patuuh/Payloads-and-wordlists external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

patuuh/Payloads-and-wordlists

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/patuuh/Payloads-and-wordlists)

Close

patuuh / Payloads-and-wordlistsView on GitHubMore

• External links
• Readme badge

List of payloads for BurpSuite intruder. Payloads gathered from Swisskyrepos PayloadsAllTheThings

☆38Apr 2, 2026Updated last month

Alternatives and similar repositories for Payloads-and-wordlists

Users that are interested in Payloads-and-wordlists are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• orwagodfather / ShoLister

  View on GitHub
  ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …
  ☆13May 10, 2022Updated 3 years ago
• doomerhunter / tampermonkey-useful-scripts

  View on GitHub
  Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"
  ☆17Jun 2, 2025Updated 11 months ago
• kh4sh3i / FFUF-Tricks

  View on GitHub
  Describe how to use ffuf different options with examples
  ☆14Jun 13, 2022Updated 3 years ago
• withdk / sqli-tools

  View on GitHub
  Blind SQL Injection (BSQLI) Data Exploration Tool
  ☆18Feb 18, 2017Updated 9 years ago
• Dheerajmadhukar / Prototype-Pollution-Lab_me_dheeraj

  View on GitHub
  Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.
  ☆13Sep 11, 2021Updated 4 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• caido-community / workflows

  View on GitHub
  🛠️ Workflows created by the community
  ☆89Dec 8, 2025Updated 4 months ago
• darklotuskdb / ios-reloader

  View on GitHub
  The iOS Reloader is a weaponizing tool for jailbroken iOS devices. It facilitates the installation of a collection of tools on iOS device…
  ☆17Sep 15, 2025Updated 7 months ago
• vitorfhc / gecko

  View on GitHub
  Chrome extension for automating CSPT discovery
  ☆147Apr 13, 2026Updated 2 weeks ago
• streaak / SSRF-Testing

  View on GitHub
  SSRF (Server Side Request Forgery) testing resources
  ☆13Sep 7, 2017Updated 8 years ago
• tr3ss / newclei

  View on GitHub
  A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.
  ☆55Jun 13, 2023Updated 2 years ago
• xdavidhu / bugs.xdavidhu.me

  View on GitHub
  📝 My Bug Bounty Writeups
  ☆10Mar 23, 2026Updated last month
• a2dom / subbdom-cli

  View on GitHub
  Subbdom API Client
  ☆13Feb 7, 2025Updated last year
• sl4x0 / NC-Templates

  View on GitHub
  Hand-made Improved Nuclei Templates!🪴
  ☆13Jun 12, 2023Updated 2 years ago
• caido-community / scanner

  View on GitHub
  Vulnerability scanner for Caido
  ☆46Mar 26, 2026Updated last month
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• njcve / whoisxml-ns-search

  View on GitHub
  ☆11Mar 27, 2024Updated 2 years ago
• Noxtal / tetrodotoxin

  View on GitHub
  A Rust malware controlled by a Go web interface, API and socket server.
  ☆10Aug 22, 2022Updated 3 years ago
• ZephrFish / XSS

  View on GitHub
  A collection of XSS Attack vectors
  ☆10Apr 26, 2025Updated last year
• VICXOR / CVE-2020-9484

  View on GitHub
  POC for CVE-2020-9484
  ☆13Feb 10, 2021Updated 5 years ago
• karrni / sparrot

  View on GitHub
  Discover related domains using Whois data from whoxy.com
  ☆15May 30, 2023Updated 2 years ago
• timkitch / crewai-code-repo-analyzer

  View on GitHub
  ☆15May 25, 2024Updated last year
• ifconfig-me / JSSecret-Extractor

  View on GitHub
  This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScr…
  ☆15Oct 18, 2024Updated last year
• ssl / SecCollection

  View on GitHub
  Combined and sorted cybersecurity collection of all high quality seclists and wordlists from the internet
  ☆23May 1, 2025Updated last year
• hahwul / ras-fuzzer

  View on GitHub
  RAS(RAndom Subdomain) Fuzzer
  ☆42Jan 22, 2020Updated 6 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• developersdigest / llm-golang-htmx-chat

  View on GitHub
  ☆12Aug 3, 2024Updated last year
• CalfCrusher / Path-traversal-RCE-Apache-2.4.49-2.4.50-Exploit

  View on GitHub
  CVE-2021-41773 | CVE-2021-42013 Exploit Tool (Apache/2.4.49-2.4.50)
  ☆10Apr 8, 2022Updated 4 years ago
• indoxploit-coders / opencart-bruteforce

  View on GitHub
  Opencart Bruteforce and Upload Image
  ☆11Aug 13, 2019Updated 6 years ago
• xssdoctor / ai_subdomain

  View on GitHub
  generates unique subdomain names and runs httpx on them
  ☆18Apr 8, 2024Updated 2 years ago
• xitmakes / scope.sh

  View on GitHub
  ☆15Mar 21, 2025Updated last year
• orwagodfather / SQL-Wordlist

  View on GitHub
  ☆91Sep 24, 2024Updated last year
• timkitch / yt-coding-assistants-rag-tutorial

  View on GitHub
  ☆13Jul 12, 2024Updated last year
• blackn0te / Apache-HTTP-Server-2.4.49-2.4.50-Path-Traversal-Remote-Code-Execution

  View on GitHub
  Apache HTTP-Server 2.4.49-2.4.50 Path Traversal & Remote Code Execution PoC (CVE-2021-41773 & CVE-2021-42013)
  ☆13Aug 22, 2025Updated 8 months ago
• sleepyeinstein / lemma

  View on GitHub
  Remote CLI tools at your fingertips
  ☆104Jul 31, 2024Updated last year
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• FeiNiao / ClickHouse-database-unauthorized

  View on GitHub
  ClickHouse是一款开源的列式数据库，ClickHouse存在未授权访问漏洞，攻击者可利用该漏洞获取数据库的敏感信息
  ☆14May 6, 2023Updated 2 years ago
• blackhatethicalhacking / CVE-2020-2034-POC

  View on GitHub
  Determine the Version Running on the Palo Alto Network Firewall for the Global Protect Portal
  ☆13Aug 14, 2020Updated 5 years ago
• simran-sankhala / Pentest-Tomcat

  View on GitHub
  Pentesting Apache Tomcat 101
  ☆14Apr 4, 2023Updated 3 years ago
• K3ysTr0K3R / CVE-2023-23752-EXPLOIT

  View on GitHub
  A PoC exploit for CVE-2023-23752 - Joomla Improper Access Check in Versions 4.0.0 through 4.2.7
  ☆16Feb 1, 2026Updated 3 months ago
• Chocapikk / CVE-2024-8517

  View on GitHub
  SPIP BigUp Plugin Unauthenticated RCE
  ☆16Sep 7, 2024Updated last year
• BlackFan / Burp-Ai-Substitutor

  View on GitHub
  AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.
  ☆28Apr 30, 2025Updated last year
• ServiceNow / EnterpriseOps-Gym

  View on GitHub
  Codebase for EnterpriseOps-Gym from ServiceNow
  ☆82Mar 25, 2026Updated last month