A list of useful payloads and bypass for Web Application Security
☆14Nov 26, 2023Updated 2 years ago
Alternatives and similar repositories for payloads
Users that are interested in payloads are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- My Notes on Regular Expressions for AWAE/OSWE.☆38Sep 5, 2023Updated 2 years ago
- My Powershell notes☆16Sep 27, 2022Updated 3 years ago
- Bash Scripting Cheatsheet for pen-testing!☆45Sep 3, 2023Updated 2 years ago
- All About XSS☆16Oct 23, 2022Updated 3 years ago
- Python for AWAE (Advanced Web Attacks and Exploitation)☆104Sep 5, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Exploits GitLab authenticated RCE vulnerability known as CVE-2022-2884.☆26Dec 26, 2022Updated 3 years ago
- Gathering All Nuclei Fuzzing Templates in a Single Repo.☆11Apr 23, 2024Updated last year
- ☆208Feb 5, 2025Updated last year
- The OWASP Testing Guide v4.2 Checlist [2023]☆13Jan 15, 2023Updated 3 years ago
- BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!☆30Feb 10, 2024Updated 2 years ago
- ☆23Jan 18, 2021Updated 5 years ago
- IDA Pro plugin to view Exports☆17Sep 21, 2018Updated 7 years ago
- Combine words from two wordlist files and concatenate them with an optional delimiter☆39Sep 25, 2023Updated 2 years ago
- Development environment for ImGui.☆20Sep 1, 2018Updated 7 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- An open-source knowledge base for security researchers.☆18Jan 8, 2025Updated last year
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆17Jun 7, 2024Updated last year
- Here we are gather all Nuclei Templates that are Publically available.☆15Apr 28, 2024Updated last year
- A collection of js analysis tools & scripts.☆19Mar 8, 2026Updated last month
- The following code when compiled in go takes a domain name as an argument and outputs an HTML file with Google Search links for various d…☆17Sep 11, 2024Updated last year
- Tool to download IP ranges of CDN providers for bug bounties☆14Jul 24, 2024Updated last year
- dEX is a powerful tool for transmitting OS command output over DNS. It is equipped with robust mechanisms for handling missing chunks, en…☆18Nov 21, 2024Updated last year
- Random Tips and Writeups.☆15Feb 21, 2019Updated 7 years ago
- Analyze suspicious files and URLs to detect types of malware☆11May 14, 2020Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Linux and Windows Hardening Points☆12Mar 6, 2018Updated 8 years ago
- Basic disassembly technique to slow down disasm process☆11Sep 20, 2019Updated 6 years ago
- Burp extension to automatically drop requests that match a certain regex.☆10Mar 10, 2023Updated 3 years ago
- Library to send fake IPv4 headers & UDP/TCP-SYN packets to perform L3/L4 attacks☆18Nov 2, 2025Updated 5 months ago
- Server Emulator for Cracked.io Auth. Made by Cabbo & FaxHack / https://t.me/OfficialChaos☆12Jan 31, 2023Updated 3 years ago
- ☆13Aug 22, 2025Updated 7 months ago
- its clearly working well and clean!☆13Nov 11, 2024Updated last year
- ☆15Jun 23, 2023Updated 2 years ago
- The nightmare of WAFs & CDNs, Use multi tricks for bypass ratelimit of WAFs & CDNs & Webservers.☆16Apr 18, 2025Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- MalBox is a quick and dirty setup to create a malware analysis VM☆14Aug 27, 2024Updated last year
- Use these VDP in Bug Hunting, These VDP are checked and verified by Bug Hunters☆20Aug 9, 2022Updated 3 years ago
- ☆10Jan 17, 2022Updated 4 years ago
- logic programming in elixir☆10Nov 1, 2018Updated 7 years ago
- A simple C2 like Slovakia. Based on the Mirai(未来) cnc with ssh.☆12Jan 25, 2022Updated 4 years ago
- sc.xyz spoofer Source Code☆12May 13, 2021Updated 4 years ago
- A public incapsula solver.☆12Jun 18, 2023Updated 2 years ago