Commit Graph

809 Commits

Author SHA1 Message Date
clem9669
e37aff2fcd
Add useful always existing windows file
Adding always existing file in recent Windows machine. Ideal to test path traversal but nothing much interesting inside
2020-06-23 14:26:46 +00:00
Swissky
b9295bf504
Merge pull request #218 from noraj/patch-1
XXE ref. refactor
2020-06-23 15:01:26 +02:00
Alexandre ZANNI
7aef550c39
XXE ref. refactor
- Add new refs
- Format title with date, author, etc.
- Remove dead hosts:
  - agrawalsmart7.com
  - esoln.net
2020-06-22 15:53:07 +02:00
Swissky
6c63d9c9d9
Merge pull request #217 from alexlauerman/master
Improved Clarity of SSRF redirect
2020-06-22 11:06:12 +02:00
Alex Lauerman
d5c1f39c0f
Added DNS Rebinding 2020-06-21 16:31:16 -05:00
Alex Lauerman
c39c904c9a
Moved bypasses under the bypasses section 2020-06-21 16:27:32 -05:00
Alex Lauerman
6d37ad9e2e
Improved Clarity of ssrf redirect 2020-06-21 16:19:15 -05:00
Swissky
36bbfd877f Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings 2020-06-18 11:56:22 +02:00
Swissky
ecf29c2cbe Active Directory - Mitigations 2020-06-18 11:55:48 +02:00
Swissky
29575f54f7
Merge pull request #216 from rezaduty/patch-3
Update README.md
2020-06-17 10:35:57 +02:00
reza.duty
010b550dec
Update README.md 2020-06-17 11:42:26 +04:30
Swissky
74325476a0
Merge pull request #215 from bsysop/patch-1
metadata.nicob.net not long resolve to metadata IP
2020-06-14 18:47:35 +02:00
bsysop
24981f945f
metadata.nicob.net not long resolve to metadata IP
```
$ dig +short metadata.nicob.net
...
```

Not resolving
2020-06-14 12:08:25 -03:00
Swissky
701219932d
Merge pull request #214 from rezaduty/patch-2
Update README.md
2020-06-09 18:29:02 +02:00
reza.duty
03a0bda20d
Update README.md 2020-06-09 20:05:32 +04:30
Swissky
c24cb01715
Merge pull request #213 from DidierA/DidierA-patch-1
clarification in 'bypass character filter'
2020-06-06 00:05:13 +02:00
Didier Arenzana
bd0c6847b8
clarification in 'bypass character filter'
added the results of echo and tr commands for clarification
2020-06-04 17:26:45 +02:00
Swissky
71ddb449ce Windows Persistence 2020-06-01 21:37:32 +02:00
Swissky
137333cef6
Merge pull request #210 from meizjm3i/meizj-PayloadsAllTheThings
Update ERB SSTI tips
2020-05-29 13:54:44 +02:00
meizjm3i
a987b8be9f corrected a single quotation mark closure error 2020-05-29 18:35:22 +08:00
meizjm3i
7670e2c36c Update ERB SSTI tips 2020-05-29 12:28:55 +08:00
Swissky
5323ceb37c SUDO CVE + Windows Drivers PrivEsc 2020-05-28 11:19:16 +02:00
c14dd49h
5b47fc8ead
Update README.md 2020-05-27 18:53:37 +02:00
Swissky
4ca5e71c2f Bind shell cheatsheet (Fix #194) 2020-05-24 14:09:46 +02:00
Swissky
c734586e72
Merge pull request #208 from noraj/patch-1
PHP Unserialize : add more refs
2020-05-17 00:12:03 +02:00
Alexandre ZANNI
cb8bf8ea66
add more refs 2020-05-16 22:58:11 +02:00
Swissky
c1731041b5 Misc & Tricks Page + AMSI + Defender 2020-05-16 13:22:55 +02:00
Swissky
81655945f9
Merge pull request #207 from victoni/master
Adding the solution of Magic Bytes in the Unrestricted File Upload section
2020-05-14 12:13:52 +02:00
vict0ni
e61db57ff1
Update README.md
fixed indentation
2020-05-14 00:10:12 +02:00
vict0ni
7b8514f1f5
Update README.md
Added "adding magic bytes" solution
2020-05-14 00:09:30 +02:00
Swissky
eb074393df Windows Persistence - Binary replacing 2020-05-13 23:07:39 +02:00
Swissky
1d8714615d
Merge pull request #206 from engn33r/master
Added SSRF bypass details
2020-05-13 22:47:57 +02:00
John
a5d220d599 Added SSRF bypass details 2020-05-13 12:19:36 -04:00
Swissky
a65fdbb568 XSW 4 Fix #205 2020-05-12 14:27:25 +02:00
Swissky
e95a4aeac0 MSOL AD Spray 2020-05-11 17:08:03 +02:00
Swissky
3ed2b28e59 Add user /Y + GPO Powerview 2020-05-10 23:16:29 +02:00
Swissky
7f1c150edd Mimikatz Summary 2020-05-10 16:17:10 +02:00
Swissky
770723d9da
Merge pull request #204 from ThomasOrlita/master
Update CSP Evaluator blog link
2020-05-10 12:59:48 +02:00
Thomas Orlita
d0bb0f6f5b
Update CSP Evaluator blog link 2020-05-10 10:32:51 +02:00
Swissky
a436e0fe7e
Merge pull request #202 from rezaduty/patch-1
add Self Closing Script
2020-05-06 22:16:05 +02:00
reza.duty
eb28e4c28d
add Self Closing Script 2020-05-06 22:57:55 +04:30
Swissky
a322dc2da9
Merge pull request #200 from denandz/master
Added Postgres SQLi information on xml helpers and file read/write
2020-05-05 15:14:39 +02:00
DoI
5aad5795d2 minor spelling fix 2020-05-05 15:15:50 +12:00
DoI
53db029d4e Added additional info to the Postgres SQLi page 2020-05-05 15:10:44 +12:00
Swissky
a4b987d46b
Merge pull request #198 from joker2a/patch-1
Update Linux - Privilege Escalation.md
2020-05-04 12:09:35 +02:00
joker2a
32b83da302
Update Linux - Privilege Escalation.md
Add new privesc for (Centos/Redhat)
Writable /etc/sysconfig/network-scripts/
2020-05-04 11:44:24 +02:00
Swissky
5c7e67b05d
Merge pull request #197 from guanicoe/patch-2
Update Windows - Privilege Escalation.md
2020-05-03 23:17:05 +02:00
guanicoe
1fc8b57c85
Update Windows - Privilege Escalation.md
added Get-Process to list processes
2020-05-03 21:11:01 +00:00
Swissky
5163ef902c XSS Google Scholar Payload + Skeleton Key Persistence 2020-05-03 16:28:17 +02:00
Swissky
e9b296adb3 DoyenSec Payloads XSS Google Scholar 2020-05-02 14:31:33 +02:00