admin-079’s gists

admin-079 / GoogleHackMasterList.txt

Created June 1, 2023 05:47 — forked from xiaoxiaoleo/GoogleHackMasterList.txt

The definitive super list for "Google Hacking".

	admin account info" filetype:log
	!Host=. intext:enc_UserPassword=* ext:pcf
	"# -FrontPage-" ext:pwd inurl:(service \| authors \| administrators \| users) "# -FrontPage-" inurl:service.pwd
	"AutoCreate=TRUE password=*"
	"http://:@www” domainname
	"index of/" "ws_ftp.ini" "parent directory"
	"liveice configuration file" ext:cfg -site:sourceforge.net
	"parent directory" +proftpdpasswd
	Duclassified" -site:duware.com "DUware All Rights reserved"
	duclassmate" -site:duware.com

admin-079 / google-dorks

Created September 2, 2022 10:17 — forked from clarketm/google-dorks

Listing of a number of useful Google dorks.


	" _ _ "
	" _ /\|\| . . \|\|\ _ "
	" ( } \\|\|D ' ' ' C\|\|/ { % "
	" \| /\__,=_[_] ' . . ' [_]_=,__/\ \|"
	" \|_\_ \|----\| \|----\| _/_\|"
	" \| \|/ \| \| \| \| \\| \|"
	" \| /_ \| \| \| \| _\ \|"

	It is all fun and games until someone gets hacked!

admin-079 / speedtest-ifttt.sh

Created May 29, 2022 15:50 — forked from aallan/speedtest-ifttt.sh

Modified version of Henrik Bengtsson's speedtest-cli code which will dispatch the test results to the IFTTT Maker Channel.

	#!/usr/bin/env bash
	###########################################################################
	# Originally written by: Henrik Bengtsson, 2014
	# https://github.com/HenrikBengtsson/speedtest-cli-extras
	# Modified to use IFTTT by: Alasdair Allan, 2015
	# License: GPL (>= 2.1) [http://www.gnu.org/licenses/gpl.html]
	###########################################################################

	# Character for separating values
	# (commas are not safe, because some servers return speeds with commas)

admin-079 / Generic keys

Created May 7, 2022 04:46 — forked from h4x0r-dz/Generic keys

(?i)((access_key|access_token|admin_pass|admin_user|algolia_admin_key|algolia_api_key|alias_pass|alicloud_access_key|amazon_secret_access_key|amazonaws|ansible_vault_password|aos_key|api_key|api_key_secret|api_key_sid|api_secret|api.googlemaps AIza|apidocs|apikey|apiSecret|app_debug|app_id|app_key|app_log_level|app_secret|appkey|appkeysecret|application_key|appsecret|appspot|auth_token|authorizationToken|authsecret|aws_access|aws_access_key_id|aws_bucket|aws_key|aws_secret|aws_secret_key|aws_token|AWSSecretKey|b2_app_key|bashrc password|bintray_apikey|bintray_gpg_password|bintray_key|bintraykey|bluemix_api_key|bluemix_pass|browserstack_access_key|bucket_password|bucketeer_aws_access_key_id|bucketeer_aws_secret_access_key|built_branch_deploy_key|bx_password|cache_driver|cache_s3_secret_key|cattle_access_key|cattle_secret_key|certificate_password|ci_deploy_password|client_secret|client_zpk_secret_key|clojars_password|cloud_api_key|cloud_watch_aws_access_key|cloudant_password|cloudflare_api_key|cloudflare_auth_k

admin-079 / recon.rb

Created April 5, 2022 13:10 — forked from ehsahil/recon.rb

	#Tool based on a resolver.rb by @melvinsh
	#Original Repository: https://github.com/melvinsh/subresolve
	#Modified by @ehsahil for Personal Use.
	require 'socket'
	require 'colorize'

	begin
	file = File.open(ARGV[0], "r")
	rescue
	puts "Usage: ruby recon.rb wordlist"

admin-079 / project-ideas01.md

Created April 3, 2022 06:23 — forked from MWins/project-ideas01.md

Back end Projects - list

Project Ideas

Ok. I'm going to list off some ideas for projects. You will have to determine if any particular idea is good enough to include in a portfolio. These aren't creative ideas. They likely already exist. Some are way too advanced while others are simplistic.

I will recommend to post any project you make to github and make a github project page for it. Explain in as much detail as possible how you made it, how it can be improved etc. Document it.

If you pick an advanced idea, setup a development roadmap and follow it. This will show some project management skills.

Another piece of advice for those who are design challenged. Use different front end frameworks and use different themes for those frameworks to provide appealing designs without looking like yet another bootstrap site.

admin-079 / all.txt

Created March 26, 2022 10:19 — forked from jhaddix/all.txt

all wordlists from every dns enumeration tool... ever. Please excuse the lewd entries =/

This file has been truncated, but you can view the full file.


	.
	..
	........
	@
	*
	.
	..*
	ðŸŽ

admin-079 / params.txt

Created March 26, 2022 10:19 — forked from nullenc0de/params.txt

List of parameters for content discovery

	0
	1
	11
	12
	13
	14
	15
	16
	17
	2

admin-079 / all.txt

Created March 12, 2022 05:04 — forked from jhaddix/all.txt

all wordlists from every dns enumeration tool... ever. Please excuse the lewd entries =/

This file has been truncated, but you can view the full file.


	.
	..
	........
	@
	*
	.
	..*
	ðŸŽ

admin-079 / log4j_rce_check.py

Created February 18, 2022 15:08 — forked from byt3bl33d3r/log4j_rce_check.py

Python script to detect if an HTTP server is potentially vulnerable to the log4j 0day RCE (https://www.lunasec.io/docs/blog/log4j-zero-day/)

	#! /usr/bin/env python3

	'''
	Needs Requests (pip3 install requests)

	Author: Marcello Salvati, Twitter: @byt3bl33d3r
	License: DWTFUWANTWTL (Do What Ever the Fuck You Want With This License)


	This should allow you to detect if something is potentially exploitable to the log4j 0day dropped on December 9th 2021.


	" _ _ "
	" _ /\|\| . . \|\|\ _ "
	" ( } \\|\|D ' ' ' C\|\|/ { % "
	" \| /\__,=_[_] ' . . ' [_]_=,__/\ \|"
	" \|_\_ \|----\| \|----\| _/_\|"
	" \| \|/ \| \| \| \| \\| \|"
	" \| /_ \| \| \| \| _\ \|"

	It is all fun and games until someone gets hacked!

3_rdi admin-079

Project Ideas