From 655d1258df004ac8d5584514b46209e85509de3a Mon Sep 17 00:00:00 2001 From: Liam Somerville Date: Tue, 19 Jul 2016 06:28:10 -0600 Subject: [PATCH 1/8] Add Ironport --- Passwords/default-passwords.csv | 1 + 1 file changed, 1 insertion(+) diff --git a/Passwords/default-passwords.csv b/Passwords/default-passwords.csv index 0a4a416b..21abf85c 100644 --- a/Passwords/default-passwords.csv +++ b/Passwords/default-passwords.csv @@ -322,6 +322,7 @@ Cisco,technician,2 + last 4 of Audio, Cisco,wlse,wlsedb, Cisco,wlseuser,wlsepassword, Cisco-Arrowpoint,admin,system, +Cisco-Ironport,admin,ironport, Citel,,citel, Citel,citel,password, Cnet,admin,password, From 301b19e724b1d8890e2182242fe6964a4fd15224 Mon Sep 17 00:00:00 2001 From: Liam Somerville Date: Mon, 19 Jun 2017 09:00:18 -0600 Subject: [PATCH 2/8] Update default-passwords.csv --- Passwords/default-passwords.csv | 1 + 1 file changed, 1 insertion(+) diff --git a/Passwords/default-passwords.csv b/Passwords/default-passwords.csv index 09fd52c0..5454f5e2 100644 --- a/Passwords/default-passwords.csv +++ b/Passwords/default-passwords.csv @@ -1,4 +1,5 @@ Vendor,Username,Password,Comments +,,H4!b5at+kWls-8yh4Guq,Troll from: https://mostsecure.pw/ "2Wire, Inc.",http,, 360 Systems,factory,factory, 3COM,3comcso,RIP000,Resets all passwords to defaults From b611c49aa2aa680c41f3e424a706cd7f803dd035 Mon Sep 17 00:00:00 2001 From: rik43 Date: Mon, 17 Jul 2017 16:55:50 +0300 Subject: [PATCH 3/8] Update passwords_youporn2012.txt merge conflict clear --- Passwords/passwords_youporn2012.txt | 3 --- 1 file changed, 3 deletions(-) diff --git a/Passwords/passwords_youporn2012.txt b/Passwords/passwords_youporn2012.txt index c499dd69..594946e9 100644 --- a/Passwords/passwords_youporn2012.txt +++ b/Passwords/passwords_youporn2012.txt @@ -4061,7 +4061,4 @@ lolol123 hello2 hooligan1 joker666 -hielox -<<<<<<< HEAD -======= hielox From 237e52f3c528139057cb819ae342abbb33e8d377 Mon Sep 17 00:00:00 2001 From: Nikolaos Kakouros Date: Tue, 12 Sep 2017 19:16:18 +0200 Subject: [PATCH 4/8] Corrects the mirai list --- Passwords/mirai_botnet.txt | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/Passwords/mirai_botnet.txt b/Passwords/mirai_botnet.txt index 43f896b0..17743d7c 100644 --- a/Passwords/mirai_botnet.txt +++ b/Passwords/mirai_botnet.txt @@ -40,7 +40,7 @@ root hi3518 root jvbzd root anko root zlxx. -root 7ujMko9vizxv +root 7ujMko0vizxv root 7ujMko0admin root system root ikwb @@ -58,4 +58,3 @@ admin pass admin meinsm tech tech mother fucker - From e206be9ce5dc443835f8399cd6be49a4ce67ef4d Mon Sep 17 00:00:00 2001 From: Jason Haddix Date: Wed, 27 Sep 2017 23:44:51 -0700 Subject: [PATCH 5/8] Create Jenkins-Hudson.txt --- Discovery/Web_Content/Jenkins-Hudson.txt | 11 +++++++++++ 1 file changed, 11 insertions(+) create mode 100644 Discovery/Web_Content/Jenkins-Hudson.txt diff --git a/Discovery/Web_Content/Jenkins-Hudson.txt b/Discovery/Web_Content/Jenkins-Hudson.txt new file mode 100644 index 00000000..5036c798 --- /dev/null +++ b/Discovery/Web_Content/Jenkins-Hudson.txt @@ -0,0 +1,11 @@ +/view/All/builds +/view/All/newjob +/asynchPeople/ +/userContent/ +/computer/ +/pview/ +/systeminf +/systemInfo +/script +/signup +/securityRealm/createAccount From e8762cc897c3d964481a14303d9bf57aa8068f73 Mon Sep 17 00:00:00 2001 From: Jason Haddix Date: Thu, 28 Sep 2017 12:40:09 -0700 Subject: [PATCH 6/8] Create repo-scan.txt --- Pattern_Matching/repo-scan.txt | 119 +++++++++++++++++++++++++++++++++ 1 file changed, 119 insertions(+) create mode 100644 Pattern_Matching/repo-scan.txt diff --git a/Pattern_Matching/repo-scan.txt b/Pattern_Matching/repo-scan.txt new file mode 100644 index 00000000..70e3982e --- /dev/null +++ b/Pattern_Matching/repo-scan.txt @@ -0,0 +1,119 @@ +api +api_key +api_secret_key +secret_key +secret +BEGIN +PRIVATE +private +PRIVATE_KEY +private_key +key +token +CSRF +Arrays.equals +HMAC +random +mt_rand +rand +random.org +iv +encrypt +crypt +MCRYPT +RIJNDAEL +MCRYPT_RIJNDAEL_256 +ECB +ecb +password +passwd +pass +hash +hashlib +hashed +md5 +sha1 +sha-1 +sha2 +sha-2 +salt +bcrypt +$2a$ +PBKDF2 +blake2 +CVE +vulnerable +stackoverflow +SO +base64 +Base64 +admin +rot13 +tmp +system +exec +popen +backtick operator +pcntl_exec +eval +preg_replace +create_function +exec +passthru +system +shell_exec +popen +proc_open +pcntl_exec +assert +preg_replace('/.