Name	Name	Last commit message	Last commit date
Latest commit 1ndianl33t Merge pull request 1ndianl33t#15 from jaisharmafps/patch-1 Sep 28, 2020 565382d · Sep 28, 2020 History 101 Commits
.github	.github	Update FUNDING.yml	Aug 23, 2020
License.md	License.md	Create License.md	Jul 2, 2020
README.md	README.md	Update README.md	Jun 1, 2020
debug_logic.json	debug_logic.json	fixed debug_logic pattern	May 31, 2020
idor.json	idor.json	fixed idor pattern	May 30, 2020
img-traversal.json	img-traversal.json	added json tag	Jun 5, 2020
interestingEXT.json	interestingEXT.json	gf needs double Escape	Jun 14, 2020
interestingparams.json	interestingparams.json	all-in-one juicy params	Jun 17, 2020
interestingsubs.json	interestingsubs.json	Nahamsec + 1ndianl33t Recon interesting Subs Pattern	May 31, 2020
jsvar.json	jsvar.json	special for @intigriti & @hakluke tips	Jun 15, 2020
lfi.json	lfi.json	added new param: url	Sep 28, 2020
rce.json	rce.json	added more parameters 🤘🤘♥️♥️	Jul 27, 2020
redirect.json	redirect.json	Minor patch (invalid JSON)	Sep 1, 2020
sqli.json	sqli.json	fixed sqli pattern	May 30, 2020
ssrf.json	ssrf.json	Update ssrf.json	Sep 1, 2020
ssti.json	ssti.json	fixed ssti pattern	May 30, 2020
xss.json	xss.json	Create xss.json	Jul 27, 2020

Gf-Patterns V 1.9

GF By

A wrapper around grep, to help you grep for things

installation

If you've got Go installed and configured you can install waybackurls & Gf with:

▶ go get -u github.com/tomnomnom/waybackurls

▶ go get -u github.com/tomnomnom/gf

If you've installed using go get, you can enable auto-completion to your .bashrc like this:

▶ echo 'source $GOPATH/src/github.com/tomnomnom/gf/gf-completion.bash' >> ~/.bashrc

Note that you'll have to restart your terminal, or run source ~/.bashrc for the changes to take effect.

To get started quickly, you can copy the example pattern files to ~/.gf like this:

▶ mkdir .gf

▶ cp -r $GOPATH/src/github.com/tomnomnom/gf/examples ~/.gf

MY Gf Patterns installation

▶ git clone https://github.com/1ndianl33t/Gf-Patterns

To get started quickly, you can copy the example pattern files to ~/.gf like this:

▶ mkdir .gf

▶ mv ~/Gf-Patterns/*.json ~/.gf

Use example

▶ cat subdomains.txt | waybackurls | sort -u >> waybackdata | gf ssrf | tee -a ssfrparams.txt

▶ cat waybackdata | gf redirect | tee -a redirect.txt

Pattern Files

The pattern definitions are stored in ~/.gf as little JSON files that can be kept under version control:

gf ssrf

▶ cat ~/.gf/ssrf.json

{
    "flags": "-iE",
     "patterns": [

        "access",
        "admin",
        "dbg",
        "debug",
        "edit",
        "grant",
        "test",
        "alter",
        "clone",
        "create",
        "delete",
        "disable",
        "enable",
        "exec",
        "execute",
        "load",
        "make",
        "modify",
        "rename",
        "reset",
        "shell",
        "toggle",
        "adm",
        "root",
        "cfg",
        "dest",
        "redirect",
        "uri",
        "path",
        "continue",
        "url",
        "window",
        "next",
        "data",
        "reference",
        "site",
        "html",
        "val",
        "validate",
        "domain",
        "callback",
        "return",
        "page",
        "feed",
        "host",
        "port",
        "to",
        "out",
        "view",
        "dir",
        "show",
        "navigation",
        "open"
        
      ]
}

gf redirect

▶ cat ~/.gf/redirect

{
    "flags": "-iE",
     "patterns": [
"forward=",
"dest=",
"redirect=",
"uri=",
"path=",
"continue=",
"url=",
"window=",
"to=",
"out=",
"view=",
"dir=",
"show=",
"navigation=",
"Open=",
"file=",
"val=",
"validate=",
"domain=",
"callback=",
"return=",
"page=",
"feed=",
"host=",
"port=",
"next=",
"data=",
"reference=",
"site=",
"html="
]
}

gf rce

▶ cat ~/.gf/rce.json
{
    "flags": "-iE",
     "patterns": [
 
        "daemon",
        "upload",
        "dir",
        "execute",
        "download",
        "log",
        "ip",
        "cli",
        "cmd"
]
}

Gf idor

▶ cat ~/.gf/idor.json
{
    "flags": "-iE",
     "patterns": [

 "id",
 "user",
 "account",
 "number",
 "order",
 "no",
 "doc",
 "key",
 "email",
 "group",
 "profile",
 "edit",
 "report"
 
 ]
}

Gf Sqli

▶ cat ~/.gf/sqli.json
{
    "flags": "-iE",
     "patterns": [

         "id",
        "select",
        "report",
        "role",
        "update",
        "query",
        "user",
        "name",
        "sort",
        "where",
        "search",
        "params",
        "process",
        "row",
        "view",
        "table",
        "from",
        "sel",
        "results",
        "sleep",
        "fetch",
        "order",
        "keyword",
        "column",
        "field",
        "delete",
        "string",
        "number",
        "filter"
]
}

Gf LFI

▶ cat ~/.gf/lfi.json
{
    "flags": "-iE",
     "patterns": [

        "file",
        "document",
        "folder",
        "root",
        "path",
        "pg",
        "style",
        "pdf",
        "template",
        "php_path",
        "doc"
]
}

Gf ssti

▶ cat ~/.gf/ssti.json


{
    "flags": "-iE",
     "patterns": [
        
        "template",
        "preview",
        "id",
        "view",
        "activity",
        "name",
        "content",
        "redirect"
]
}

Gf debug_logic

▶ cat ~/.gf/debug_logic.json
{
    "flags": "-iE",
     "patterns": [

        "access",
        "admin",
        "dbg",
        "debug",
        "edit",
        "grant",
        "test",
        "alter",
        "clone",
        "create",
        "delete",
        "disable",
        "enable",
        "exec",
        "execute",
        "load",
        "make",
        "modify",
        "rename",
        "reset",
        "shell",
        "toggle",
        "adm",
        "root",
        "cfg",
        "config"
]
}

Donations

You can encourage me to contribute more to the open source with donations.

Paypal - https://www.paypal.me/1ndianl33t
GooglePay,Paytm -

8085778875

Credit

Bugcrowd HUNT

Contributers

@victoni added more redirect parameters

@s0meguy1 redirect & ssrf pattern Added additional filters

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Gf-Patterns V 1.9

GF By

installation

Pattern Files

Donations

Credit

Contributers

Contact

About

Releases

Packages

License

ibrahem6/Gf-Patterns

Folders and files

Latest commit

History

Repository files navigation

Gf-Patterns V 1.9

GF By

installation

Pattern Files

Donations

Credit

Contributers

Contact

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Packages