Mr.Trunk · @mrtrunk
6 followers · 13193 posts · Server dromedary.seedoubleyou.meSecurityOnline: subfinder v2.6.2 releases: subdomain discovery tool https://securityonline.info/subfinder/ #WebInformationGathering #SubFinder
#webinformationgathering #subfinder
Mr.Trunk · @mrtrunk
4 followers · 6635 posts · Server dromedary.seedoubleyou.meSecurityOnline: subfinder v2.6.1 releases: subdomain discovery tool https://securityonline.info/subfinder/ #WebInformationGathering #SubFinder
#webinformationgathering #subfinder
magikh0e :unverified: · @magikh0e
130 followers · 132 posts · Server infosec.exchange
Simple Script for Finding Cross
Site Scripting (XSS) vulns
#!/bin/bash
subfinder -d $1 -o domains_subfinder_$1
amass enum --passive -d $1 -o domains_$1
cat domains_subfinder_$1 | tee -a domain_$1
cat domains_$1 | filter-resolved | tee -a domains_$1.txt
cat domains_$1.txt | httprobe -p http:81 -p http:8080 -p https:8443 | waybackurls | kxss | tee xss.txt
https://github.com/projectdiscovery/subfinder
https://github.com/OWASP/Amass
https://github.com/tomnomnom/hacks/tree/master/filter-resolved
https://github.com/tomnomnom/httprobe
https://github.com/tomnomnom/waybackurls
https://github.com/tomnomnom/hacks/tree/master/kxss
#bugbounty #bugbountytips #xss #subfinder #httprobe #waybackurls #kxss #amass
#bugbounty #bugbountytips #xss #subfinder #httprobe #waybackurls #kxss #AMASS
magikh0e :unverified: · @magikh0e
130 followers · 132 posts · Server infosec.exchangeHunting for *interesting* domains
subfinder -d site.com -all | dnsprobe -silent | cut -d ' ' -f1 | grep --color 'dmz\|api\|staging\|env\|v1\|stag\|prod\|dev\|stg\|test\|demo\|pre\|admin\|beta\|vpn\|cdn\|coll\|sandbox\|qa\|intra\|extra\|s3\|external\|back'
https://github.com/projectdiscovery/subfinder
https://github.com/projectdiscovery/dnsprobe
#bugbounty #bugbountytips #subfinder #dnsprobe
magikh0e :unverified: · @magikh0e
130 followers · 132 posts · Server infosec.exchangeSQL Injection Hunting
subfinder -d site.com -all -silent | waybackurls | sort -u | gf sqli > gf_sqli.txt; sqlmap -m gf_sqli.txt --batch --risk 3 --random-agent | tee -a sqli.txt
https://github.com/projectdiscovery/subfinder
https://github.com/1ndianl33t/Gf-Patterns
https://github.com/tomnomnom/waybackurls
#bugbounty #bugbountytips #subfinder #sqlinjection #waybackurls #sqli
#bugbounty #bugbountytips #subfinder #sqlinjection #waybackurls #sqli
magikh0e :unverified: · @magikh0e
130 followers · 132 posts · Server infosec.exchangeScanning for CISA Top exploited vulnerabilities
subfinder -d site.com -all -silent | httpx -silent | nuclei -rl 50 -c 15 -timeout 10 -tags cisa -vv
https://github.com/projectdiscovery/subfinder
https://github.com/projectdiscovery/httpx
https://github.com/projectdiscovery/nuclei
https://github.com/projectdiscovery/nuclei-templates
#bugbounty #bugbountytips #subfinder #nuclei #httpx #cisa
#bugbounty #bugbountytips #subfinder #nuclei #httpx #cisa