A list of useful payloads and bypass for Web Application Security and Pentest/CTF
☆13Aug 26, 2021Updated 4 years ago
Alternatives and similar repositories for PayloadsAllTheThings
Users that are interested in PayloadsAllTheThings are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A simple vulnerable webapp created by PHP☆14Apr 18, 2025Updated last year
- Simple vulnerability labs that created using PHP and MySQL.☆16Dec 30, 2022Updated 3 years ago
- Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.☆11Dec 30, 2020Updated 5 years ago
- Spring4Shell reproduce☆11Apr 1, 2022Updated 4 years ago
- PHP lab to test captcha bypassing☆30Jan 8, 2024Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Bash & Python scripts for daily life☆16Nov 27, 2018Updated 7 years ago
- CSbyGB - Gabrielle B's new Blog!☆23Jul 29, 2025Updated 9 months ago
- A small stuff of telegram bot for pentest and information gathering.☆11Oct 3, 2020Updated 5 years ago
- Links to VeteranSec Resources☆12May 18, 2020Updated 5 years ago
- Template to detect some malware☆14Aug 7, 2023Updated 2 years ago
- Bot verifies a mobile phone number activity status by HLR-lookup. The request is processed by the communication operator without reaching…☆16Jan 25, 2022Updated 4 years ago
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Sep 11, 2021Updated 4 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆11Feb 23, 2022Updated 4 years ago
- ☆10Sep 30, 2020Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Automation for Open Threat Exchange☆24Mar 16, 2024Updated 2 years ago
- Simple website to guess API Key / OAuth Token☆48Aug 29, 2022Updated 3 years ago
- Random Tools for Bug Bounty☆151Oct 15, 2022Updated 3 years ago
- A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the ac…☆19Apr 11, 2022Updated 4 years ago
- malware phylogeny for WSO web shell, Shellbot IRC bot and algorithm☆17May 24, 2022Updated 3 years ago
- ☆11May 30, 2021Updated 4 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆50Nov 4, 2022Updated 3 years ago
- A Python API to send messages via web-based free SMS providers☆18May 28, 2011Updated 14 years ago
- joomla com_xcloner exploit [Mass Autoexploiting script coded with python]☆13Apr 29, 2019Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Assorted scripts I made for Red Teaming / Pen Testing☆14Jun 15, 2024Updated last year
- Manticore Ransomware Emulation - Educational Purpose Only!☆10Aug 2, 2020Updated 5 years ago
- Do recon in single click☆21Jan 22, 2025Updated last year
- Reference list for my Ransomware exploitation research. Lists current DLLs I have seen to date that some ransomware search for, which I h…☆11Jul 16, 2022Updated 3 years ago
- A Proof-Of-Concept for the recently found CVE-2021-44228 vulnerability.☆11Nov 26, 2022Updated 3 years ago
- AutoExploiter Wordpress , Joomla , Drupal☆18Mar 27, 2018Updated 8 years ago
- ☆14Feb 16, 2023Updated 3 years ago
- This is a beginner level session to train you into using SSH more effectively. While pentesters may benefit (especially if they are plan…☆15Feb 9, 2019Updated 7 years ago
- Aplikasi untuk membangun NAT, DHCP Server, access log, cache web, port forwarding, VPN Server secara cepat termasuk konfigurasinya, pada …☆16May 15, 2022Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…☆61Apr 2, 2024Updated 2 years ago
- ToyOS is a simple x86 OS that only accepts numeric values into the input stream and returns them to a standard out console.☆12Nov 27, 2025Updated 5 months ago
- ☆14Mar 16, 2024Updated 2 years ago
- ☆12Dec 26, 2021Updated 4 years ago
- A small string masking library in javascript☆12Dec 15, 2023Updated 2 years ago
- A simple Mac-Address Sniffer based on tshark☆12Dec 27, 2018Updated 7 years ago
- A collection oneliner scripts for bug bounty☆185Mar 21, 2024Updated 2 years ago