payloadbox / ssti-payloadsLinks
🎯 Server Side Template Injection Payloads
☆698Updated last year
Alternatives and similar repositories for ssti-payloads
Users that are interested in ssti-payloads are comparing it to the libraries listed below
Sorting:
- 🎯 XML External Entity (XXE) Injection Payload List☆1,208Updated last year
- 🎯 RFI/LFI Payload List☆614Updated last year
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆402Updated 2 years ago
- Because just a dark theme wasn't enough!☆574Updated 9 months ago
- ☆950Updated 6 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆740Updated 2 years ago
- Tool to help exploit XXE vulnerabilities☆567Updated 2 years ago
- ☆917Updated 2 years ago
- Nuclei Templates Collection☆1,033Updated 5 months ago
- A wordlist of API names for web application assessments☆848Updated 3 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆905Updated 3 years ago
- HTTP Request Smuggling Detection Tool☆524Updated last year
- 🎯 Open Redirect Payload List☆611Updated last year
- A cheatsheet for exploiting server-side SVG processors.☆768Updated 5 years ago
- Quick SQLMap Tamper Suggester☆1,385Updated 3 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,435Updated 2 months ago
- Automatic SSTI detection tool with interactive interface☆1,203Updated last month
- ☆915Updated 2 months ago
- Nuclei plugin for BurpSuite☆1,290Updated last year
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆720Updated this week
- Burp Suite Logger++: Log activities of all the tools in Burp Suite☆180Updated last year
- JSshell - JavaScript reverse/remote shell☆626Updated 2 years ago
- Payload Arsenal for Pentration Tester and Bug Bounty Hunters☆913Updated 2 years ago
- Automated & Manual Wordlists provided by Assetnote☆1,533Updated last week
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆962Updated 3 years ago
- Local file inclusion exploitation tool☆894Updated 2 years ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆858Updated 2 weeks ago
- Burp plugin able to find reflected XSS on page in real-time while browsing on site☆1,179Updated 4 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆74Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,017Updated last year