Skip to content

Instantly share code, notes, and snippets.

View z0rs's full-sized avatar

z0rs

12 followers · 0 following
View GitHub Profile
@z0rs
z0rs / Delete.js
Last active September 1, 2024 16:01
const deleteTweetsBetweenDates = async (startDate, endDate) => {
const processedButtons = new Set();
const delay = (ms) => new Promise(resolve => setTimeout(resolve, ms));
console.log("Script started");
while (true) {
console.log("Looking for tweets...");
const deleteButtons = Array.from(document.querySelectorAll('[data-testid="caret"]'))
@z0rs
z0rs / Penetration Testing Report (Temika).md
Last active August 23, 2024 16:36
@z0rs
z0rs / SSL Splitting.md
Last active July 23, 2024 12:08

Dalam kasus ini, interface yang aktif adalah wlp2s0 dengan IP 192.168.8.2(ip addr) dan gateway 192.168.8.1 (ip route show).

Step 1: Install Tools

Pastikan arpspoof, sslsplit, dan dsniff. Ini biasanya tersedia di Arch Linux.

sudo pacman -S dsniff sslsplit

Step 2: ARP Spoofing

@z0rs
z0rs / hotsplot.md
Last active July 23, 2024 06:48 
#!/bin/bash

# Variables
HOSTAPD_CONF="/etc/hostapd/hostapd.conf"
DNSMASQ_CONF="/etc/dnsmasq.conf"
HOTSPOT_IP="192.168.20.1"
DHCP_RANGE_START="192.168.20.10"
DHCP_RANGE_END="192.168.20.50"
@z0rs
z0rs / Man-in-the-Middle (MITM) Attack.md
Created July 17, 2024 14:04

3. Man-in-the-Middle (MITM) Attack

Tools: ettercap, mitmproxy, Wireshark

Langkah-langkah:

A. ARP Spoofing dengan Ettercap

  1. Install Ettercap: 
    sudo apt-get install ettercap-graphical
@z0rs
z0rs / Penetration Test Report of Findings.md
Last active May 20, 2024 19:03
@z0rs
z0rs / host-domain
Last active August 30, 2024 16:12
cloudamqp.com
cloudkarafka.com
elephantsql.com
cloudmqtt.com
aax.com
achmea.nl
syntrus.com
woonfonds.nl
fbto.nl
averoachmea.nl
@z0rs
z0rs / Host-domain_Filtering.md
Last active February 24, 2024 16:57

This Bash gist is a nifty command to find WordPress domains from a bug bounty program list provided by Project Discovery. First, it uses curl to fetch the bug bounty program list from a GitHub repository. Then, it utilizes jq to select domains from programs that have a bounty, followed by sorting to ensure uniqueness. After that, it employs httpx to test if these domains are running WordPress. Finally, the output is filtered and saved into the host-wordpress file. The second version of this command also removes https, http, www, and other characters from the URLs, providing cleaner results. Pretty cool, right?

curl -s "https://raw.githubusercontent.com/projectdiscovery/public-bugbounty-programs/master/chaos-bugbounty-list.json" | jq -r '.programs[] | select(.bounty==true) | .domains[]' | sort -u | httpx -td -ms WordPress | sed -e 's/\s.*$//' | tee host-wordpress

For sort unique

curl -s "https://raw.githubusercontent.com/projectdiscovery/public-bugbounty-programs/master/chaos-bugbo
@z0rs
z0rs / nuclei.md
Created February 4, 2024 13:28 
name: Recon

on:
  push:
    branches: [master]

jobs:
  scan-and-deploy:
    runs-on: ubuntu-latest
@z0rs
z0rs / Fuzzing_Urls.md
Created February 2, 2024 11:25 
#!/bin/bash
## this tool to take parameters that have '=' and add 'FUZZ' at the end of '=' the ultimate goal of this tool is to perform fuzzing and checking of vulnerable parameters
domain=$1
url="https://web.archive.org/cdx/search/cdx?url=*."$domain"/*&output=txt&fl=original&collapse=urlkey&page=/"

if [[ -z "$domain" ]]; then
    echo "Include the domain as an argument"
    exit 1
fi