code cleaning && bug fixed

arsenal/autoxss.sh

@@ -2,4 +2,4 @@
 
 dir=~/Recon/$1
 
-~/go/bin/dalfox -b hahwul.xss.ht file $dir/$1_params > $dir/$1_xss;
+dalfox -b hahwul.xss.ht file $dir/$1_params > $dir/$1_xss;

arsenal/corser.sh

@@ -2,5 +2,5 @@
 
 dir=~/Recon/$1
 
-python ~/Tools/CORScanner/cors_scan.py -i  $dir/$1_probed -t 200 > $dir/$1_cors;
-
+#python ~/Tools/CORScanner/cors_scan.py -i  $dir/$1_probed -t 200 > $dir/$1_cors;
+corscanner -i  $dir/$1_probed -t 200 > $dir/$1_cors;

arsenal/extractor.sh

@@ -2,5 +2,5 @@
 
 dir=~/Recon/$1
 
-~/go/bin/waybackurls $1 > $dir/$1_extraction;
-~/go/bin/gau $1 >> $dir/$1_extraction; cat $dir/$1_extraction | sort -u > $dir/$1_archive_extracts;
+waybackurls $1 > $dir/$1_extraction;
+gau $1 >> $dir/$1_extraction; cat $dir/$1_extraction | sort -u > $dir/$1_archive_extracts;

arsenal/gitter.sh

@@ -1,4 +1,4 @@
 #!/bin/sh
 dir=~/Recon/$1
-cat $dir/$1_probed | ~/go/bin/githound --dig-files --dig-commits > $dir/$1_gitrecon
+cat $dir/$1_probed | git-hound --dig-files --dig-commits > $dir/$1_gitrecon
 

arsenal/jscan.sh

@@ -1,11 +1,11 @@
 #!/bin/sh
 dir=~/Recon/$1
 
-echo $1| ~/go/bin/gau | grep -iE "\.js$" | uniq | sort >> $dir/$1_jsfile_links;
-echo $1 | ~/go/bin/subjs >> $dir/$1_jsfile_links;
-echo $1 | ~/go/bin/hakrawler -js -depth 2 -scope subs -plain >> $dir/$1_jsfile_links;
+echo $1 | gau | grep -iE "\.js$" | uniq | sort >> $dir/$1_jsfile_links;
+echo $1 | subjs >> $dir/$1_jsfile_links;
+echo $1 | hakrawler -js -depth 2 -scope subs -plain >> $dir/$1_jsfile_links;
 
-cat $dir/$1_jsfile_links | ~/go/bin/httpx -follow-redirects -silent -status-code | grep "[200]" | cut -d ' ' -f1 | sort -u > $dir/$1_live_jsfile_links;
+cat $dir/$1_jsfile_links | httpx -follow-redirects -silent -status-code | grep "[200]" | cut -d ' ' -f1 | sort -u > $dir/$1_live_jsfile_links;
 
 python3 ~/Tools/LinkFinder/linkfinder.py -d -i $1 -o cli >> $dir/$1_JSEndpoints;
 

arsenal/nuclear.sh

@@ -2,5 +2,5 @@
 
 dir=~/Recon/$1
 
-cat $dir/$1_probed | ~/go/bin/nuclei -c 500 -silent -t ~/Tools/nuclei-templates/ -o $dir/$1_nuclei;
+cat $dir/$1_probed | nuclei -c 500 -silent -t ~/nuclei-templates/ -o $dir/$1_nuclei;
 

arsenal/pattern.sh

@@ -1,11 +1,11 @@
 #!/bin/sh
 dir=~/Recon/$1
 
-~/go/bin/gf xss $dir/$1_archive_extracts | cut -d : -f3- | sort -u > $dir/$1_xss;
-~/go/bin/gf ssti $dir/$1_archive_extracts | sort -u > $dir/$1_ssti;
-~/go/bin/gf ssrf $dir/$1_archive_extracts | sort -u > $dir/$1_ssrf;
-~/go/bin/gf sqli $dir/$1_archive_extracts | sort -u > $dir/$1_sqli;
-~/go/bin/gf redirect  $dir/$1_archive_extracts | cut -d : -f3- | sort -u > $dir/$1_redirect;
-~/go/bin/gf rce  $dir/$1_archive_extracts | sort -u > $dir/$1_rce;
-~/go/bin/gf potential $dir/$1_archive_extracts| cut -d : -f3- | sort -u > $dir/$1_potential;
-~/go/bin/gf lfi  $dir/$1_archive_extracts | sort -u > $dir/$1_lfi;
+gf xss $dir/$1_archive_extracts | cut -d : -f3- | sort -u > $dir/$1_xss;
+gf ssti $dir/$1_archive_extracts | sort -u > $dir/$1_ssti;
+gf ssrf $dir/$1_archive_extracts | sort -u > $dir/$1_ssrf;
+gf sqli $dir/$1_archive_extracts | sort -u > $dir/$1_sqli;
+gf redirect  $dir/$1_archive_extracts | cut -d : -f3- | sort -u > $dir/$1_redirect;
+gf rce  $dir/$1_archive_extracts | sort -u > $dir/$1_rce;
+gf potential $dir/$1_archive_extracts| cut -d : -f3- | sort -u > $dir/$1_potential;
+gf lfi  $dir/$1_archive_extracts | sort -u > $dir/$1_lfi;

