Never Mind secfb

Preparation

Set up all tools we need.

Install Android Studio

Make sure to use custom installation and add platform-tools as well. Add following to your path (depending on your OS)

#cat targets_urls.txt                
http://public-firing-range.appspot.com

Command Line

gospider -S targets_urls.txt -c 10 -d 5 --blacklist ".(jpg|jpeg|gif|css|tif|tiff|png|ttf|woff|woff2|ico|pdf|svg|txt)" --other-source | grep -e "code-200" | awk '{print $5}'| grep "=" | qsreplace -a | dalfox pipe -o result.txt

https://github.com/jaeles-project/gospider

Command Execution

exec           - Returns last line of commands output
passthru       - Passes commands output directly to the browser
system         - Passes commands output directly to the browser and returns last line
shell_exec     - Returns commands output
\`\` (backticks) - Same as shell_exec()
popen          - Opens read or write pipe to process of a command
proc_open      - Similar to popen() but greater degree of control
pcntl_exec - Executes a program

log4j RCE Exploitation Detection

You can use these commands and rules to search for exploitation attempts against log4j RCE vulnerability CVE-2021-44228

Grep / Zgrep

This command searches for exploitation attempts in uncompressed files in folder /var/log and all sub folders

sudo egrep -I -i -r '\$(\{|%7B)jndi:(ldap[s]?|rmi|dns|nis|iiop|corba|nds|http):/[^\n]+' /var/log

Prevent applications running if `debug=true`

<system.web>
  <deployment retail="true"/>
</system.web>

	{
	"proxy":{
	"ssl_pass_through":{
	"automatically_add_entries_on_client_ssl_negotiation_failure":false,
	"rules":[
	{
	"enabled":true,
	"host":".*\\.google\\.com",
	"protocol":"any"
	},

	GREP NOT IP RESULT
	cat file.txt\| grep -Eov "\b(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\.(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\.(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\.(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\b"

	grep -Eov "(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\.(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\.(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)\.(25[0-5]\|2[0-4][0-9]\|[01]?[0-9][0-9]?)" some_ip.txt

	egrep -v '[[:digit:]]{1,3}\.[[:digit:]]{1,3}\.[[:digit:]]{1,3}\.[[:digit:]]{1,3}' file.txt

	grep -v "[[:alpha:]]" some_url-ip.txt \|egrep -v '[[:digit:]]{1,3}\.[[:digit:]]{1,3}\.[[:digit:]]{1,3}\.[[:digit:]]{1,3}'

	grep -Eov "^([0-9]{1,3})\.([0-9]{1,3})\.([0-9]{1,3})\.([0-9]{1,3})$" d.txt

	// $ frida -l antiroot.js -U -f com.example.app --no-pause
	// CHANGELOG by Pichaya Morimoto (p.morimoto@sth.sh):
	// - I added extra whitelisted items to deal with the latest versions
	// of RootBeer/Cordova iRoot as of August 6, 2019
	// - The original one just fucked up (kill itself) if Magisk is installed lol
	// Credit & Originally written by: https://codeshare.frida.re/@dzonerzy/fridantiroot/
	// If this isn't working in the future, check console logs, rootbeer src, or libtool-checker.so
	Java.perform(function() {

	var RootPackages = ["com.noshufou.android.su", "com.noshufou.android.su.elite", "eu.chainfire.supersu",

	#!/bin/bash

	curl -s http://burp/cert -x http://127.0.0.1:8080 -o cacert.der
	openssl x509 -inform DER -in cacert.der -out cacert.pem
	export CERT_HASH=$(openssl x509 -inform PEM -subject_hash_old -in cacert.pem \| head -1)
	adb root && adb remount
	adb push cacert.pem "/sdcard/${CERT_HASH}.0"
	adb shell su -c "mv /sdcard/${CERT_HASH}.0 /system/etc/security/cacerts"
	adb shell su -c "chmod 644 /system/etc/security/cacerts/${CERT_HASH}.0"
	rm -rf cacert.*

	#Example on how to use adb to start an Activity,
	#BroadcastReceiver or Service from adb and include intent extras too.

	#for Activity:

	adb shell am start -n "com.peirr.test/com.peirr.test.MyActivity" --es name "John" --ei age 30

	#for BroadcastReceiver

	adb shell am broadcast -n "com.peirr.test/com.peirr.test.MyReceiver" --es name "John" --ei age 30