Skip to content

Commit

Permalink
Wordlists (#4)
Browse files Browse the repository at this point in the history
* different wordlist path

* testing for new release

* fix for dockerfile
  • Loading branch information
alexrf45 authored Nov 30, 2023
1 parent 7b20a16 commit ed3b525
Show file tree
Hide file tree
Showing 5 changed files with 21 additions and 37 deletions.
1 change: 0 additions & 1 deletion Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -64,7 +64,6 @@ ADD resources /home/kali/resources/
RUN sudo chown -R kali:kali /home/kali/resources

RUN cp /home/kali/resources/tmux.conf /home/kali/.tmux.conf \
&& cp /home/kali/resources/ctf.yaml /home/kali/.config/tmuxp/ctf.yaml \
&& cp /home/kali/resources/bounty.yaml /home/kali/.config/tmuxp/bounty.yaml \
&& cp -r /home/kali/resources/bloodhound /home/kali/.config/bloodhound \
&& cp -r /home/kali/resources/shell-upgrade.sh /home/kali/tools/shell-upgrade.sh \
Expand Down
29 changes: 0 additions & 29 deletions resources/ctf.yaml

This file was deleted.

13 changes: 10 additions & 3 deletions resources/zsh/history
Original file line number Diff line number Diff line change
Expand Up @@ -88,9 +88,16 @@ export NAME=
export TARGET=
export USER=
fcrackzip -u -v -D -p /usr/share/wordlists/rockyou.txt file.zip
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403 -w /usr/share/seclists/Discovery/Web-Content/common.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 30 -p 0.2 -H "User-Agent: $AGENT" -r -ac -o $NAME.json -of json -mc 200,302,403 -w /usr/share/seclists/Discovery/Web-Content/raft-small-words.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 30 -p 0.2 -H "User-Agent: $AGENT" -o $NAME_domains.json -of json -H "Host:FUZZ.$DOMAIN" -mc 200,403 -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-110000.txt -u http://$DOMAIN/
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403 -w $HOME/.wordlists/common.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403,401 -w $HOME/.wordlists/api.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403,401 -w $HOME/.wordlists/dir-list.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403,401 -w $HOME/.wordlists/raft-small.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403,401 -w $HOME/.wordlists/api-wild.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403,401 -w $HOME/.wordlists/fuzz-1.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,302,422,403,401 -w $HOME/.wordlists/LFI.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 20 -p 0.2 -H "User-Agent: $AGENT" -ac -o $NAME.json -of json -mc 200,503,500,400 -w $HOME/.wordlists/SQL.txt -u http://$DOMAIN/FUZZ
ffuf -c -t 5 -rate 30 -p 0.2 -H "User-Agent: $AGENT" -o $NAME_domains.json -of json -H "Host:FUZZ.$DOMAIN" -mc 200,403 -w $HOME/.wordlists/dns.txt -u http://$DOMAIN/
ffuf -c -t 5 -rate 30 -p 0.2 -H "User-Agent: $AGENT" -o $NAME_domains.json -of json -H "Host:FUZZ.$DOMAIN" -mc 200,403 -w $HOME/.wordlists/dns-1.txt -u http://$DOMAIN/
ffuf -request REQUESTFILE -request-proto http -w PATH/TO/WORDLIST -fs 0 -c
find DIR -type f -newermt YYYY-MM-DD ! -newermt YYYY-MM-DD > /dev/null
gMSADumper.py -d "$DOMAIN" -l "$DC_HOST" -u "$USER" -p "$PASSWORD"
Expand Down
12 changes: 8 additions & 4 deletions resources/zsh/zshrc
Original file line number Diff line number Diff line change
Expand Up @@ -64,7 +64,6 @@ alias http='python3 -m http.server 80'
alias reload='. ~/.zshrc'
alias update='sudo apt-get update -y'
alias t='tmux -f ~/.tmux.conf'
alias ctf='tmuxp load ~/.config/tmuxp/ctf.yaml'
alias bounty='tmuxp load ~/.config/tmuxp/bounty.yaml'
alias i='sudo apt-get install -y'
alias public='curl wtfismyip.com/text'
Expand All @@ -73,7 +72,6 @@ alias commands='history | cut -c 6-'
alias proxy='proxychains'

#basic shortcuts with a windows target flavor
alias secretsdump='impacket-secretsdump'
alias ps-shell='cp ~/nishang/Shells/Invoke-PowerShellTcpOneLine.ps1 .'
alias portscan='cp ~/nishang/Scan/Invoke-PortScan.ps1 .'
alias cme='netexec'
Expand All @@ -83,9 +81,15 @@ ffuf_subdomain () {

ffuf -c -t 5 -rate 20 -p 0.2 \
-H "User-Agent: $AGENT" -o $NAME_domains.json -of json \
-H "Host:FUZZ.$DOMAIN" \
-mc 200,403 -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-110000.txt -u http://$DOMAIN/
-H "Host: FUZZ.$DOMAIN" \
-mc 200,403,401,503,500,302 -w $HOME/.wordlists/dns.txt -u http://$DOMAIN/
}

ffuf_directory () {

ffuf -c -t 10 -rate 20 -p 0.2 -H "User-Agent: $AGENT" \
-ac -mc 200,302,422,403,401,301 \
-w $HOME/.wordlists/common.txt \
-u http://$DOMAIN/FUZZ

}
3 changes: 3 additions & 0 deletions sources/3-wordlists.sh
Original file line number Diff line number Diff line change
Expand Up @@ -22,3 +22,6 @@ wget "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Fuzzing/L

wget "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Fuzzing/SQLi/Generic-BlindSQLi.fuzzdb.txt" -q -O $HOME/.wordlists/SQL.txt

wget "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/DNS/subdomains-top1million-20000.txt" -q -O $HOME/.wordlists/dns.txt

wget "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/DNS/bitquark-subdomains-top100000.txt" -q -O $HOME/.wordlists/dns-1.txt

0 comments on commit ed3b525

Please sign in to comment.