arsenal/portscan.sh

@@ -2,5 +2,5 @@
 
 dir=~/Recon/$1
 
-~/go/bin/naabu -iL $dir/$1_subdomains > $dir/$1_portscan;
+naabu -iL $dir/$1_subdomains > $dir/$1_portscan;
 

arsenal/portscan_single.sh

@@ -2,5 +2,5 @@
 
 dir=~/Recon/$1
 
-~/go/bin/naabu $1 > $dir/$1_portscan;
+naabu $1 > $dir/$1_portscan;
 

arsenal/probe_single.sh

@@ -3,4 +3,4 @@
 dir=~/Recon/$1
 mkdir $dir
 
-echo $1 | ~/go/bin/httpx -follow-redirects -status-code -vhost -threads 300 -silent | sort -u | grep "[200]" | cut -d [ -f1 | sort -u | sed 's/[[:blank:]]*$//' >> $dir/$1_probed;
+echo $1 | httpx -follow-redirects -status-code -vhost -threads 300 -silent | sort -u | grep "[200]" | cut -d [ -f1 | sort -u | sed 's/[[:blank:]]*$//' >> $dir/$1_probed;

arsenal/prober.sh

@@ -2,5 +2,5 @@
 
 dir=~/Recon/$1
 
-cat $dir/$1_subdomains | ~/go/bin/httpx -follow-redirects -status-code -vhost -threads 300 -silent | sort -u | grep "[200]" | cut -d [ -f1 | sort -u | sed 's/[[:blank:]]*$//' >> $dir/$1_probed
+cat $dir/$1_subdomains | httpx -follow-redirects -status-code -vhost -threads 300 -silent | sort -u | grep "[200]" | cut -d [ -f1 | sort -u | sed 's/[[:blank:]]*$//' >> $dir/$1_probed
 

