cat urls.txt | qsreplace "?admin=true" | gau | phpggc | anew | kxss | awk -v -q txt | sed 's/http/nhttp/g' | grep ^http | sed 's/(^http[^ <]*)(.*)/1/g' | grep -vi -e dalfox -e lElLxtainw| sort -u | waybackurls
poc来源网络,真伪自辫,作者称用这个tip,刷了20500美元的漏洞奖励。
P.S.
gau: https://github.com/lc/gau
phpggc: https://github.com/ambionics/phpggc
anew: https://github.com/tomnomnom/anew
kxss: https://github.com/Emoe/kxss
waybackurls: https://github.com/tomnomnom/waybackurls
推荐站内搜索:最好用的开发软件、免费开源系统、渗透测试工具云盘下载、最新渗透测试资料、最新黑客工具下载……
还没有评论,来说两句吧...