emadshanab / LFI-Payload-ListLinks
LFI Payloads List coolected from github repos
☆81Updated 5 years ago
Alternatives and similar repositories for LFI-Payload-List
Users that are interested in LFI-Payload-List are comparing it to the libraries listed below
Sorting:
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- Prototype Pollution Scanner☆127Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆91Updated last year
- Generates target specific word lists for Fuzzing with fuff☆111Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- ☆96Updated 5 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...☆149Updated 5 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- ☆89Updated 3 years ago
- ☆10Updated 5 years ago
- The scripts I write to help me on my bug bounty hunting☆122Updated 3 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆157Updated 5 years ago
- Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.☆61Updated last year
- Burpsuite plugin for Interact.sh☆227Updated last year
- ☆80Updated 3 years ago
- A Burp Suite extension for CSRF proof of concepts.☆52Updated 2 years ago
- Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…☆114Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- XSS Payload without Anything.☆107Updated 6 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆60Updated 6 years ago
- ☆96Updated 3 years ago
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆105Updated 4 years ago
- ☆41Updated 2 years ago