Writeups
CTF Methodologies
ffuf
ffuf -w /usr/share/SecLists/Discovery/Web-Content/common.txt:FUZZ -u {DOMAIN}/FUZZ | tee ffuf-fuzzing.txt
============================================================================================================
gobuster
gobuster dir -u {IP} -w /usr/share/SecLists/Discovery/Web-Content/common.txt | tee gobuster-fuzzing.txt
============================================================================================================
nmap
nmap -sS -Pn -p- -sC -sV {IP} | tee nmap-scan.txt
============================================================================================================
nikto
nikto -h {DOMAIN} | tee nikto-scan.txt
============================================================================================================
cURL OPTIONS request
curl -iX OPTIONS {DOMAIN} | tee curl-options.txt
cURL PUT request
curl -iX PUT {DOMAIN} | tee curl-put.txt
============================================================================================================
enum4linux
enum4linux -a {IP}
============================================================================================================
smbclient
smbclient -L {IP} | tee smbclient.txt
============================================================================================================
wpscan
wpscan --url {DOMAIN} -U usernames.txt -P /usr/share/wordlists/rockyou.txt
============================================================================================================
Nice Tools
./testssl.sh -Z {DOMAIN}
python3 xsstrike.py -u {IP} -t 10 --crawl -l 3 | tee xsstrike.txt
xsrfprobe -u {url/endpoint}
Users Enumeration
Do a GET request to somedomain.com/wp-json/wp/v2/users - use firefox for a better output ============================================================================================================
API XMLRPC Accept POST Requests
Verify if the API accept post request doing a GET request to somedomain.com/xmlrpc.php
Do a POST request to somedomain.com/xmlrpc.php using the following payload to list the available methods:
<methodCall><methodName>system.listMethods</methodName><params></params></methodCall>
============================================================================================================ Working with files
The code below assume that you're in a Windows environment. The snippet read a file and edit them to write custom
modifications, could be a list of IP address for example, and uses this information to write with our script.
import io
with open("pathToFile\\file.txt", "r+") as f:
newline = []
for line in f.readlines():
newline.append(line.replace(line, '\n./yourScript.sh ' + line.rstrip('\n') + ' --someFlag;'))
with open("pathToFile\\file.txt", "w") as file:
file.seek(0)
file.writelines(newline)
This can be useful when you receive a list of IP address by the client and need to run a lot of scripts over them
============================================================================================================ Services
Applicated Development
Functional analisys and software documentation, agile codification, focusing on customers business
Responsive Design
Creation of WebApps resulting from different devices, with solid knowledge of web design and layouts that suit the access device
Web Security
Use of best practices in the development of robust applications, always considering the security of sensitive customer data first
Experience
-
2017 - 2018
Vert Integradora de TI
Development (Laravel) and maintenance on PHP systems (Joomla, Moodle, WordPress). Website creation with WordPress and Joomla. Creation and customization of modules and plugins in PHP systems (Joomla). Dashboard creation of B.I. and B.A with the Pentaho tool (JSP). Requirements gathering, business / data modeling and implementation of systems that automate the work of the sector (ESDPU)
-
2016 - 2017
Stefanini
Development and maintenance in .NET, ASP and C # systems. Survey of rules for migration of latest technologies (Reverse Engineering). Creation and customization of modules and plugins in PHP systems (Joomla)
-
2015 - 2016
Ministry of the Environment
Development and maintenance on PHP systems (WordPress, Joomla). Survey of rules for creating portals for creating portals related to the institution's projects, customization of modules and plugins in PHP systems (Joomla)
-
Amoung
others
previous!
Talk to me
TryHackMe Profile: xivitz
Send me an e-mail: diamatheus@gmail.com
LinkedIn profile: Matheus Dias