arsenal/providers.json

@@ -0,0 +1,258 @@
+[
+	{
+		"name":"github", 
+		"cname":["github.io", "github.map.fastly.net"], 
+		"response":["There isn't a GitHub Pages site here.", "For root URLs (like http://example.com/) you must provide an index.html file"]
+	},
+	{
+		"name":"heroku", 
+		"cname":["herokudns.com", "herokussl.com", "herokuapp.com"], 
+		"response":["There's nothing here, yet.", "herokucdn.com/error-pages/no-such-app.html", "<title>No such app</title>"]
+	},
+	{
+		"name":"unbounce",
+		"cname":["unbouncepages.com"],
+		"response":["The requested URL / was not found on this server.", "The requested URL was not found on this server"]
+	},
+	{
+		"name":"tumblr",
+		"cname":["tumblr.com"],
+		"response":["There's nothing here.", "Whatever you were looking for doesn't currently exist at this address."]
+	},
+	{
+		"name":"shopify",
+		"cname":["myshopify.com"],
+		"response":["Sorry, this shop is currently unavailable.", "Only one step left!"]
+	},
+	{
+		"name":"instapage",
+		"cname":["pageserve.co", "secure.pageserve.co", "https://instapage.com/"],
+		"response":["You've Discovered A Missing Link. Our Apologies!"]
+	},
+	{
+		"name":"desk",
+		"cname":["desk.com"],
+		"response":["Please try again or try Desk.com free for 14 days.", "Sorry, We Couldn't Find That Page"]
+	},
+	{
+		"name":"tictail",
+		"cname":["tictail.com", "domains.tictail.com"],
+		"response":["Building a brand of your own?", "to target URL: <a href=\"https://tictail.com", "Start selling on Tictail."]
+	},
+	{
+		"name":"campaignmonitor",
+		"cname":["createsend.com", "name.createsend.com"],
+		"response":["Double check the URL", "<strong>Trying to access your account?</strong>"]
+	},
+	{
+		"name":"cargocollective",
+		"cname":["cargocollective.com"],
+		"response":["404 Not Found"]
+	},
+	{
+		"name":"statuspage",
+		"cname":["statuspage.io"],
+		"response":["Better Status Communication", "You are being <a href=\"https://www.statuspage.io\">redirected"]
+	},
+	{
+		"name":"amazonaws",
+		"cname":["amazonaws.com"],
+		"response":["NoSuchBucket", "The specified bucket does not exist"]
+	},
+	{
+		"name":"cloudfront",
+		"cname":["cloudfront.net"],
+		"response":["The request could not be satisfied", "ERROR: The request could not be satisfied"]
+	},
+	{
+		"name":"bitbucket",
+		"cname":["bitbucket.org"],	
+		"response":["The page you have requested does not exist"]
+	},
+	{
+		"name":"smartling",
+		"cname":["smartling.com"],
+		"response":["Domain is not configured"]
+	},
+	{
+		"name":"acquia",
+		"cname":["acquia.com"],
+		"response":["If you are an Acquia Cloud customer and expect to see your site at this address"]
+	},
+	{
+		"name":"fastly",
+		"cname":["fastly.net"],
+		"response":["Please check that this domain has been added to a service", "Fastly error: unknown domain"]
+	},
+	{
+		"name":"pantheon",
+		"cname":["pantheonsite.io"],
+		"response":["The gods are wise", "The gods are wise, but do not know of the site which you seek."]
+	},
+	{
+		"name":"zendesk",
+		"cname":["zendesk.com"],
+		"response":["<title>Help Center Closed | Zendesk</title>", "Help Center Closed"]
+	},
+	{
+		"name":"uservoice",
+		"cname":["uservoice.com"],
+		"response":["This UserVoice subdomain is currently available!"]
+	},
+	{
+		"name":"ghost",
+		"cname":["ghost.io"],
+		"response":["The thing you were looking for is no longer here", "The thing you were looking for is no longer here, or never was"]
+	},
+	{
+		"name":"pingdom",
+		"cname":["stats.pingdom.com"],
+		"response":["pingdom"]
+	},
+	{
+		"name":"tilda",
+		"cname":["tilda.ws"],
+		"response":["Domain has been assigned"]
+	},
+	{
+		"name":"wordpress",
+		"cname":["wordpress.com"],	
+		"response":["Do you want to register"]
+	},
+	{
+		"name":"teamwork",
+		"cname":["teamwork.com"],
+		"response":["Oops - We didn't find your site."]
+	},
+	{
+		"name":"helpjuice",
+		"cname":["helpjuice.com"],
+		"response":["We could not find what you're looking for."]
+	},
+	{
+		"name":"helpscout",
+		"cname":["helpscoutdocs.com"],
+		"response":["No settings were found for this company:"]
+	},
+	{
+		"name":"cargo",
+		"cname":["cargocollective.com"],
+		"response":["If you're moving your domain away from Cargo you must make this configuration through your registrar's DNS control panel."]
+	},
+	{
+		"name":"feedpress",
+		"cname":["redirect.feedpress.me"],
+		"response":["The feed has not been found."]
+	},
+	{
+		"name":"surge",
+		"cname":["surge.sh"],
+		"response":["project not found"]
+	},
+	{
+		"name":"surveygizmo",
+		"cname":["privatedomain.sgizmo.com", "privatedomain.surveygizmo.eu", "privatedomain.sgizmoca.com"],
+		"response":["data-html-name"]
+	},
+	{
+		"name":"mashery",
+		"cname":["mashery.com"],
+		"response":["Unrecognized domain <strong>"]
+	},
+	{
+		"name":"intercom",
+		"cname":["custom.intercom.help"],
+		"response":["This page is reserved for artistic dogs.","<h1 class=\"headline\">Uh oh. That page doesn’t exist.</h1>"]
+	},
+	{
+		"name":"webflow",
+		"cname":["proxy.webflow.io"],
+		"response":["<p class=\"description\">The page you are looking for doesn't exist or has been moved.</p>"]
+	},
+	{
+		"name":"kajabi",
+		"cname":["endpoint.mykajabi.com"],
+		"response":["<h1>The page you were looking for doesn't exist.</h1>"]
+	},
+	{
+		"name":"thinkific",
+		"cname":["thinkific.com"],
+		"response":["You may have mistyped the address or the page may have moved."]
+	},
+	{
+		"name":"tave",
+		"cname":["clientaccess.tave.com"],
+		"response":["<h1>Error 404: Page Not Found</h1>"]
+	},
+	{
+		"name":"wishpond",
+		"cname":["wishpond.com"],
+		"response":["https://www.wishpond.com/404?campaign=true"]
+	},
+	{
+		"name":"aftership",
+		"cname":["aftership.com"],
+		"response":["Oops.</h2><p class=\"text-muted text-tight\">The page you're looking for doesn't exist."]
+	},
+	{
+		"name":"aha",
+		"cname":["ideas.aha.io"],
+		"response":["There is no portal here ... sending you back to Aha!"]
+	},
+	{
+		"name":"brightcove",
+		"cname":["brightcovegallery.com", "gallery.video", "bcvp0rtal.com"],
+		"response":["<p class=\"bc-gallery-error-code\">Error Code: 404</p>"]
+	},
+	{
+		"name":"bigcartel",
+		"cname":["bigcartel.com"],
+		"response":["<h1>Oops! We couldn&#8217;t find that page.</h1>"]
+	},
+	{
+		"name":"activecompaign",
+		"cname":["activehosted.com"],
+		"response":["alt=\"LIGHTTPD - fly light.\""]
+	},
+	{
+		"name":"compaignmonitor",
+		"cname":["createsend.com"],
+		"response":["Double check the URL or <a href=\"mailto:help@createsend.com"]
+	},
+	{
+		"name":"acquia",
+		"cname":["acquia-test.co"],
+		"response":["The site you are looking for could not be found."]
+	},
+	{
+		"name":"proposify",
+		"cname":["proposify.biz"],
+		"response":["If you need immediate assistance, please contact <a href=\"mailto:support@proposify.biz"]
+	},
+	{
+		"name":"simplebooklet",
+		"cname":["simplebooklet.com"],
+		"response":["We can't find this <a href=\"https://simplebooklet.com"]
+	},
+	{
+		"name":"getresponse",
+		"cname":[".gr8.com"],
+		"response":["With GetResponse Landing Pages, lead generation has never been easier"]
+	},
+	{
+		"name":"vend",
+		"cname":["vendecommerce.com"],
+		"response":["Looks like you've traveled too far into cyberspace."]
+	},
+	{
+		"name":"jetbrains",
+		"cname":["myjetbrains.com"],
+		"response":["is not a registered InCloud YouTrack."]
+	},
+	{
+		"name":"azure",
+		"cname":["azurewebsites.net"],
+		"response":["404 Web Site not found"]
+	}
+]
+

