swisskyrepo / PayloadsAllTheThingsLinks
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
☆69,020Updated last week
Alternatives and similar repositories for PayloadsAllTheThings
Users that are interested in PayloadsAllTheThings are comparing it to the libraries listed below
Sorting:
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆18,102Updated last week
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆9,715Updated 2 weeks ago
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆10,191Updated this week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,636Updated last year
- In-depth attack surface mapping and asset discovery☆13,401Updated last week
- Fast web fuzzer written in Go☆14,424Updated 3 months ago
- Impacket is a collection of Python classes for working with network protocols.☆14,683Updated this week
- Directory/File, DNS and VHost busting tool written in Go☆12,313Updated 2 weeks ago
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems☆11,950Updated 9 months ago
- Fast subdomains enumeration tool for penetration testers☆10,529Updated last year
- A list of public penetration test reports published by several consulting firms and academic security groups.☆9,079Updated 3 weeks ago
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆64,704Updated last week
- 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List☆7,364Updated last year
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,310Updated 10 months ago
- Adversary Emulation Framework☆9,791Updated 3 weeks ago
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆8,201Updated this week
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,523Updated last year
- A swiss army knife for pentesting networks☆8,852Updated last year
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,629Updated 2 months ago
- Gather and update all available and newest CVEs with their PoC.☆7,144Updated this week
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,216Updated last year
- Web path scanner☆13,205Updated last month
- Web application fuzzer☆6,245Updated 11 months ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13,580Updated 6 months ago
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,390Updated last year
- Collection of methodology and test case for various web vulnerabilities.☆6,554Updated last month
- Most advanced XSS scanner.☆14,203Updated 3 months ago
- A collection of awesome penetration testing resources, tools and other shiny things☆23,704Updated last month
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆7,820Updated 3 weeks ago
- List of Awesome Red Teaming Resources☆7,411Updated last year