Alternatives and similar repositories for ssti-payloads:

Users that are interested in ssti-payloads are comparing it to the libraries listed below

• payloadbox / xxe-injection-payload-list
  🎯 XML External Entity (XXE) Injection Payload List
  ☆1,153Updated 8 months ago
• payloadbox / rfi-lfi-payload-list
  🎯 RFI/LFI Payload List
  ☆570Updated 8 months ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆567Updated 8 months ago
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆560Updated 3 months ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆556Updated 2 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆706Updated last year
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆597Updated last year
• xnl-h4ck3r / GAP-Burp-Extension
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,326Updated 3 weeks ago
• projectdiscovery / nuclei-burp-plugin
  Nuclei plugin for BurpSuite
  ☆1,228Updated 6 months ago
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆389Updated 2 years ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,273Updated 6 months ago
• emadshanab / Nuclei-Templates-Collection
  Nuclei Templates Collection
  ☆960Updated 10 months ago
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,222Updated 3 months ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,366Updated 2 years ago
• assetnote / wordlists
  Automated & Manual Wordlists provided by Assetnote
  ☆1,404Updated 8 months ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆725Updated 3 years ago
• yunemse48 / 403bypasser
  ☆878Updated 9 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆860Updated 3 years ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆801Updated last month
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,149Updated 4 years ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆969Updated last year
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆851Updated last year
• s0md3v / uro
  declutters url lists for crawling/pentesting
  ☆1,321Updated last month
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆242Updated 4 months ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆771Updated last year
• zricethezav / h1domains
  HackerOne "in scope" domains
  ☆439Updated this week
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆621Updated last year
• Emoe / kxss
  This a adaption of tomnomnom's kxss tool with a different output format
  ☆456Updated last year
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆738Updated 9 months ago
• bitquark / shortscan
  An IIS short filename enumeration tool
  ☆900Updated 4 months ago