Commit Graph

783 Commits

Author SHA1 Message Date
Swissky
064467ecfc SSTI + XSS Flash 2017-07-16 16:30:08 +02:00
Swissky
77e2fc8226 LDAP & XPATH injection + Small fixes and payloads 2017-07-14 23:40:31 +02:00
Swissky
9907a55c24 Image Magick - More payloads 2017-07-09 17:16:42 +02:00
Swissky
c4b49fa5ac Open Redirect Payloads updated 2017-07-06 21:02:19 +02:00
Swissky
6070ece522 Symbolic Link Zip + SQL injection ORDER BY 2017-07-04 23:17:59 +02:00
Swissky
a1fbd41bbb Wrapper PHP inclusion updated 2017-07-02 23:10:34 +02:00
Swissky
ab63a537e7 FFMpeg injection - Bypass and explanation 2017-06-28 22:45:36 +02:00
Swissky
240e46e1e1 XXE via DTD and PHP Filter 2017-06-28 21:43:30 +02:00
Swissky
43f8367df0 Update Image Tragick payloads 2017-06-28 11:23:16 +02:00
Swissky
220e9cb8bd FFMpeg HLS - read passwd/shadow 2017-06-26 21:32:10 +02:00
Swissky
d97cb891df AWS Bucket : Listings open bucket/reading and access 2017-06-18 18:42:12 +02:00
Swissky
f131aebce4 SSRF updates and methodology aquatone tool 2017-06-17 23:20:24 +02:00
Swissky
7c865ab8aa CVE Struts RCE + AWS ls + RCE spaceless Windows + Methodology updated 2017-06-05 14:57:28 +02:00
Swissky
2e75cbe25a Git insecure files renamed + svn method added 2017-06-04 17:58:09 +02:00
Swissky
94470a2544 More payloads for XSS/SQL/LFI/Upload and XXE 2017-06-04 17:22:26 +02:00
Swissky
58aed12c9d CRLF injection updated 2017-05-29 20:41:05 +02:00
Swissky
e89e4fd312 Methodology updated with RPCClient, User enumeration 2017-05-17 20:40:45 +02:00
Swissky
62f686dc1f Methodology updated - Dorks, Subdomains, Nmap 2017-05-01 22:40:36 +02:00
Swissky
00be7d958c README : Bug bounty added 2017-04-25 23:22:55 +02:00
Swissky
85b62cee39 README update : more books and tools 2017-04-08 15:59:40 +02:00
Swissky
d21dcdd463 Merge pull request #3 from sokaRepo/master
Add Jinja Template injections
2017-04-01 17:57:12 +02:00
Soka
bb98bd9339 Add Template injections + Jinja template injection 2017-04-01 18:53:43 +03:00
Soka
76b15d575e Add Template injections + Jinja template injection 2017-04-01 18:48:44 +03:00
Swissky
b57c7c9e3d README - Youtube references 2017-03-30 20:24:48 +02:00
Swissky
9211d40871 Methodology - The Harvester + Checklist v2 2017-03-30 20:20:52 +02:00
Swissky
7e739b02ad Methodology - The Harvester + Checklist 2017-03-26 20:51:40 +02:00
Swissky
3d917be066 Methodology - Burp config + Nikto 2017-03-26 20:40:32 +02:00
Swissky
af01b04a30 Methodology update - design + nmap 2017-03-26 18:00:23 +02:00
Swissky
90265b8250 Git - methodology 2017-03-19 23:51:56 +01:00
Swissky
b0769b19b0 Update Git-rip 2017-03-14 23:39:02 +01:00
Swissky
6b860c627e RCE Time based : Data extraction 2017-03-03 21:41:00 +01:00
Swissky
eecfc69c08 XSS Payload - bypass document blacklisted keyword 2017-03-02 17:39:15 +01:00
Swissky
0a0abd8a9d Typo fix in Web cache 2017-02-27 20:06:40 +01:00
Swissky
c1c8adefc6 Web cache deception update 2017-02-27 20:04:53 +01:00
Swissky
297a88dae2 Web cache deception 2017-02-27 20:03:11 +01:00
Swissky
d7626eb420 PR: add git clone for subbrute - from zjuchenyuan/patch-1
add git clone for subbrute
2017-02-21 15:11:18 +01:00
ChenYuan
1ae1d8a365 add git clone for subbrute 2017-02-21 22:00:35 +08:00
Swissky
2eaedbc06e SQLite injection update-Extract table/column name 2017-02-21 09:16:51 +01:00
Swissky
e7f3e7a50a GIT & SVN insecure source code 2017-02-18 00:30:55 +01:00
Swissky
eca05b5314 SQL injection - Insert Statement From Detectify 2017-02-16 00:29:33 +01:00
Swissky
837d3e0b74 Update README description 2017-02-08 14:20:43 +01:00
Swissky
ce13a3d82c Update ReadMe Practice and Book + SQLi 2017-02-07 09:53:48 +01:00
Swissky
23f00b55d5 Update SQL injection with Information.schema alternatives 2017-02-06 09:50:13 +01:00
Swissky
c9e13fcc36 XSS Unicode update 2017-01-21 15:38:47 +01:00
swisskyrepo
b01c249da8 Update XSS with AngularJS Bypass 1.1.0 to 1.6.0 2017-01-15 19:14:39 +01:00
swisskyrepo
bb238f7301 Minor Updates in SQL-SSRF-XSS 2017-01-07 20:51:47 +01:00
swisskyrepo
14a82a14a4 Methodo, SQL,RCE,XSS,XXE updated 2016-12-20 19:46:06 +01:00
swisskyrepo
a39a10f175 SQL injection - added some bypass 2016-12-04 20:26:42 +07:00
swisskyrepo
d6eaa26820 SQL injection - Tamper script 2016-12-04 19:18:49 +07:00
swisskyrepo
07388503b0 XSS,SQL OAuth Updated 2016-12-04 01:03:59 +07:00