*/e', +create_function +include +include_once +require +require_once +$_GET +phpinfo +posix_mkfifo +posix_getlogin +posix_ttyname +getenv +get_current_user +proc_get_status +get_cfg_var +disk_free_space +disk_total_space +diskfreespace +getcwd +getlastmo +getmygid +getmyinode +getmypid +getmyuid +extract +parse_str +putenv +ini_set +mail +header +proc_nice +proc_terminate +proc_close +pfsockopen +fsockopen +apache_child_terminate +posix_kill +posix_mkfifo +posix_setpgid +posix_setsid +posix_setuid +chmod +chown +shell=True +pickle.loads +yaml.load +debug +DebuggedApplication +Debug=True +evalex=True +Math.random From 55fca4fce723bce76f4d8f8884d56fc0c0a50799 Mon Sep 17 00:00:00 2001 From: Jason Haddix Date: Thu, 28 Sep 2017 12:40:27 -0700 Subject: [PATCH 7/8] Rename repo-scan.txt to repo_scan.txt --- Pattern_Matching/{repo-scan.txt => repo_scan.txt} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Pattern_Matching/{repo-scan.txt => repo_scan.txt} (100%) diff --git a/Pattern_Matching/repo-scan.txt b/Pattern_Matching/repo_scan.txt similarity index 100% rename from Pattern_Matching/repo-scan.txt rename to Pattern_Matching/repo_scan.txt From bc2b43d815f3eaf4dd5e376046c7e22dba401c30 Mon Sep 17 00:00:00 2001 From: Jason Haddix Date: Sun, 1 Oct 2017 16:15:20 -0700 Subject: [PATCH 8/8] Create AdobeCQ-AEM --- Discovery/Web_Content/AdobeCQ-AEM.txt | 73 +++++++++++++++++++++++++++ 1 file changed, 73 insertions(+) create mode 100644 Discovery/Web_Content/AdobeCQ-AEM.txt diff --git a/Discovery/Web_Content/AdobeCQ-AEM.txt b/Discovery/Web_Content/AdobeCQ-AEM.txt new file mode 100644 index 00000000..bd5d5e22 --- /dev/null +++ b/Discovery/Web_Content/AdobeCQ-AEM.txt @@ -0,0 +1,73 @@ +/libs/granite/core/content/login.html +/libs/cq/core/content/login.html +/crx/explorer/index.jsp +/crx/packmgr/index.jsp +/bin/querybuilder.json?type=rep:User&p.hits=selective&p.properties=rep:principalName%20rep:password&p.limit=100 +/.json +/.tidy.6.json +/.tidy.infinity.json +/bin.tidy.infinity.json +/bin/querybuilder.json +/apps.tidy.infinity.json +/var/classes.tidy.infinity.json +/content.infinity.json +/composer.json +/libs/cq/core/content/welcome.html +/siteadmin +/damadmin +/libs/cq/workflow/content/inbox.html +/crx/explorer/ui/search.jsp?Path=&Query= +/libs/cq/search/content/querydebug.html +/etc/clientcontext/default/content.html +/libs/cq/i18n/translator.html +/miscadmin +/libs/granite/backup/content/admin.html +/miscadmin#/etc/mobile +/miscadmin#/etc/blueprints +/miscadmin#/etc/designs +/libs/cq/tagging/content/tagadmin.html +/miscadmin#/etc/segmentation +/miscadmin#/etc/msm/rolloutconfigs +/damadmin#/content/dam +/miscadmin#/etc/importers +/etc/cloudservices.html +/crx/packmgr/index.jsp +/crx/packageshare +/crx/de +/system/console/profiler +/system/console/diskbenchmark +/libs/cq/workflow/content/console.html +/libs/cq/workflow/content/inbox.html +/etc/replication.html +/etc/replication/treeactivation.html +/etc/replication/agents.author.html +/etc/replication/agents.publish.html +/etc/replication/agents.publish/flush.html +/libs/cq/ui/content/dumplibs.html +/etc/reports/auditreport.html +/etc/reports/diskusage.html +/etc/reports/diskusage.html?path=/content/dam +/etc/reports/userreport.html +/crx/explorer/browser/index.jsp +/crx/explorer/nodetypes/index.jsp +/system/console/jmx/com.adobe.granite%3Atype%3DRepository +/libs/granite/cluster/content/admin.html +/system/console +/system/console/configMgr +/system/console/jmx/java.lang%3Atype%3DRuntime +/system/console/memoryusage +/system/console/vmstat +/system/console/productinfo +/system/console/profiler +/system/console/diskbenchmark +/libs/granite/backup/content/admin.html +/system/console/mimetypes +/system/console/licenses +/lc/content/ws +/workspace +/ReaderExtensions +/mobileformsivs +/lc/crx/packmgr/index.jsp +/lc/cm/ +/adminui +/lc/system/console