z0rs
/
bugbounty-wordlist
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add HaE regular expressions.

This commit is contained in:
Ciaran 2023-07-13 07:28:37 +01:00
parent 0140f688f5
commit ef8e5efdc8
2 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -26,6 +26,10 @@ I will use http.txt to see if there is any content there.
Sometimes I may use it recursively.
## hae.txt
A bunch of regular expressions I use with the [HaE extension](https://github.com/gh0stkey/HaE). This may be a bit redudant now with the release of [Burp BChecks](https://github.com/PortSwigger/BChecks). The regular expressions themselves are still useful.
## objects.txt
I generally use this if I find some sort of API/RPC type endpoint like /api to discover the resources that the API can interact with.

11
hae.txt Normal file
View File

@ -0,0 +1,11 @@
(graphql\?\w+|\s*\"variables\"\:\{)
operation\:\"query\"\,\w+\:\{\w+\:\"Name\"\,\w+\:\"(\w+)\"\}
(api|\/api\/|\/v[1-10]\/|\/\d*\.\d*\/)
\_\_schema\s+\{
kind\:\"Operation\"\,name\:\"(\w+)\"
query\s+(\b[A-Z]\w+)\(
graphql\/.*(\b[A-Z]\w+)\s+
\"queryName\"\:\"(\w+)\"
\"operationName\"\:\"(\w+)\"
\/\:type\/
query\s+(\b[A-Z]\w+)