swisskyrepo / PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
☆61,179Updated this week
Related projects ⓘ
Alternatives and complementary repositories for PayloadsAllTheThings
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆9,087Updated 2 months ago
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆8,988Updated this week
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems☆10,855Updated last week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆16,064Updated last week
- 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List☆6,341Updated 3 months ago
- List of Awesome Red Teaming Resources☆6,884Updated 10 months ago
- A list of public penetration test reports published by several consulting firms and academic security groups.☆8,479Updated 5 months ago
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,154Updated 4 months ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆5,602Updated last month
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,233Updated 11 months ago
- Directory/File, DNS and VHost busting tool written in Go☆10,054Updated last week
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆5,921Updated last year
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,019Updated last year
- Collection of methodology and test case for various web vulnerabilities.☆6,120Updated 3 months ago
- Adversary Emulation Framework☆8,494Updated last week
- Attack Surface Management Platform☆8,077Updated 2 weeks ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,281Updated last week
- Impacket is a collection of Python classes for working with network protocols.☆13,509Updated 2 weeks ago
- A swiss army knife for pentesting networks☆8,438Updated 11 months ago
- Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet☆4,898Updated last year
- Gather and update all available and newest CVEs with their PoC.☆6,561Updated this week
- Fast web fuzzer written in Go☆12,649Updated 4 months ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,414Updated 3 months ago
- In-depth attack surface mapping and asset discovery☆12,034Updated 3 weeks ago
- 🎯 Command Injection Payload List☆2,985Updated 3 months ago
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆8,777Updated 6 months ago
- Fast passive subdomain enumeration tool.☆10,237Updated this week
- An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.☆5,575Updated 5 months ago
- Tools and Techniques for Red Team / Penetration Testing☆5,975Updated last year
- Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report☆3,550Updated last week