| echo $TARGET | waybackurls | |
| ffuf -v -mc 200,401,500 -c -w ~/wordlists/configfiles -u $TARGET/FUZZ | |
| ffuf -v -mc 200,401,500 -c -w ~/wordlists/SecLists/Discovery/Web-Content/quickhits.txt -u $TARGET/FUZZ | |
| if [[ -f "custom-wordlist.txt" ]]; then | |
| ffuf -v -mc 200,401,403 -c -w custom-wordlist.txt -u $TARGET/FUZZ | |
| fi; | |
| } | |
| # Axiom fleet | |
| axiom-fleet recon -i=15 && echo "Done initializing fleet" | notify | |
| axiom-rm 'recon\*' -f -v && echo "Done removing fleet" | notify | |
| # Copy amass config to all droplets | |
| axiom-scp ~/.config/amass/config.ini 'hunter*':/home/op/config.ini | |
| # Amass scan with custom configuration | |
| axiom-scan domains.txt -m amass -o subdomains.txt -v -brute -norecursive -config /home/op/config.ini | |
| # Probe subdomains using httpx | |
| axiom-scan subdomains.txt -m httpx -o http.txt -ports 80,443,8080,8081,8443,21,8000 | |
| # Take screenshots using aquatone | |
| axiom-scan http.txt -m aquatone -resolution=800,600 -ports=large |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment