Jul 11, 2019 Xuan Ngo is the founder of OpenWritings.net. He currently lives in Montreal, Canada. He loves to write about programming and open source subjects. SQL Injection Login Bypass Cheat Sheet You can use the following cheat sheet on login forms for bypassing authentication proccess. I recommend you to use this cheat sheet with the Burp Suite Intruder Module.
Often you may want to put a file onto a target, this can be useful to move exploits onto the target amongst other things. Most of these techniques can be used in reverse to exfiltrate data as well
Using wget
A common method uses wget to pull the files from a web server
Wget cheatsheet 📅 2016-Jan-22 ⬩ ️ Ashwin Nanjappa ⬩ 🏷️ cheatsheet, wget ⬩ 📚 Archive. To download a URL: $ wget urltodownload. It writes to the current directory with a filename same as in the URL. To download a URL, but write to a specific filename: $ wget -O writetothisfile urltodownload. $ http POST name='John' Host:example.com — JSON, cookies, files, auth, and other httpie examples. One-page guide to httpie.
Params
Examples
Servers Expose Files
When you want to expose a file from your machine to wget you may want to enable a HTTP server on your machine to expose the files
Apache Server
Kali comes with an apache2 server pre-installed, it can be activated using the following command
then files within /var/www/html can be accessed on port 80 of your IP address
Python HTTP Server
Python can also provide a http server
This will expose the directory the command is run within and any sub directories as a web server
Params
Examples
Using Netcat
An alternative option is to use netcat to transfer the file as raw data
Reverse Connection
This uses a similar principle to a reverse shell, firstly you run open a listener on your machine, feeding in the file you wish to transfer, then on the target you connect back to the listener, sending the output to a file
Setting The Listener
Params
Examples
Triggering The Transfer
Params
Examples
Using SCP
If you have ssh credentials for the target, and an open ssh port you can use scp to transfer files
Using Username:Password Combo
When using this command you will prompted for the accounts password
Params
Chmod Cheat Sheet
Examples
Using SSH Key
Params
Examples
- PDF Link: cheatsheet-curl-A4.pdf, Category: Tools
- Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-curl-A4
- Related posts: CheatSheet: shell, #denny-cheatsheets
Yahoo Fantasy Football Cheat Sheets
File me Issues or star this repo.
1.1 Curl Get/Head
| Name | Command |
|---|---|
| Curl head request | curl -I https://www.google.com |
| Curl head request with verbose | curl -v -I https://www.google.com |
| Curl with explicit http method | curl -X GET https://www.google.com |
| Curl without http proxy | curl --noproxy 127.0.0.1 http://www.stackoverflow.com |
| Curl has no timeout by default | curl --connect-timeout 10 -I -k https://www.google.com |
| Curl get with extra headers | curl --verbose --header 'Host: www.mytest.com:8182' www.google.com |
| Curl get response with headers | curl -k -v https://www.google.com |
1.2 Curl POST
| Name | Command |
|---|---|
| Curl post request | curl -d 'name=username&password=123456' <URL> |
| Curl post send json | curl <URL> -H 'content-type: application/json' -d '{ 'woof': 'bark'}' |
1.3 Curl Advanced
| Name | Command |
|---|---|
| Get my public ip | curl -L -s http://ipecho.net/plain, curl -L -s http://whatismijnip.nl |
| Curl with credential | curl -u $username:$password http://repo.dennyzhang.com/README.txt |
| Curl upload | curl -v -F key1=value1 -F upload=@localfilename <URL> |
| Install curl in alpine linux | apk add --update curl |
| Curl with http2 | curl -k -v --http2 https://www.google.com/ |
| Curl ftp upload | curl -T cryptopp552.zip -u test:test ftp://10.32.99.187/ |
| Curl ftp download | curl -u test:test ftp://10.32.99.187/cryptopp552.zip -o cryptopp552.zip |
| Curl upload with credential | curl -v -u admin:admin123 --upload-file package1.zip http://mysever:8081/dir/package1.zip |
1.4 Curl Script
| Name | Command |
|---|---|
| Install packages with curl | curl-install-package.sh |
| Check a website response time | curl-url-time.sh |
| Beautify json output for curl response | curl-format-json.sh |
| Curl run remote scripts | curl-remote-scripts.sh |
1.5 Wget
| Name | Command |
|---|---|
| Download one url | wget -O /tmp/google.html https://google.com |
| Download mutiple urls | wget https://google.com https://bing.com |
| Download a list of urls | wget -i url-list.txt, url-list.txt |
Wget Pdf
1.6 More Resources
Wget Cheat Sheet 2019
License: Code is licencurl under MIT License.