Enumeration added and improvement for CRLF/XSS/SQL

2026-03-01 06:53:04 -08:00 · 2016-11-02 20:26:00 +07:00
parent 341295dc4b
commit c73124a79d
5 changed files with 119 additions and 17 deletions
--- a/Enumeration_and_fingerprinting.md
+++ b/Enumeration_and_fingerprinting.md
@@ -0,0 +1,27 @@
+# Collection of usefull scripts and tricks
+
+## Dorks
+
+Google Dork to find subdomains
+```
+site:*.domain.com -www
+```
+
+## Scripts
+Script to detect all phpinfo.php files in a range of IPs (CIDR can be found with a whois)
+```
+#!/bin/bash
+for ipa in 98.13{6..9}.{0..255}.{0..255}; do
+wget -t 1 -T 3 http://${ipa}/phpinfo.php; done &
+```
+
+Script to detect all .htpasswd files in a range of IPs
+```
+#!/bin/bash
+for ipa in 98.13{6..9}.{0..255}.{0..255}; do
+wget -t 1 -T 3 http://${ipa}/.htpasswd; done &
+```
+
+
+## Thanks to
+* http://blog.it-securityguard.com/bugbounty-yahoo-phpinfo-php-disclosure-2/