| wp-wordlist() | |
| { | |
| option="$1" | |
| if [[ "$option" == *"plugin"* ]]; then | |
| curl -s https://plugins.svn.wordpress.org/ | tail -n +5 | sed -e 's/<[^>]*>//g' -e 's/\///' -e 's/ \+//gp' | grep -v "Powered by Apache" | sort -u | |
| elif [[ "$option" == *"theme"* ]]; then | |
| curl -s https://themes.svn.wordpress.org/ | tail -n +5 | sed -e 's/<[^>]*>//g' -e 's/\///' -e 's/ \+//gp' | grep -v "Powered by Apache" | sort -u | |
| fi | |
| } |
WAPT-https://github.com/KathanP19/HowToHunt/blob/master/CheckList/Web_Checklist_by_Chintan_Gurjar.pdf
Authenication-https://github.com/HolyBugx/HolyTips/blob/main/Checklist/Authentication.pdf
Oauth Misconfiguration-https://binarybrotherhood.io/oauth2_threat_model.html
File Upload-https://github.com/HolyBugx/HolyTips/blob/main/Checklist/File%20Upload.pdf
The National Cyber Security Centre (NCSC) contributes to jointly enhancing the resilience of the Dutch society in the digital domain and, in doing so, realizes a safe, open and stable information society by providing insight and offering a perspective for action. Therefore it is essential that the ICT systems of the NCSC are safe. The NCSC strives towards providing a high level of security for its system. However, it can occur that one of these systems has a vulnerability.
For more information about reporting the bugs go to https://english.ncsc.nl/contact/reporting-a-vulnerability-cvd
Source
https://gist.github.com/random-robbie/f985ad14fede2c04ac82dd89653f52ad
https://www.communicatierijk.nl/vakkennis/r/rijkswebsites/verplichte-richtlijnen/websiteregister-rijksoverheid
This is a collection of books that I've researched, scanned the TOCs of, and am currently working through. The books are selected based on quality of content, reviews, and reccommendations of various 'best of' lists.
The goal of this collection is to promote mastery of generally applicable programming concepts.
Most topics are covered with Python as the primary language due to its conciseness, which is ideal for learning & practicing new concepts with minimal syntactic boilerplate.
JavaScript & Kotlin are listed in the Tooling section; as they allow extension of VS Code and the IntelliJ suite of IDEs, which cover most development needs.
| recon() { | |
| subfinder -d $1 -silent|httprobe -c 40|tee -a $1.txt | |
| } | |
| fdir(){ |
| 🔥Complete Bug Bounty Cheat Sheet🔥 | |
| XSS | |
| https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md | |
| https://github.com/ismailtasdelen/xss-payload-list | |
| SQLi | |
| https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/sqli.md |
| #notes | |
| https://www.cnblogs.com/keepmoving1113/tag/OSCP/ | |
| https://hausec.com/pentesting-cheatsheet/ | |
| https://highon.coffee/blog/penetration-testing-tools-cheat-sheet | |
| https://github.com/wwong99/pentest-notes/blob/master/oscp_resources/OSCP-Survival-Guide.md | |
| https://noobsec.net/oscp-cheatsheet/ | |
| https://www.netsecfocus.com/oscp/2019/03/29/The_Journey_to_Try_Harder-_TJNulls_Preparation_Guide_for_PWK_OSCP.html | |
| https://www.reddit.com/r/oscp/comments/824v7z/oscp_exam_taking_fraud/ | |
| https://github.com/OlivierLaflamme/Cheatsheet-God | |
| https://johntuyen.com/personal/2019/05/25/personal-oscpcheatsheet.html |
| ██████╗ ███████╗ ██████╗ ██████╗ ███╗ ██╗ | |
| ██╔══██╗██╔════╝██╔════╝██╔═══██╗████╗ ██║ | |
| ██████╔╝█████╗ ██║ ██║ ██║██╔██╗ ██║ | |
| ██╔══██╗██╔══╝ ██║ ██║ ██║██║╚██╗██║ | |
| ██║ ██║███████╗╚██████╗╚██████╔╝██║ ╚████║ | |
| ╚═╝ ╚═╝╚══════╝ ╚═════╝ ╚═════╝ ╚═╝ ╚═══╝ | |
| @intx0x80 |
| #!/bin/bash | |
| #Script by OliverK | |
| #Downloads _every_ wordlist in the packet storm security site. | |
| #April 18th, 2011 | |
| # Updated Oct , 2th, 2012 | |
| mkdir common | |
| cd common | |
| wget --no-check-certificate http://dl.packetstormsecurity.net/Crackers/wordlists/common-4 | |
| wget --no-check-certificate http://dl.packetstormsecurity.net/Crackers/wordlists/common-3 | |
| wget --no-check-certificate http://dl.packetstormsecurity.net/Crackers/wordlists/common-2 |