foospidy / payloads
Git All the Payloads! A collection of web attack payloads.
☆3,677Updated last year
Alternatives and similar repositories for payloads:
Users that are interested in payloads are comparing it to the libraries listed below
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,742Updated 3 years ago
- PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with othe…☆3,527Updated last year
- Official Black Hat Arsenal Security Tools Repository☆3,988Updated 5 months ago
- Web application fuzzer☆6,059Updated 6 months ago
- List of Awesome Red Teaming Resources☆7,078Updated last year
- Automated All-in-One OS Command Injection Exploitation Tool.☆4,732Updated this week
- Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload cre…☆3,500Updated 2 weeks ago
- Collection of the cheat sheets useful for pentesting☆3,971Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,868Updated 10 months ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,032Updated last year
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆3,812Updated 6 months ago
- Wiki to collect Red Team infrastructure hardening resources☆4,222Updated 10 months ago
- A curated list of amazingly awesome Burp Extensions☆3,078Updated this week
- Attack Surface Management Platform☆8,426Updated last month
- ✍️ A curated list of CVE PoCs.☆3,370Updated 3 years ago
- File upload vulnerability scanner and exploitation tool.☆3,169Updated last year
- A Tool for Domain Flyovers☆5,714Updated 2 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,008Updated 6 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,163Updated 3 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,394Updated last year
- The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.☆5,230Updated 4 months ago
- A swiss army knife for pentesting networks☆8,587Updated last year
- Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet☆5,004Updated 2 months ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.��☆9,301Updated 5 months ago
- The Bug Hunters Methodology☆4,006Updated last year
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,645Updated this week
- A container repository for my public web hacks!☆1,973Updated 2 years ago
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,141Updated 2 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,517Updated last month
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,199Updated last year