forked from nahamsec/recon_profile
-
Notifications
You must be signed in to change notification settings - Fork 0
/
bash_profile
54 lines (42 loc) · 961 Bytes
/
bash_profile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
hgrip(){
history | grep $1
}
#----- AWS -------
s3ls(){
aws s3 ls s3://$1
}
s3cp(){
aws s3 cp $2 s3://$1
}
#----- misc -----
certspotter(){
curl -s https://certspotter.com/api/v0/certs\?domain\=$1 | jq '.[].dns_names[]' | sed 's/\"//g' | sed 's/\*\.//g' | sort -u | grep $1
} #h/t Michiel Prins
crtsh(){
curl -s https://crt.sh/?q=%.$1 | sed 's/<\/\?[^>]\+>//g' | grep $1
}
certnmap(){
curl https://certspotter.com/api/v0/certs\?domain\=$1 | jq '.[].dns_names[]' | sed 's/\"//g' | sed 's/\*\.//g' | sort -u | grep $1 | nmap -T5 -Pn -sS -i - -$
} #h/t Jobert Abma
certbrute(){
cat $1.txt | while read line; do python3 dirsearch.py -e . -u "https://$line"; done
}
ipinfo(){
curl http://ipinfo.io/$1
}
#------ Tools ------
dirsearch(){
cd /tools/dirsearch*
python3 dirsearch.py -e . -u $1
}
sqlmap(){
cd /tools/sqlmap*
python sqlmap.py -u $1
}
knock(){
cd /home/tools/knock/knockpy
python knockpy.py -w list.txt $1
}
ncx(){
nc -l -n -vv -p $1 -k
}