m4ll0k/PayloadsAllTheThings external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

m4ll0k/PayloadsAllTheThings

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/m4ll0k/PayloadsAllTheThings)

Close

m4ll0k / PayloadsAllTheThingsView on GitHubMore

• External links
• Readme badge

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

☆22Feb 26, 2021Updated 5 years ago

Alternatives and similar repositories for PayloadsAllTheThings

Users that are interested in PayloadsAllTheThings are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• m4ll0k / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆18Jun 4, 2021Updated 4 years ago
• m4ll0k / OneListForAll

  View on GitHub
  Rockyou for web fuzzing
  ☆15Jan 28, 2022Updated 4 years ago
• m4ll0k / Awesome-Bugbounty-Writeups

  View on GitHub
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆44Dec 26, 2020Updated 5 years ago
• frengor / PacketInjectorAPI

  View on GitHub
  Library for working with minecraft packets
  ☆11Oct 26, 2024Updated last year
• rix4uni / xsschecker

  View on GitHub
  xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…
  ☆37Nov 3, 2025Updated 6 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• m4ll0k / GitDorker

  View on GitHub
  A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
  ☆14Jan 28, 2021Updated 5 years ago
• JoasASantos / Digital-Footprint-Checklist

  View on GitHub
  This repository provides a comprehensive Digital Footprint Checklist to help individuals manage their online presence and enhance privacy…
  ☆17Dec 25, 2024Updated last year
• hdks-bug / hackfruit

  View on GitHub
  Hackfruit is an easy search tool that finds hacking tools, commands and cheat sheets. It helps cybersecurity learing and trainings, CTFs,…
  ☆23Dec 19, 2022Updated 3 years ago
• nccgroup / creep-web-app-scanner

  View on GitHub
  A web app scanner
  ☆24Jan 23, 2014Updated 12 years ago
• rudSarkar / Payloads

  View on GitHub
  Exploits for different vulnerabilities
  ☆12Nov 29, 2021Updated 4 years ago
• bobrol / hackrf-win

  View on GitHub
  HackRF-Win - windows build (Cygwin).
  ☆11Sep 3, 2023Updated 2 years ago
• byNEET / fbbrute

  View on GitHub
  ☆18Aug 5, 2022Updated 3 years ago
• scramblr / NETGEAR_ROUTER_HIDDEN_PAGES

  View on GitHub
  This is a list of currently known hidden pages within NETGEAR routers, switches, and other networking equipment. Why hidden? Ask Netgear.
  ☆24Apr 13, 2026Updated last month
• febinrev / quester

  View on GitHub
  QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.
  ☆15Aug 2, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• santosomar / kev_checker

  View on GitHub
  A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog
  ☆24Jun 13, 2023Updated 2 years ago
• appknox / vulnerable-application

  View on GitHub
  Test Android Application.
  ☆20Jan 22, 2016Updated 10 years ago
• agnes-it / maid-cafe

  View on GitHub
  It's an open source restaurant and coffee shop management system.
  ☆10Jan 6, 2023Updated 3 years ago
• j0hnnMcCock / fuckNSA

  View on GitHub
  fuckNSA
  ☆40Dec 5, 2013Updated 12 years ago
• cybercdh / bucket-finder

  View on GitHub
  Reads in a list of domains or subdomains and crawls them for references to S3 buckets
  ☆10Nov 21, 2023Updated 2 years ago
• dsopas / bugbounty-cheatsheet

  View on GitHub
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆13Oct 26, 2017Updated 8 years ago
• NuggaN85 / Protection-Anti-Plagiat

  View on GitHub
  Ce script vous permettra de protéger votre site web contre les attaque d'aspirateurs (comme le logiciel HTTrack).
  ☆11Mar 28, 2026Updated 2 months ago
• binaryedge / api-publicdoc

  View on GitHub
  API public documentation
  ☆10Dec 17, 2018Updated 7 years ago
• gpask / PiSpy

  View on GitHub
  An affordable and flexible platform for automated imaging and video recording
  ☆17Dec 15, 2022Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• CorrieOnly / Awesome-Telegram-OSINT

  View on GitHub
  📚 A Curated List of Awesome Telegram OSINT Tools, Sites & Resources
  ☆13Feb 11, 2022Updated 4 years ago
• mxrch / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆13Jul 5, 2023Updated 2 years ago
• CSPF-Founder / DodoVulnerableBank

  View on GitHub
  Insecure Vulnerable Android Application that helps to learn hacing and securing apps
  ☆21Oct 4, 2015Updated 10 years ago
• ombapit / mutasi-bank

  View on GitHub
  Scrapper Class untuk mutasi bank
  ☆10Sep 8, 2020Updated 5 years ago
• JulietKiloCharlie / Telsca-Telegram-Scraper

  View on GitHub
  Telsca is an open-source tool for scraping Telegram data. Extract messages, user info, and media files, saving them in CSV or JSON format…
  ☆12Aug 4, 2024Updated last year
• Xtrato / Slypi

  View on GitHub
  SlyPI
  ☆20Jun 13, 2013Updated 12 years ago
• chango77747 / ShellCodeInjector_MsBuild

  View on GitHub
  ☆18Jan 27, 2018Updated 8 years ago
• tealise / Scripts

  View on GitHub
  Miscellaneous Scripts & Tools
  ☆16Oct 31, 2018Updated 7 years ago
• divergentdave / nsa-o-matic

  View on GitHub
  NSA headline generator
  ☆32Feb 11, 2014Updated 12 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• cybercdh / cnames

  View on GitHub
  take a list of resolved subdomains and output any corresponding CNAMES en masse.
  ☆18Jan 29, 2026Updated 4 months ago
• ScriptTactics / PineappleMk7-Scripts

  View on GitHub
  Collecion of scripts to be run on the pineapple mk7 by Hak5
  ☆28Jun 3, 2023Updated 2 years ago
• niveksalim / nodebca

  View on GitHub
  NodeJS wrapper for BCA API (Bank Central Asia)
  ☆11Jan 29, 2021Updated 5 years ago
• D4Vinci / Anti_Killer

  View on GitHub
  Kill Any Antivirus Using Python For Windows Users .
  ☆45Aug 3, 2016Updated 9 years ago
• kbonato / Awesome-Pentest-Reports

  View on GitHub
  Awesome Pentest Reports
  ☆21Jun 16, 2023Updated 2 years ago
• glytchtech / Key-Croc

  View on GitHub
  ☆21Aug 10, 2020Updated 5 years ago
• MrSanZz / InsomniaGPT-Prompt

  View on GitHub
  WormGPT!.
  ☆113Jun 22, 2025Updated 11 months ago