omurugur / OS_Command_Payload_List
OS Command Injection Vulnerability Payload List
☆45Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for OS_Command_Payload_List
- ☆39Updated 11 months ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆87Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- Exploit for PrestaShop bockwishlist module 2.1.0 SQLi (CVE-2022-31101)☆26Updated 2 years ago
- Spring4Shell Burp Scanner☆65Updated 2 years ago
- A list of threat sinks used in the manual security source code review for application security☆69Updated last year
- Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own☆69Updated 6 months ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- ☆52Updated 6 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Striping CDN IPs from a list of IP Addresses☆74Updated 2 years ago
- XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for au…☆60Updated 2 years ago
- Apache Tomcat exploit and Pentesting guide for penetration tester☆54Updated 2 years ago
- ☆31Updated 2 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆54Updated 2 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 10 months ago
- ☆26Updated 4 years ago
- NotSoCereal: A Deserialization exploit playground☆50Updated 2 years ago
- Prototype Pollution Scanner☆101Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆39Updated 10 months ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆35Updated 2 years ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆55Updated last year
- Web cache poisoning vulnerability scanner.☆61Updated 2 years ago
- Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519☆60Updated 2 months ago
- ☆43Updated 3 years ago
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆31Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆19Updated 2 years ago