Skip to main content

Hussein D Talk Series

Port scanning, deep port scanning

Subdomain recon of deeper domains like

Facebook cert


ffuf to scan for

Fuff -u -w wordlist subdomain

Angry ip scanner

Scan from this ip to this ip with this port

First crawling the website and see all the requests, Blind SQL Injections

Dumper Script sQL Map, (aTlas GitHub)

Internet Marketing Ninja(crawler)

Arjun or PAraminers Change json to xml, tamper with it

Change get request to POST,

LFI, Links input, file input, image inputs


cd Sublist3r && python -d

โ€™s/ substitute

\w* remove the first line

. Remove the space

// nothing

$ at the end of the line



Cut http and https from urls sed 's/https\?:\/\///'
packet_write_wait: Connection to port 22: Broken pipe

sed 's/https\?:\/\///' |tr -d "[,0-9]"

cat no404s.txt | sed 's/https\?:\/\///' |tr -d "[,0-9]" > cleanno404.txt

cat no404s.txt | sed 's/https\?:\/\///' |tr -d "[,0-9]" > cleanno404.txt

Look at javascript files always

phpinfo path

Apache default path