More cheatsheets

r1cksec · Feb 20, 2024 · b10a53b · b10a53b
1 parent 3483d1d
commit b10a53b
Show file tree

Hide file tree

Showing 14 changed files with 57 additions and 13 deletions.
diff --git a/api/intelx.md b/api/intelx.md
@@ -1,6 +1,11 @@
 ### Source
 https://github.com/IntelligenceX/SDK/blob/master/Intelligence%20X%20API.pdf
 
+### Return details about current subscription
+```
+curl -s -H "x-key: <apiKey>" "https://2.intelx.io/authenticate/info" 
+```
+
 ### Send search request for email addresses (sort 2 = most relevant items first”)
 ```
 curl -s -X POST -H "Content-Type: application/json" -H "x-key: <apiKey>" 'https://2.intelx.io/phonebook/search' --data '{"term":"<domain>","lookuplevel":0,"maxresults":1000,"timeout":null,"datefrom":"","dateto":"","sort":2,"media":0,"terminate":[]}'

diff --git a/api/networksdb.md b/api/networksdb.md
@@ -1,6 +1,11 @@
 ### Source
 https://networksdb.io/api/docs
 
+### Get information about current subscription
+```
+curl -sH "X-Api-Key: <apiKey>" https://networksdb.io/api/key
+```
+
 ### Get ASN and organisation
 ```
 curl -s -H "X-Api-Key: <apiKey>" "https://networksdb.io/api/org-search" -d search=<companyName>

diff --git a/api/projectdiscovery.md b/api/projectdiscovery.md
@@ -0,0 +1,8 @@
+### Source
+https://docs.projectdiscovery.io/api-reference/introduction
+
+### Get information about current subscription
+```
+curl --request GET --url "https://api.projectdiscovery.io/v1/user" --header 'X-API-Key: <apiKey>'
+```
+
diff --git a/api/robtex.md b/api/robtex.md
@@ -1,5 +1,5 @@
 ### Source
-https://www.robtex.com/api
+https://www.robtex.com/api/
 
 ### Get domain history and GEO-location of given ip
 ```

diff --git a/api/securitytrails.md b/api/securitytrails.md
@@ -3,7 +3,7 @@ https://docs.securitytrails.com/reference/history-whois
 
 ### Return details about current subscription
 ```
-curl -s --request GET --url "https://api.securitytrails.com/v1/account/usage" --header "accept: application/json" --header "APIKEY: <apiKey>"
+curl -s --request GET --url "https://api.securitytrails.com/v1/account/usage" --header "APIKEY: <apiKey>"
 ```
 
 ### Get historical whois information

diff --git a/api/shodan.md b/api/shodan.md
@@ -1,9 +1,9 @@
 ### Source
 https://developer.shodan.io/api
 
-### Return details about current subscription
+### Return usage of current subscription
 ```
-curl -s "https://api.shodan.io/account/profile?key=<apiKey>"
+curl -s "https://api.shodan.io/api-info?key=<apiKey>"
 ```
 
 ### Get rootdomains and subdomains of given company

diff --git a/api/tomba.md b/api/tomba.md
@@ -1,6 +1,11 @@
 ### Source
 https://app.tomba.io/api
 
+### Get information about current subscription
+```
+curl -s --request GET --url "https://api.tomba.io/v1/usage" -H "X-Tomba-Key: <apiKeyTa>" -H "X-Tomba-Secret: <apiKeyTs>"
+```
+
 ### Get email addresses and social media profiles
 ```
 curl -s --request GET --url "https://api.tomba.io/v1/domain-search?domain=<domain>" --header "X-Tomba-Key: <apiKeyTa>" --header "X-Tomba-Secret: <apiKeyTs>"

diff --git a/api/zoomeye.md b/api/zoomeye.md
@@ -3,7 +3,7 @@ https://www.zoomeye.org/doc
 
 ### Get current subscription status
 ```
-curl -X GET "https://api.zoomeye.org/resources-info" -H "API-KEY:<apiKey>"
+curl -s -X GET "https://api.zoomeye.org/resources-info" -H "API-KEY:<apiKey>"
 ```
 
 ### Search for associated domain names

diff --git a/linux/regex-expressions.md → linux/regular-expressions.md b/linux/regex-expressions.md → linux/regular-expressions.md
diff --git a/url/github-tools b/url/github-tools
@@ -2704,3 +2704,15 @@ Subdomains analysis and generation tool. Reveal the hidden!
 https://gitlab.com/KevinJClark/csharptoolbox
 C# port of LsassSilentProcessExit
 
