Commit Graph

60 Commits

Author SHA1 Message Date
Swissky
32d9f7550d XPATH + XSS + XXE + XSLT 2024-11-30 21:14:51 +01:00
Swissky
48a4e5c95b Normalize page header for SQLi, Upload, Cache Deception 2024-11-10 20:49:52 +01:00
Swissky
b2bb1df9a9 References addded for SQLi, Upload, SSTI, Type Juggling 2024-11-07 20:54:16 +01:00
Swissky
d5a6811193 Fix typos 2024-09-16 18:05:54 +02:00
Jonathan Thompson
7a68102a3c Fix link to SecLists/content-type.txt 2024-05-04 11:12:54 -07:00
Swissky
c852118ec8 Web Cache Deception + phpt file format 2024-01-11 12:20:25 +01:00
Swissky
dd7525dc8f
Merge pull request #630 from mtausig/patch-2
Add documentation for PDF JS PoC
2023-10-10 12:57:44 +02:00
Harun
87e78b4c4b
Update README.md
Added Node.js
2023-04-09 12:35:43 -04:00
Swissky
dd0c23f9a2 ImageMagick Typo 2023-03-19 22:46:56 +01:00
Mat
5817de1fb2
Add documentation for PDF JS PoC 2023-03-07 17:10:23 +01:00
Maxence Schmitt
5f8b3f8a14 add uwsgi configuration file to Upload Insecure File 2023-03-01 14:49:31 +01:00
Swissky
3e9ef2efbe ADFS Golden SAML 2022-11-07 10:10:21 +01:00
Fabian S. Varon Valencia
6394757dc3 added a new reference to code injection 2022-10-26 20:38:01 -05:00
Swissky
6dd5c18b45 Normalize Titles 2022-10-12 12:13:55 +02:00
Markus
950114b9e6
Zip Slip: Add slipit to tools 2022-10-03 18:19:28 +02:00
Deep Dhakate
a670a26eea Update 2022-10-02 06:13:01 +00:00
Swissky
2d30e22121 DPAPI - Data Protection API 2022-09-23 00:35:34 +02:00
Swissky
267713c0fb YAML Deserialization 2022-09-16 16:37:40 +02:00
Swissky
84fa229a44
Merge pull request #463 from nismo-s13/master
Delete Parser & Curl < 7.54.png
2022-09-06 23:13:55 +02:00
Swissky
fae02107df Jetty RCE Credits 2022-09-04 14:24:16 +02:00
Swissky
fbd7517e04 LFI2RCE - Picture Compression - SOCKS5 CS 2022-08-21 16:38:54 +02:00
Swissky
fa849c00f2 Jetty RCE + Upload tricks 2022-08-09 22:05:45 +02:00
Swissky
e386a110d9 Find DC 2022-07-27 17:23:30 +02:00
Swissky
0c7da8ec41 DNS Admins Group 2022-06-07 20:36:09 +02:00
Swissky
67457ec582 SCCM deployment + JSON uploads 2022-05-09 15:14:26 +02:00
Swissky
33ea0b54fb
Merge pull request #495 from hahwul/saml-update
Update tools in SAML Injection
2022-05-01 13:00:05 +02:00
Swissky
578ea4d12b SOAP File Upload 2022-04-18 21:32:54 +02:00
Swissky
89f0b93d43 Elastic EDR + VM Persistence 2022-03-27 19:50:33 +02:00
enaylal
d037335a4a add file php8 2022-01-01 11:48:07 +01:00
Houziaux Mike
5b131ec479
Update extensions.lst 2022-01-01 11:43:58 +01:00
nismo-s13
342b1f4f60
Rename shell.png?shell.php to shell.png^shell.php 2021-11-24 17:56:20 +13:00
nismo-s13
410758cf80
Rename shell.jpg?shell.php to shell.jpg^shell.php 2021-11-24 17:55:52 +13:00
nismo-s13
b1ce7a2547
Rename shell.gif?shell.php to shell.gif^shell.php 2021-11-24 17:55:13 +13:00
HAHWUL
5e415caea7
Merge branch 'master' into master 2021-10-21 00:44:35 +09:00
HAHWUL
e6f549f96e
Add ZAP FileUpload AddOn to Tools 2021-10-20 09:07:29 +09:00
Alvin Smith
31a1cdc86f
Rename web.web.config to web.config 2021-08-09 22:48:10 +12:00
Alvin Smith
a092546230
Delete web.config as it's not working 2021-08-09 22:47:57 +12:00
Swissky
3f2f156c12 File Upload Update 2021-07-14 17:10:04 +02:00
Swissky
0ba120e250 Fix #382 2021-06-23 22:14:55 +02:00
Swissky
4f89c0a6d2
Merge pull request #349 from SecGus/master
Add .ashx shell
2021-03-30 15:31:53 +02:00
chivato
2c0fff2a7a
Add .ashx shell 2021-03-30 13:56:31 +01:00
Swissky
f6b9d63bf8 DCOM exploitation and MSSQL CLR 2021-03-24 22:26:23 +01:00
Swissky
b918095775 AzureHound 2020-11-24 12:41:34 +01:00
Swissky
21f2b5dca6 Upload Methodology 2020-09-27 11:16:50 +02:00
vict0ni
e61db57ff1
Update README.md
fixed indentation
2020-05-14 00:10:12 +02:00
vict0ni
7b8514f1f5
Update README.md
Added "adding magic bytes" solution
2020-05-14 00:09:30 +02:00
Techbrunch
5902da38e4
Create web.web.config
Source: https://gist.github.com/gazcbm/ea7206fbbad83f62080e0bbbeda77d9c
2020-04-08 19:14:30 +02:00
Swissky
00684a10cd IIS asp shell with .asa, .cer, .xamlx 2019-11-16 14:53:42 +01:00
Swissky
43f185d289 CVE-2019-1322 UsoSvc 2019-11-11 20:31:07 +01:00
Hi15358
83569c6142
Update and rename ReadMe.txt to README.md 2019-10-30 12:07:50 +08:00