omurugur / OS_Command_Payload_List

Related projects ⓘ

Alternatives and complementary repositories for OS_Command_Payload_List

• PortSwigger / serialization-examples
  ☆39Updated 11 months ago
• assetnote / jira-mobile-ssrf-exploit
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆87Updated 2 years ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• karthikuj / CVE-2022-31101
  Exploit for PrestaShop bockwishlist module 2.1.0 SQLi (CVE-2022-31101)
  ☆26Updated 2 years ago
• onurgule / S4S-Scanner
  Spring4Shell Burp Scanner
  ☆65Updated 2 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆69Updated last year
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆69Updated 6 months ago
• z3dc0ps / BBSSRF
  BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
  ☆38Updated last year
• EasyRecon / wappaGo
  ☆52Updated 6 months ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• j3ssie / cdnstrip
  Striping CDN IPs from a list of IP Addresses
  ☆74Updated 2 years ago
• Encryptor-Sec / XSSearch
  XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for au…
  ☆60Updated 2 years ago
• kh4sh3i / Apache-Tomcat-Pentesting
  Apache Tomcat exploit and Pentesting guide for penetration tester
  ☆54Updated 2 years ago
• Dancas93 / SSRF-Scanner
  ☆31Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• nu11pointer / fuzzlists
  A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc
  ☆54Updated 2 months ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆68Updated 10 months ago
• nirsarkar / BurpSuite-Secret_Finder
  ☆26Updated 4 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆50Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆101Updated 3 years ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆39Updated 10 months ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆55Updated 2 years ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆35Updated 2 years ago
• cyberaz0r / Burp-IISTildeEnumerationScanner
  Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
  ☆55Updated last year
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆61Updated 2 years ago
• MrCl0wnLab / SimplesApachePathTraversal
  Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519
  ☆60Updated 2 months ago
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆43Updated 3 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆31Updated 2 years ago
• Invicti-Security / web-inf-path-trav
  Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications
  ☆19Updated 2 years ago