patuuh / Payloads-and-wordlistsLinks
List of payloads for BurpSuite intruder. Payloads gathered from Swisskyrepos PayloadsAllTheThings
☆30Updated last month
Alternatives and similar repositories for Payloads-and-wordlists
Users that are interested in Payloads-and-wordlists are comparing it to the libraries listed below
Sorting:
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆52Updated last year
- ☆68Updated 2 years ago
- The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489☆30Updated last year
- The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks☆44Updated last year
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆52Updated 3 years ago
- A Proof of Concept for Clickjacking Attacks☆56Updated 4 years ago
- Describe how to use ffuf different options with examples☆88Updated 2 years ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆44Updated 5 months ago
- A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…☆113Updated 2 weeks ago
- ☆37Updated last year
- Scanner Tool For XSS Vulnerability☆81Updated 3 years ago
- Here Are Some Bug Bounty Resource From Twitter☆100Updated 3 months ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆59Updated 4 years ago
- Find subdomains on GitLab.☆104Updated last year
- The scripts I write to help me on my bug bounty hunting☆122Updated 3 years ago
- CVE Collection of jQuery XSS Payloads☆71Updated 2 years ago
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆161Updated last year
- ☆43Updated 11 months ago
- ☆163Updated 2 years ago
- Find secret keys from JS file☆52Updated 2 years ago
- Resolvers updated daily for reconftw☆47Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆44Updated 2 years ago
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆100Updated 5 months ago
- Fast Bug Bounty Script☆38Updated 7 months ago
- A path-normalization pentesting tool.☆129Updated last year
- Returns results from Google search.☆50Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆34Updated last year
- BChecks collection for Burp Suite Professional☆99Updated last year
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆40Updated 4 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆78Updated last year