-
Notifications
You must be signed in to change notification settings - Fork 43
/
xsskiller.sh
85 lines (63 loc) · 2.83 KB
/
xsskiller.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
#!/bin/bash
clear
echo -e "\e[1m"
echo -e "\e[34m"
echo """
__ __ _____ _____ _ ___ _ _
\ \ / // ____/ ____| |/ (_) | |
\ V /| (___| (___ | ' / _| | | ___ _ __
> < \___ \\___ \| < | | | |/ _ \ '__|
/ . \ ____) |___) | . \| | | | __/ |
/_/ \_\_____/_____/|_|\_\_|_|_|\___|_|
"""
echo -e "\e[1m"
echo -n -e "\e[94m Do you want to do a new scan [Y/n]: "
read scans
if [ "$scans" = "Yes" ] || [ "$scans" = "Y" ] || [ "$scans" = "YES" ] || [ "$scans" = "y" ]; then
rm *.out
echo -e "\e[1m"
echo -e "\e[3m\e[35m[+] Scanning for subdomains, Yeet!! "
echo -e "\e[32m[+] Could take sometime.."
echo -e "\e[0m"
cp bounty-targets-data/data/wildcards.txt .; cat wildcards.txt | sed 's/^*.//g' | grep -v '*' > wildcards_without_stars.txt;
while read host;
do file=$host && file+="_subfinder.out";
~/go/bin/subfinder -o $file -d $host -silent;
done < wildcards_without_stars.txt;
cat *.out > all_subdomains.lst;
echo -e "\e[1m"
echo -e "\e[3m\e[91m Appending https:// to each subdomain.."
echo -e "\e[0m"
while read h;
do
echo "https://"$h >> subdomains.lst
done < all_subdomains.lst;
xsser -i /root/Bug-Bounty-Tools/subdomains.lst --auto --Str --reverse-check --Coo --Xsa --Xsr --Ind --Anchor --Dcp --Dom -c 99999 --Cw=50 --delay=1 --save --Phpids0.6.5 --Phpids0.7 --Imperva --Webknight --F5bigip --Barracuda --Modsec --Quickdefense --heuristic --threads=10
echo -e "\e[1m"
echo -e "\e[93m[+] Running XSS on all <domains>, Yeet!! "
echo -e "\e[0m"
echo -e "\e[34m\e[5m\e[1mPlease Wait.."
echo -e "\e[0m"
xsser -i /root/Bug-Bounty-Tools/domains.txt --auto --reverse-check --Str --Coo --Xsa --Xsr --Ind --Anchor --Dcp --Dom -c 99999 --Cw=50 --delay=1 --save --Phpids0.6.5 --Phpids0.7 --Imperva --Webknight --F5bigip --Barracuda --Modsec --Quickdefense --heuristic --threads=10
echo -e "\e[1m"
echo -e "\e[93m"
cat *.raw >> report.raw
cat report.raw
echo -e "\e[0m"
else
cat *.out > all_subdomains.lst;
echo -e "\e[1m"
echo -e "\e[3m\e[91m Appending https:// to each subdomain.."
echo -e "\e[0m"
while read h;
do
echo "https://"$h >> subdomains.lst
done < all_subdomains.lst;
xsser -i /root/Bug-Bounty-Tools/subdomains.lst --auto --Str --reverse-check --Coo --Xsa --Xsr --Ind --Anchor --Dcp --Dom -c 99999 --Cw=50 --delay=1 --save --Phpids0.6.5 --Phpids0.7 --Imperva --Webknight --F5bigip --Barracuda --Modsec --Quickdefense --heuristic --threads=10
echo -e "\e[1m"
echo -e "\e[93m[+] Running XSS on all <domains>, Yeet!! "
echo -e "\e[0m"
echo -e "\e[34m\e[5m\e[1mPlease Wait.."
echo -e "\e[0m"
xsser -i /root/Bug-Bounty-Tools/domains.txt --auto --Str --reverse-check --Coo --Xsa --Xsr --Ind --Anchor --Dcp --Dom -c 99999 --Cw=50 --delay=1 --save --Phpids0.6.5 --Phpids0.7 --Imperva --Webknight --F5bigip --Barracuda --Modsec --Quickdefense --heuristic --threads=10
fi