A list of useful payloads

工具

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

https://github.com/swisskyrepo/PayloadsAllTheThings

Payloads All The Things

A list of useful payloads and bypasses for Web Application Security. Feel free to improve with your payloads and techniques ! I <3 pull requests 🙂

You can also contribute with a beer IRL or with buymeacoffee.com

Every section contains the following files, you can use the _template_vuln folder to create a new chapter:

  • README.md – vulnerability description and how to exploit it
  • Intruder – a set of files to give to Burp Intruder
  • Images – pictures for the README.md
  • Files – some files referenced in the README.md

You might also like :

Try Harder

Ever wonder where you can use your knowledge ? The following list will help you find “targets” to improve your skills.

Book’s list

Grab a book and relax, these ones are the best security books (in my opinion).

More resources

Blogs/Websites

Youtube

微信 OR 支付宝 扫描二维码
为本文作者 打个赏
pay_weixin pay_zhifubao
如果文章对您有帮助,欢迎打赏赞助作者
没有评论

发表评论

工具
最佳黑客和安全专业人员黑客工具列表2018

原文:https://kalilinuxtutorials.com/best-hacking-too …

工具
Web应用代码自动化审计浅谈与工具

原文:https://xz.aliyun.com/t/4637 0. 序 代码审计是找到应用缺陷的过 …

工具
适用于渗透测试不同阶段的工具收集整理

Red Teaming / Adversary Simulation Toolkit 翻译链接: h …