daffainfo
/
PayloadsAllTheThings
mirror of https://github.com/daffainfo/PayloadsAllTheThings.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
9 Commits
2 Branches
3 Tags
11 MiB
Python 86.3%
Ruby 6.5%
ASP.NET 3.9%
Classic ASP 1.4%
PHP 1.4%
Other 0.4%
 
 
 
 
 
 
Go to file
swisskyrepo a76711ed59 SSRF payloads 2016-10-18 14:54:41 +07:00
CRLF CRLF Payload 2016-10-18 15:15:43 +07:00
CSV_Injection Init directory with README 2016-10-18 15:01:56 +07:00
Open_Redirect Open Redirect Payloads 2016-10-18 15:41:18 +07:00
PHP_Serialization XXE payloads 2016-10-18 14:06:10 +07:00
RCE MySQL Payloads 2016-10-18 13:39:17 +07:00
SQL_Injection MySQL Payloads 2016-10-18 13:39:17 +07:00
SSRF SSRF payloads 2016-10-18 14:54:41 +07:00
TAR_Code_Exec Init directory with README 2016-10-18 15:01:56 +07:00
Traversal_Directory Init directory with README 2016-10-18 15:01:56 +07:00
Upload Init directory with README 2016-10-18 15:01:56 +07:00
XSS Init directory with README 2016-10-18 15:01:56 +07:00
XXE XXE payloads 2016-10-18 14:06:10 +07:00
README.md XXE payloads 2016-10-18 14:06:10 +07:00

README.md

PayloadsAllTheThings

A list of every usefull payloads and bypass for Web Application Security

TODO:

  • XSS
  • Upload
  • Traversal Directory
  • Tar
  • SSRF
  • PHP Serialization
  • CSV Injection

To improve:

  • RCE
  • SQL injection
  • XXE

/!\ Work in Progress : 1%