+https://github.com/justakazh/sicat
+The useful exploit finder
+
+https://github.com/yuyudhn/AzSubEnum
+Azure Service Subdomain Enumeration
+
+https://github.com/Stratus-Security/Subdominator
+The Internets #1 Subdomain Takeover Tool
+
+https://github.com/chaudharyarjun/RepoReaper
+RepoReaper is an automated tool crafted to meticulously scan and identify exposed .git repositories within specified domains and their subdomains.
+
diff --git a/url/services.md b/url/services.md
@@ -45,7 +45,7 @@
 * https://kiosk.vsim.xyz ; #kisok #escape #tooling
 * https://lofl-project.github.io
 * https://lolbas-project.github.io
-* https://lots-project.com
+* https://lots-project.com ; #living-off-the-trusted-sites #phishing
 * https://malpedia.caad.fkie.fraunhofer.de
 * https://msportals.io
 * https://myip.wtf/json
@@ -65,7 +65,6 @@
 * https://ransomwhe.re
 * https://readme-typing-svg.demolab.com/demo
 * https://report.netcraft.com/report
-* https://report-phishing.projects.fleaz.me
 * https://scam-alert.io
 * https://scamsearch.io
 * https://socradar.io/labs/accountbreach
@@ -76,20 +75,21 @@
 * https://windows96.net
 * https://wtfbins.wtf
 * https://www.breaches.cloud
-* https://www.browserling.com
+* https://www.browserling.com ; #online-browser
 * https://www.cloudvulndb.org
 * https://www.denic.de/service/tools/idn-web-converter
 * https://www.irongeek.com/homoglyph-attack-generator.php
 * https://www.kali.org/tools
-* https://www.loldrivers.io
-* https://www.loobins.io
+* https://www.loldrivers.io ; #living-off-the-land-drivers
+* https://www.loobins.io ; #living-off-the-orchard-macOS-binaries
 * https://www.mail-tester.com
 * https://www.online-python.com
 * https://www.ransomware.live
 * https://www.revshells.com
 * https://www.virustotal.com
 * https://www.vonage.com
 * https://www.whatiswhere.com
-* https://www.youtubechapters.app
-* https://zws.im
-* http://www.insecam.org
+* https://www.youtubechapters.app ; #youtube #videos #chapter-definition
+* https://zws.im ; #url-shortener
+* http://www.insecam.org ; #webcam #livecam
+* https://formspark.io ; #hosting #webhooks #email
diff --git a/url/tagged-urls.md b/url/tagged-urls.md
@@ -658,3 +658,6 @@
 * https://zer1t0.gitlab.io/posts/attacking_ad ; #active-directory #methodology #kerberos #trust #gpo #kerberoast #asreproast #logon-types #acl 
 * http://www.selfadsi.de ; #active-directory #ldap #wiki #documentation
 * http://www.webappsec.org/projects/articles/121106.shtml ; #smtp #imap #injection #http #mail
+* https://blog.quarkslab.com/php-deserialization-attacks-and-a-new-gadget-chain-in-laravel.html ; #php #deserialization #gadged-chain #magic-methods
+* https://isc.sans.edu/diary/rss/30676 ; #phishing #threatintel #internet-archive #waybackmachine
+* https://www.akamai.com/blog/security-research/spoofing-dns-by-abusing-dhcp ; #windows #active-directory #dns #spoofing #dhcp
diff --git a/url/videos-podcasts.md b/url/videos-podcasts.md
@@ -14,3 +14,4 @@
 * https://www.youtube.com/watch?v=VGkfDBdlwjg ; #azure #entra #user-enumeration #phishing #microsoft-direct-send
 * https://www.youtube.com/watch?v=xhcKAClO-AM ; #lockpicking #lockpickinglawyer
 * https://www.youtube.com/watch?v=zccAvgC4UxU ; #threat-intel #osint #malware #http #wifi #dns #defcon
+* https://www.youtube.com/watch?v=4aiAtGF9tF4 ; #indodenito #dll-sideloading #c++ #api-monitor
diff --git a/windows/paths.md b/windows/paths.md
@@ -92,3 +92,8 @@ C:\Windows\Temp
 C:\Users\<user>\Default\AppData\LocalTemp
 ```
 
+### EDB Windows search service
+```
+C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb
+```
+