arsenal/secrets.sh

@@ -3,5 +3,6 @@
 dir=~/Recon/$1
 
 cat $dir/$1_probed | xargs -I %% bash -c 'python3 ~/Tools/SecretFinder/SecretFinder.py -i %% -e -o cli' > $dir/$1_secretfinder; 
+#interlace -tL $dir/$1_probed -threads 5 -c "python3 ~/Tools/SecretFinder/SecretFinder.py -i _target_ -o cli >> $dir/$1_secretfinder" -v
 cat $dir/$1_secretfinder | grep 'google_api' -B 1 | sort -u > $dir/$1_gmapapi;
 

arsenal/subbruter.sh

@@ -2,7 +2,7 @@
 
 dir=~/Recon/$1
 
-echo $1 | ~/go/bin/shuffledns -w ~/go/bin/subdomains.txt -r ~/arsenal/resolvers.txt -v -silent -o $1_brute;
+echo $1 | shuffledns -w ~/arsenal/subdomains.txt -r ~/arsenal/resolvers.txt -v -o $1_brute;
 mv $1_brute $dir/$1_brute;
 cat $dir/$1_brute >> $dir/$1_unfilter_subdomains;
 cat $dir/$1_unfilter_subdomains | sort -u > $dir/$1_subdomains;

arsenal/subdomain.sh

@@ -3,8 +3,8 @@
 dir=~/Recon/$1
 mkdir -p $dir
 
-~/go/bin/subfinder -d $1 > $dir/$1_unfilter_subdomains;
-~/go/bin/assetfinder --subs-only $1 >> $dir/$1_unfilter_subdomains;
+subfinder -d $1 > $dir/$1_unfilter_subdomains;
+assetfinder --subs-only $1 >> $dir/$1_unfilter_subdomains;
 #amass enum -d $1 >> $dir/$1_unfilter_subdomains;
 cat $dir/$1_unfilter_subdomains | sort -u > $dir/$1_subdomains;