mishmashclone / swisskyrepo-PayloadsAllTheThingsView external linksLinks
https://github.com/swisskyrepo/PayloadsAllTheThings
☆317Jan 29, 2022Updated 4 years ago
Alternatives and similar repositories for swisskyrepo-PayloadsAllTheThings
Users that are interested in swisskyrepo-PayloadsAllTheThings are comparing it to the libraries listed below
Sorting:
- ☆13Jul 26, 2025Updated 6 months ago
- Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)☆15Nov 24, 2023Updated 2 years ago
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Feb 26, 2025Updated 11 months ago
- Open Redirect Vulnerability Payload List☆10Feb 23, 2021Updated 4 years ago
- WebDirScan is a tool for brute-forcing URIs (directories and files) on web servers by taking input directory to scan for files & director…☆11Mar 31, 2023Updated 2 years ago
- Process Hollowing in Rust with Process Executable Relocation Support for both 32 and 64 bit architecture environments.☆22Jan 6, 2025Updated last year
- Cobalt Strike random C2 Profile generator☆16Nov 10, 2025Updated 3 months ago
- Tool for efficient directory enumeration☆65Jan 27, 2026Updated 3 weeks ago
- Process URLs and remove duplicate query parameters.☆26Mar 19, 2024Updated last year
- Beacon Object Files used for Cobalt Strike☆19Jul 18, 2023Updated 2 years ago
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆42Nov 10, 2025Updated 3 months ago
- CobaltStrike Reflective Dll Source☆19Feb 20, 2022Updated 3 years ago
- ☆19Apr 10, 2021Updated 4 years ago
- BYOVD Technique Example using viragt64 driver☆69Jul 25, 2024Updated last year
- OFFZONE 2024 Malware Persistence workshop☆22Dec 18, 2024Updated last year
- BlackVenom is a personal project designed for ethical ARP and DNS spoofing 🛡️. It helps cybersecurity professionals practice network tra…☆23Jun 21, 2025Updated 7 months ago
- Havoc python api☆45May 23, 2023Updated 2 years ago
- WiFi arsenal☆17May 19, 2020Updated 5 years ago
- A simple tool to check if an email is associated with an Instagram account. Useful for OSINT and verifying account existence. 🕵️♂️✨☆20Oct 20, 2024Updated last year
- AhMyth is an popular open source android rat. But the official AhMyth contains many bugs. For an example, you can't fetch victim's files …☆23Jan 30, 2021Updated 5 years ago
- Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 a…☆25Sep 2, 2020Updated 5 years ago
- ☆49May 8, 2023Updated 2 years ago
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges☆27Nov 20, 2024Updated last year
- Execute commands, in/exfiltrate files using your custom RPC Server☆63Jan 13, 2026Updated last month
- InfoSec OpenAI Examples☆19Nov 26, 2023Updated 2 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- Learn the most common Threats in mobile technology, Learn how to build your own IMSI catcher, and more!☆20May 30, 2025Updated 8 months ago
- bypassuac、administrator->system提权的免杀小工具,可过Defender、360、卡巴等☆21Jan 1, 2023Updated 3 years ago
- This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 …☆2,453Nov 16, 2024Updated last year
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆75,135Feb 2, 2026Updated 2 weeks ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆25Sep 29, 2023Updated 2 years ago
- Cross Site Scripting ( XSS ) Vulnerability Payload List☆23Feb 23, 2021Updated 4 years ago
- These are my checklists which I use during my hunting.☆845Nov 30, 2023Updated 2 years ago
- Apache Struts2 S2-062远程代码执行漏洞(CVE-2021-31805) 支持批量扫描漏洞及漏洞利用☆23Apr 15, 2022Updated 3 years ago
- This project is move advanced version of https://github.com/WKL-Sec/HiddenDesktop☆50Jan 11, 2026Updated last month
- A tool to grab session cookies of any website from an android phone and by-pass 2FA.☆11May 8, 2020Updated 5 years ago
- BREWasm: A general purpose static binary rewriting framework for Wasm.☆24Nov 28, 2024Updated last year
- Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …☆61Sep 14, 2022Updated 3 years ago