ch0ic3/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-12-18 10:26:09 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
17 Commits 2 Branches 6 Tags 31 MiB
Python 83.8%
Ruby 6.3%
ASP.NET 3.8%
XSLT 2.6%
Classic ASP 1.4%
Other 1.9%
bfd50ae2cb
Go to file
swisskyrepo bfd50ae2cb Fix in juggling type + CSV injection
2016-10-20 10:50:12 +07:00
CRLF injection Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
CSV injection Fix in juggling type + CSV injection 2016-10-20 10:50:12 +07:00
CVE Shellshock Heartbleed CVE Heartbleed and Shellshcok added 2016-10-20 09:54:29 +07:00
Open redirect Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
PHP include Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
PHP juggling type Fix in juggling type + CSV injection 2016-10-20 10:50:12 +07:00
PHP serialization Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
Remote commands execution Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
SQL injection Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
SSRF injection Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
Tar commands execution Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
Traversal directory Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
Upload insecure files Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
XSS injection Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
XXE files Clean project - Renamed and added PHP juggling type 2016-10-20 10:22:24 +07:00
README.md Fix in juggling type + CSV injection 2016-10-20 10:50:12 +07:00

README.md

Payloads All The Things

A list of usefull payloads and bypasses for Web Application Security

TODO:

  • PHP Serialization

To improve:

  • RCE
  • SQL injection
  • XXE
  • SSRF
  • Upload
  • Tar command exec
  • Traversal Directory
  • XSS
  • PHP Include
  • CSV Injection

/!\ Work in Progress : 70%